From 09f201746f7ef89ad89972ccaaeceedbee24eca8 Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Mon, 6 Jun 2016 13:26:32 -0700
Subject: [PATCH 01/69] Updated image for new Intune UI

---
 .../images/intune-createnewpolicy.png         | Bin 31438 -> 51547 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/keep-secure/images/intune-createnewpolicy.png b/windows/keep-secure/images/intune-createnewpolicy.png
index 02a989d8ae0ccb683ef902dfff4705c7d13d6d1c..7f894c0eb00e7247714025134867ff3f9d4ccf9d 100644
GIT binary patch
literal 51547
zcmce8c{tSH`?r*kBq_2JDlwLXM2NB^RF=%xcd|_OVi;K>J8A4&)~wmLn9APRX(sCw
z#=eeq7&FgX%jfg`{;ubFuII1k4;Sy5^FHT3_kEvxd)>$Dhgz!ir`S$WP*BjTtKEG}
zL2-PSf`T%dh7$NBf2zbE_;t+fv8ob9X)nhD@NmNRj^-T-it=bWqB#}tO#4g?>_$Ox
zrse48SO>Jg3i$A%`#l499jJ}Fm$|Do#WQnzXLk{2Yj>U-B4Q#kjuL)a6cnA^>UZzx
zJ~vr8q^mQ==*_)OR?RojQp&ZzDiU-e;5DbL%Y&)!2-AujOZ9R`^%^U~3Sm^7wT3(b
zG(vUH`N5N+_qsZ;N2bolw{e=mbo4nc!UfkJ-#ew`FDI0x6ZtkKC?-L9^5ond6J1xb
zTa<VQn?q^G$Xu%L&ZJuzd5t|o4r8==8#8iHi@?P8-keT)B7X7o$-vKMVizOo!-$DT
zfBbrm=OT#z`uOPS>TSH`??J%RBk!4xKd+oVnZ4B+&HDFAWg(VZ;-BdT`4nvaOeS_Q
zSJkik@6=-VqyKxMjhhzOtn84e@i*35;wI}~Qn*8nnte?@!~Rl}*wPuzzQNEp#vewU
zUMlO;0y~cR^viBN05@N4rYCi=IF3}4drRwiknlYDho>dl_N@qiiE5AMQ*aIf%STAb
z3TzyT)~TH8o_*sw{!)0-XZ*~;Z9gy~n($5xl<|uNgebb2@#pKMqthBR{t8>=yFX&-
zF>8I-JGi{K8yPGq23bhUtb<p}rxD77Jc_qu8__Sd;OlV?0+B%qt-}><wTkjJmr+LH
zilP@EqZ1-@(A<2Vn-3~28Mde#!75?IIz|fuu+KmR-mMYv2`d)1$V}XCjwK=!B~iPc
zvdnxPiH9d#=mv&_?=n$UbnCq`y-{yj-jcqZ`T=K)@gHX?**4M06dhv}CKZ%sa7!x*
z!_6^H&#W)HZ3^REn610<yPUTc+x7vb#8L*FXUg#VOb12O`p&@5XG%V@HOG)-4}GZ$
zc~rHsd}Y7sX*A4d5#U!o;!v&Pa;G0VyHX6^v?d>X`9v}EjYq*u@bc!0eb1B(UE|7m
zo0lG&w!ek_K)|L4-yt-TXk7U@owhU>XW90_IZj1M>5NZ~XB;BBxgz$*GfE%OPuWFq
zj2wPiB{W@0uPsMn`|jl+_N2!u*PC$D=Lctt&zcHemXFl2X_%*p3U9dd_2&6}_-HQX
z=UMor$VMu`2*~4dB(p_ZAKrTE`tzLFK(1KJ;|Qu)9nTsp-UsqVIkfq_ig-7Q&Gwg~
ziI>cm!}gd51L_iJllZsB7ftfJC_%RAE2^PETXlfU;sk9UY2YPPxB6a#9&%N~D&uxG
zozM`MOmGS#q((U-`j{G0(bXy@4$ZXC#Fio)LwVh=YnQ1Ud}FLOrok_3rsl-YU5J+X
zr$HK5E8?J_7D1#~4zeR7CB`$M?%|(T>@pm;=o<?NW$S!l*a`k`x+at|Vo)Kzq)B}2
ztCIVpA$vD^AyM<sXR9sN)j}Ujb3=DAO2w0S-)Xy%JU-=$N<N66gTv#&2&81lFXeC7
z{env3%@;l<!?b~)wY7~^QS%mlDbin8Eyxyj;$uINfmR*0XRUiRCh~-gO)B%%zy}V@
z=JwD@%hOe_5hW}#trxATnswr1AH?5fqwUr@cg~NoKS1~HF~buxYL}DW-hS$YrIfMj
zPl#0p3vfUvsrY$$S2Ut>Hu6*B#HV%92{Rg_kjfo_AvW-(Ut$a^w7KtOvV`L4#^a8`
ziVDND4|EDFq8C9qbe&E7$(q|3CGWS0=*4D#s1p?e`z@LK1C^FF?vL8Y-^IhuG*=67
z(=uF7nGNwrB=JOv_XnTuRtZ(;VFV3DWAg=mw9;e*#&|-6N+*my7)f1}sgi8XXlP|*
zRdkCv7Y7Y_*VdefWs?~jZ4UnSHf$tIAX#YI?IA_ma(wrBs{XVRxD-o~1t+i7r#O=%
zlAj0mafxx?a*ejLOTa1EnoHvi-$G!c$#|t@<t>)rf#8o}f$geg!BxAiL0e<D_=6P2
z)^Idi;gnY|hYT)!73QW*b&7lYN5Kf4<8&|A=FzabHhyumAO{48M(E~<+IqfVruDvy
zR7XT=w<co`Ere}F8dWBr;~NxVdIA%HhGD2rWh1zA`f8O~OGMG}v*;aAaVdYXH^Qzo
zqOYsLe?-Gr-SV?bVh@#!>v1zqUPnzt6ksfpKDWr?1el=fVAe_)bPOD-EsDZ0&g&X+
zTRz8A8P0a&O9X%0<w~X`AKvv6C)(6%Sdg?rQE<@hGGpIF;V(N@{8CD(6_uT_4-`nV
zMrZXOQ*sGrSMM<T-9pGrDk5iF2R%F!M?md-;n6yNEMm{uuk9!e`b{NjT<$4ZG2CnL
zi$O;TJo^e!$^2X@Xf=_Aa7@jhTf9HY@ZF}#eWoL_^R$WF#Txpzs#OSaRD!hUjP(7=
z7|(7zW5FPKH8OZOc$Kfo3IwopZKG%1_MnMFTm_ZTu*2T++d$h~`8cEg!_e^D&EP5?
z#B2`(Z+^vM(didkLZO2Dj7s#l_^wigvDEM&`U}sst6}`bm(F#vPWy(RNWLfP8Txup
zIpV$wWsXC9hkMM~m(2Vfubkpmu0&Nzsh*FKbgY5?TzZ$7R_zH39KCC#QssDDF_ZIl
zLi>X3+v|QJ=sYNQ({y}fz9^t3Rwtv+zE;hvcTK?YovAks+UAvC0hz{Qa=`D38gQau
zl#h(kzEjhNV(};Z%9)%O8hoqrVK@zAWasaFgq?xf=+JIOiCZN_9J}W?9@_nb@!c0O
zdsNrg=ct4)I~Y|z_#t#~3&CK_ESu2r^J+B2PW1+xK*@))F;lu&u>7eX4@nA&5;@ky
z*HsS+JMbwwpVZC{O7_0vKNVp?2o2uTK4svL7zJYc?X0IP77+|(iK`SBb&fRUUH*ur
zO<i&ASaC!x>;#PEOBf{u;c@x<PMRvd3L(V+O|)k6oyy%(2n}@bT;FTtBZ}o0$l!=m
z@JpaKiyN*%+d^)tNGTouoN7i8_e*txjEzI@FMpk#nHYx4R%N6W+mU{HG5Fs9#f|@e
zix>WLAugVKF5J99XO(DpHSVB9Pfth#e*upTSvZzgtL(qOndryUDep!e4GM~Jwj%^*
z9jN>or6yfP{L=5s_v`%}c8H((d^6*(2?pswNHKTpuTeA$uMnme8=${N1-UE#KP=<W
zRc_gFhNEE`F?L4mVkL7e)}^D|XYHF%^}mZ)fn=V|_fPDOyAk&`n1Z^`)m@Gj5mDOO
zzQ6MCdSDIb`W1=`8QqubuJ3Z*%zX0nUy?f^l&B}Um#lU^ZNLBT&y`SDn11ZJ_TOTJ
zkT~8QNR2IzyKgY0`MA6#eRhK`kvL<0pkoAOg}p#JS?G`@uw$!}nYcH!nIw5O$Q312
zhO#^M@;&!0?&3@JJ_<t>Fzm3Cth8Q>*72C`v|7-i!vesIlV?B~4=A>GZ`E=dkNfVe
z8m>a*JlA}aFAV%$R`6q4V0a&=`c@@`>3B=y^C2z%)u!E=&2b81T6<MHAcGuXJAxHu
z0rCoSH0PN6^k?od_e}|@i3kPJk!DlvyH#322!)XOX3enf*En-RT;G>`i$NF174i^|
z8r-{mZ3rMkjYR`ON?&<m%27WPx9w#&`E<l@dw<2Jz5imn=l0HRwah!}Gvnp95iOU6
zR1R+k6gkg<Li#43ZR*KF$9xWqML!aF2A4{kF4*u<{kz^cekqJ2BX-G9e9riz`t_G(
zZ>t~r#9p4Y^*ZBvHMTYhk9+BR^3)za-SImeOU9U99H3l``ylMtX8OulM-IxXnETBO
z(<V}!%eZiir0SOO&4%ZW6Lh;JjW$?7HTZ3RzB+DeT(k5eO%?ZW>8>5YEp&A(r;}rX
zUB+lcL3USk(;eKL*g$*O#xjS<U{x4B&l$aYa+Kw36-54&*X^v`Z+D~w0lDR<XW+2q
zb8*{G9K2z`E@hoLx6CAqd)7N4Jo_RX^#|YYJy`>Pf7Fy)IXxSw;JHD6z`zx&T*8!v
z>*H;JzWG8|F2~5S((BH#m#U9i^VVyB(wY`1{k(Ehpvj1BcUnC8&}L8@I0iQsYKh^Z
z&2<}3dpMUw>-n3%xRs~AtVZ$1eA&2{ymIxjlxfo@Q?6WdX{9Qg{ZsFiVxO64;&+v|
z3#J(Lz~Xjh*KsHR$j{DV#h=SR%HG{)^krF<@mzc5bkJKrb5cgmd-t}2%QsC=nkuav
zGZcJ^kka>jR<9`H%5ASoDQVRs9mvEi+-40De0~=9%5!XJ%M-;Qg`GlA;#<gPpG~yU
z=(P^JeBZ8WM&Sh%e0H#s=K%J!&Q}tx*58IVV#Zyr`CQ<d6qb3?QmrG7dT@d<q0;WN
z4=m>vU4PWoI)RGrJ?s`qd-?(l&TeK|=k0rS+WB-R|3i56xW`sHs&@JI(z`STzkyzl
zlwG;Gu!%Y28izHfknOE;1HaiNp)*d-QT@It=ZzT#FunLjIWDy>eGIgksNY6i1p^4t
z7=#iiVWV5d>2SJBUw0BYf==(AXd<{q^(`pSwN7iIsV-~{hwG^in)1qA%?u1z1Em%^
z8+VRolejX*O})1x=Zrr3E^XHuyS2RB79DSV(LwU9#pdSo9Ua$vTp2<Hwfj_LFVzzj
z-8*q<zI5s;l4T5%XHPH=W7umy1K2$Q);9dN%Cu(oervsTceKWf&DeTiaR++zwsFSz
z!Q7U~zR+W>N|rmz$nEp2vhUVZqeSG_@DA{;db+Vv>=n2wY3lYKbVU?J{qLI8J=kVR
zf^#)YQ<kM8god<*;67|@VEQCD;I3N*G4`S)k&ka(m7h;K4_M+$?qJflCn+~VYVF>s
zNt=9dadv80%l+6u{cvzh@&$y3Q(y(HwUm@~M?K%9Dt7k!vQ(z{tFTgbitC<tvCv7c
zANG9>GmB1*Gau+mm;@*B+h+Ir@f}LYv#J9amieZ~b2e)bnvm^lBV^{Y1KL?$jLrI(
z7C$K2&x~1P^2(9*S4qIN_)oKoRGYpG7ROwlE}LV!lepA3yyC<v7~LXZiis70<*$3#
zpD1{fZvx|!s#&&aX{VTa|7?sWM3?wFi{wY#D>-1WD`Y=9Ktp)y*3h+|?oBuE0te)I
zgD@Pw-nGw>{l|#r;~2uj`&M8Y9rI))6JV)A#Uv1AYm+hccMpAURB2gh37Zart@10X
zIPZI>1766f6QyvwZvp4Q<Kqzmkh@@^B8((ZGVuB%v{6@p2|Dll-?P@%rcGjeX1yw_
zh{}-t?V&0V95>zPSAABq=HGyiV`c{0+Q!!El*@*lzt#}BRD|_8emgI)Mii&)$pIv;
z=J@IMVyg4x?=<9PhK&C=Pf2A!`kIMj0=O6y^I7Tt=mWc}aAopU^)gET_*<J{JaR4o
zlvGy6lMegL{Oh3n@wh3h)v&?f|KD!9I16X$wt45k)-D78v4q93{*m@wk<l7z!jt9i
z`5g>${*<=qNbpxv_>%by&r6k=;;PFb3eN_l1b2emq``Cr_$rNB4f%6E44knrf1OUb
zrLSq;90zf6@>uC`W~<Yc|Hd7~CAgN9SpR1&ZCSl@PU8ak6d$>5d52uDUOKa#pnOcm
z7$Hg<>%reoH5yXJ$NkdArRCY)eEGx8m(=~Dg_-^wl)CYaXYBR&t8H?r;&*FLNd)}E
zs|R23R1&TfJ}QuI6C>DA>0uln)rpx<&*K9wGB-Fwnx~!boa^6zC=wv`==&<`vr{<p
zmHB(F-S}gWH&v2!{ght~lSc0RBcsc<gqt@sL*h|7u)W$Q*W;!v<u$hJS2KcjRV!UX
z7cZ@LZjiGn5*xGq<=Pa0{qDG)(dq&#T!RuQLTGL$vi^ybIt}W*lI*I*U2Lf5?Uv9b
zgW0M@9uoGbg#7KxyLb^zIc~+vTD*6+9+BQT`8;IgUE2r`PKnaEJbG6v0hcl!zN&$`
z85~AK_Qxh)cxEShzUR!JsLQIjKpyK;w(mg=u?s+uXRau`Ad?OU-)DVmNSbGt?f2rJ
zxyQ*(+V(QI8TLAJI^JIToaej;N7B{P(FyHTHv(YwvHl%=PP|D40gB?!Khh6MhwBvB
zku%Ia|3-h7_qJc`2y??p{S1fw6JA)*;VDQ-3hm(zD4y*VNV~^;27kSYLbjG={@Bwy
zWdhWC4;o`XC=a<9+`R5G76S|$RsA%aOL49|vcFm`odu<;<Y>}RX(O&>e{2E#H~5UW
z@NLeD;QgZ$Up<-_)1H#ar!Kc!-}ly!ss!CL3Xwl;Na+lsr0*^a-kgH=D|N(1$6Z>Q
z!riQb3?_3Zb>xD_dB0D4zJRLY2hytigY23pd^^CY*HP4ilB-Ox%9{?mCnf$KCsv`t
zzRF!;<ON`AHi$f!&K>)zrwERd{!_2>R?0P(DUh$djY{CSQ+e5%z_oJo-M8Oy^VkU)
z_|nFvm&2{OsDs{dZ=<28d{GW;ewXAig$C}+fGMI`FcU^#gPGsq-fRE?rub^z+5(1i
zt!n2zgv7#i!2YMEC=BGN@GVvN*8D*BXs&XR$FJbIR=wP5cSC4r!mG{WXCJfOpJJVj
zus)Q)_wHMJ(0$+I1|)jv@%7u-&D(0Gegxd8Gzbt4;9%#V^v%ss>_)!nlM%Tba(6IO
zsE{YOG^*p!-zpv1crZdv{999-54&JU+TUKv*lWEKX1E(@!D0$4*Jo!MbwB<B0iTYP
zws}|fcf)trU7=H4j`B&q{fCJvT@t>>Ao9O6Ey1=h5LsQ@J1%tls^S(Pw|-B)sSVbo
zd57xXse}|GG5i)n#bS(8oGu4QfZMnN`|!V+%tKmSf$u}3xega5e9)In{Q9OkCO21$
zRa?VArl)<}tAN>5_+p-GdQc2tp8if#oGvM%aRMB)FG}GgG&5><_qacz?^iB%e1m)&
zwntAUHftk)Vvy^z(oxc+{VXyT%4G^8Oj)4$EZ!oxGg3rf#t%QWR2n^B94;c#xO}|?
z{X3aKr!O1BD7-?j&@p2iX7amw*~WKvS#-eUad%?j>Zw0$dvy1s-EL2YPfHn`gfS(J
zkPqRc<u2+DW^x9cK)}MjU4bt>@te(S0!N1e{Ea5fM=NC}+;9~1{{nG(pf;^k_r}f)
zx~#b2Qt+3#qi=4fQ+LK9Z<2{6`w>|3j*}Q^ABr8s&&hL<aMZP&ejn~bWr?fa$BxwI
zw49&!ZhD8`TCKt+@-V!Q2vv}r+*|HL&To=`Zrdp=F_v4PSdvb@8#T7eq9t+4l4_y%
zHdGhVekExwHUtDYy=6?!x^q6zrJn)Wm`+~R0VNehna1^=3*jc>iWMFDf5~Tn`|}t0
zt~9Vpx?Ot+mz?L*jWgWvjVa4c@~7}k;_e|**-xS$uPBTqUDnirW&YjH2QUJsdQfaH
z9^q+(Ag+eMU#tx4x5?U9wI_p{B@UkH+z6ZZLH#NjWwQcH9AJI-ZC9NmP34~-^kLnw
zDJJBxQ0%^fA7SQmAh6&gA|VC29v(-i@L3}(oZ%wsX1_ZD;VQ%RvHnU=*`=}#Ny(6#
z79}9^XH$|j&2AtPR`@j|2p4@z^tYPs^BL?xKQ0a__|{31@EP3uBZfQhc`{)Ws%o-X
zDf*%--Ecjh!*4l|dq2SkdKiAdU|lWTe;tIR{+096rwo7;!YXuTygR`!tVkLR$SXDt
zUOpd@Dz*BL{SHA1Gp(goyVK9eCm-cMK&`)fCR+kEXl4(VdMhY<%BpW6MVc1;wwQ%L
z<_!>?1u01QvDUcmeV%nXzIGPC11xD6g^3=>t@qT<OJTJf6T4*$TqHaTlBR?_CJOt>
z!nG%;4&P+Q?h*LB$fUG`3cUP(lJ*D$f8Q}V)lsS__9N%u(UedYy#Mq!4L6apZLTG6
zW2zIFuX`pHpIGbfy?<-(ZeA-s(AHx1G&>Bp^1*)WToUfUBFpQE0M~+9gRnwWD?R?s
z3<fP_wKM5|1btY_Q!<kXPtu6PO+MaJm@||64GAP87>v9^CSl2q{8~*@Z$%Y8C<rA{
zLGp0Bibruzt$8H}3Mvi>zuH%QWk^zRtxkRYR*Jer(DxLFgvST-g41$0uU6zu6et;2
zl68fX-M2r<Yh6pMmvyY)C;<B{zZ*$Ya44w;`-yCwt1eaM(<nZDWNK!4%znZNNDla#
zWZ&BBT2nX1Fke7m=aAH<#1!PcUT!DDgty(4pdq|Z=26Ht_JMV}5+;h<$nuEND@$AX
zK&&}AYAkirr7aF2%GvhWDsDn?Yjn}#duRC=!;JJHdu-3d*Bj3KN(Ou@2(0zG2-1dl
zRJ=;W`UfND=F_Fq$bH^Z38nS>*ux@tNkGQliYYNSVWm#$zc(*Yi1U)utyyP_6uZ#N
z7gh~^|6~kcjeEkSh{7T&?w+5)5D(OvEAEEc)&;gF;5Gc(_va2e(^ar1jIYxhMURen
zx8@0y=|>!c$bM|;o<f=TB=Xj?&dE0T-rKVF3^n*+k?CQ5i&v9#%RTT5Zo4D|_V}-A
z%&VSGL`HXAtmw-(CfQAu`<?hh^Vxah(q+D)>kT;6%1dI2?7Pm}9`~xb{q_=uo(HTp
zw#eO5U3I>eECX!W*Dd&1h)KWF*sUYX#gcT%fOPwSwEoo%GQC^sy+f{;Log7rYmw1w
z$U`6GzQa{=V;Sj!46*ZoJZ0<Lj8ic3@Y6^AmjEX4jL&cng3YTgy{}hMg?q@Xy$}n7
zYUWuc-G97vjzi<tXW!lT4S5cEMdvb>qMs5*<=4M8rFCH4G#9>C(W{&>Y-h@zBk_+5
z)-z6Z-uE={d(dd@l6^{=9l3=v!0ebG;To2`0HI9><oU%6yT}Zz$6?>{1R2V`r~aB6
z+JK`s6g^Ck##+eSJb-#mtk0_4qpf;?T6_7&7y|It*@YVq9;dLCoXZf?j?811A!cI0
zUiWW*zbiLby5=nRli>ZN9Pu-E)zNH0{?3MWzon=iD(QvofF&XH>HhY?3FP^aiaHr|
zVQb##913tm5rl9vLI)I%@<@=HW+-dgq92pq+lwB<@R1`i#z{ExXO9Fz81sLM%@vd(
zE;|61{ROhg0IxG}?7v}`j=D|S%F|q{C-eMch=B4~`2gYTFW)<R-K1)1)(c4d(o}bw
zx6w|P5w$DGoir~je#i2_^y9&7vFZtsDR3CtSE$#_fFfVyatYTj{qiLen|;gbw`aY^
z;T;)Gb}k<`c9^_AT3|Ji&(?Q}Rf7!tE;AgDpcEz(456e|H>vcE?jpp6f`G8mRt}ed
z)SEypQFIHiOe#l|oEDngrAET>HS4k!4vfGIKd8xD+7(;?ns<$U=top`$60T&+owJd
z*W`SZZPxitUVF;q76cs7tUu`9{3%HDLw{U&#nR`_;$rl2_JNe+->9bnsN}-;=EZ}!
z9x(hi#_WGXkJ7|u9M<=A7WGizZ*i&!XB?%mITs-Ee@wvV=u+Ys<|rWJ)y#7scuoH2
z@K=bV%1sQH9l`(i`+q+;8VTZ3p8vdc^%H)VyZNB?^})886;Opb4f?gh?SA~7V+iEN
zt3&eq2ptXojir~=Q5kjQD>dU=6Mdt5483DjtD{Z3(yNsJ_0s2JLlRJ73NO<z0<xzr
zq}>=-2J*%3u`X$TQ-)a@z;r7A%4F3ThN_8t;lKE1GlB0Lc^3FyZVJo}z3E3hfhP}C
zvcO2Y^5o!ME`^_N{5i2Nly;p0jOteh>7-YO1DUQwaU-X{co=S*-S5ZK0;Pq)mMRe0
z1Ylt_xRz*ZRNi7JdnWb;$FyfsDE#@P(hwfGxlBLUDVKF1b*I#*_U9Lm1m~uOGcq~9
z5?ZVFq*5Gr)7;+)JTR-<Q&GxY<aD~4Jz{=oqevxj?Uv8<X3Zpj@Eq+#Ev+lALBk7M
zwVP_S^Q*iQ)P1uGCbon?K3|q+^5%bb6;P{&i6D|}FHmS)@lq#^10uf@faAW^>@odH
zsB9u!8A`b6(M!cU^EUn2VgP+3bd*&>nnTXdh_0@YvdDt$W=8dAYsW#{KvKOX>+U{H
zf3ODm=+&})z_>f^L(CgnYuH@1blqua3Q6}H*#Y)#3BbDowlqMs>})yFZe4KTIbsbJ
zy0O;mDWuDl<f@-)62{BBd%TWb(fjZ8E$$#PP&&8=C_~~Sl!D6?sj_rjFnaMQH%@`d
zJzJSn?wf#3XYuWFG_Ku@Ab(A(O;>~aUN&->sP>6{trI8FakQMyW}x&+&}Sc%YLr}J
zg6-zyMDB<4V+}6Kw~B%Vaz-vF{*k**4bgJ<(w3QbcLB~6?yw@-AOF1f3qZha(##fR
z-;vN2%5j$q$O?zFJ$Ect@0kLUPsC|>FKPO;;RC0xOn7l&p#&kg-&)o$;pK!ZKuA;N
zK8(N-1WFAVwcD2&y}0QboyV${YJ?@i9h~J0G`j^GpiHfXqzz@CK3X_VE9PJV<Lps3
zEqVw5d^ZF{cgxN}<d47t?@U}EYc-L(-q9y-EtH*Md^<IG0&K&qP;PyOY{D76I(A|M
z!H~I(r@=P8to-?vF&)SEvvAl?z^lGH3WwYgP%UlR8I|^Z$e^yEV^o^JQGdo*JI`y&
zV<I+T{@4a=UGsYYpXdvx176;sh-iC5k}r@xb4ffU?3{~=R#sglWO-n0lEB387i6nn
z%iP;_`W}J7E9~WAR1S-tcR65l<`4l0q;Ouf5fj=O;&%nmzRsM)QXJN8S^h}<0ot#m
zHVO`TwKjEVTfsH`BuM#mroS1`ViSQ7jeg$brL>=KMc|Hby=gNY>ywD-ZIA49O`yY-
z^A~aKvy~~LN(b<=S!gDu%T$2s72v!!fFqx1@5@a7F|G-5*BbC;mzu7C?GdkW`lcd~
zQk48|!o&DLk-j=y?Ft(R$po;{>hS{%K6=83TZti0)f}OHlzi3+!?&Zu><Op<go3*r
zAt*-u4vP9ugv(R|W3=Y2tkrkASM>N|RWos#u9E^5)o-0URjiVssgjK!zHF$l<Rbyv
zVZywwgY@La>?BkhjkG$Un;AbBWtj#wb2^s#vuoGHjc9dIh;ay_M>Q~|ZEtBf36wqb
zoF2@vdNr(tn8uj6ZLk+og89jH<}=n7n=fZ6Dkw*&cvf_ctwLxOR3qlIxex6){F(&&
zAEljDq5yIK!j1qjpzwM>l6QU-gxiZ<glf<`MN&Nu9Q4!C_U&~r#m5crsC}h8wzyb&
zq5NBS`}LMLU;|c}G2v%3p(&0WC2MTfV)1;cF}6Ae7WMtH8Bn(ZO=&8yxVX|2LDjrB
zC5p{1kqZSlq~J`5PNex&r$&VS)UBl(hUOo}!3HV%HejbkccX*H6WaA2S?81TkQ9$o
zNb<amrHb-pj`eIsS3r9lgkxR1LW8M5o%JGMT7A|U8UA$}Hbw}ByXO@zKUK=pd^s<W
zL>eVzT6l04hpT;<L`P9NHP`Wj_=<-lgNw7T##W~=t--J3i_`Xp-39R*yCP2liFvv8
z>6+2;klRb>c+AedA_l#$pB#M9QvKzLkvk57MxTZC$83B(Dd^i9Up;*xZVfl!)2AM>
zFjFqN=A?1VBDN|Yob>Vj+@-3X(#h+*LBm<N<A3rFafly(9TkVg-N^MMNhhaJ-A~pw
zkklbw^}`z%q_XX+N?O*F(p0`(9!I+-eD)G~!afopEn8x5{Z4YoPUI0f{O6|i9mHf*
zjj_WS_PzEeV&UIv7wAwQaAe)@Ux!awxf`YWIW>x`LHy8KhaZZlc)3lAQ^<9UN@^Aj
z2)OB8hCJ$DktN#SI3(<~i=iL?{o|bv3hbpOQ)5(EH_o}7hrWqj+^|Bndw5{Nwj8$V
zwA^&f&qta+H+Fa`Zg<UW2ybYMsW!S`kE6n>Sr(X!r(7O|h7jBvFe40QmeTB1)o3H3
zAF~y4;NoUYBx7g7mre~9ZM&>ZrLZAKnI-&$+0)K_hY82}#Sr6!n3xjnL?thCC7PGl
ztngxG1HZ#wwEyzEB%A>gDmqlX!1FGZecRT%h2RpkzyWhthN8|B1!<WUS8Y~?&ll3O
zzOB_eeO#tQt^75(xg=5Y+}8$`3gr|(q3sR*Du~}wSl9EMOzqu)8i$^0N@o$Fq_)Me
zttJ1k3QBV?i%QoTw`Sw;S-hd@#dVKLTp_n-4bO1LS?Wo0ixLg%4Zy?sqL3tXi*}=X
zBhhJB`=%GunOMSc7N^S8@S2s_xR7WrS)e$GXRx`Adtq2sPsp5^UJn3C-)Bp@8Lu-K
za2{dfYpT}D2H>wXC#_g|ggZvT@&(0J&KF9aI~fnssm3Pyxoorxho)|yuK0#OcojRk
zrKeb_uU{-9^?B|9_tbduAzCty^PLt)8-83QLu<EYKdZDFC+fvKZ6^``nu&oHeD;k`
zckPJZJ<Pj$BAPK^bl(=Gr?C9=bHS<Bun~d#G`w68`NRsGa-;dmGq3Vz#}T4=XM96q
zQQ*#o&f8z+_y(*Adqb=AF|S6lgPTI4g5Fub`%7$)F#LoYesuI&M|$$KRM&}u$h?#4
z`6a#AZh)|jjzT3&3yY&+9^IuiuQWuS%(q2?WKZ;%3#(^mi{+qIVABrv1c2WLqw&`b
z&K3zwcTD}z#a3fnT=w-A8$LP+B~|Mv7)??0pJy<9P5G0}WR~)r(yNmo?gt}y^UadJ
z;U4@;gM&QdgV^<eGo}d*hX`nrn!#Jw0bj%872!4rOCtn%6jNgtS(__Roo$k-!~OP*
z-hE+Toq-!NGnqYHDCpO!8R4Q+cAjY$-sE;BJAwFAjgKo!BQ98#Ium+Q5CZm|!;@;`
zob2QR1ooGH@JjSpQ&nEnNV&=cdC|qFV0PnN#W?n0M9GL_2~`kTIE`Nw8iIdUGFVCY
zxKq8+*Grf9%VGi)^J4qGZa>?zB>*}y^fS97#y=YcJ|=VZ)m<bGRY{cS!$wq%U)wVb
zo$CLWeg?9?-t$^}JKqmsHmtJUUyJh5j>~}$uW4Ssu*s!!=u7ahceq!Wf>m3S&kvSz
ziwkRJR&fr|1f7(85^mL&92iTv-L;PklfEZ~y{Yx%N#-{rYYfbW!>1%7-{DqgF`li6
z-`J}bGB92}3wc@m-PKk+U25o(t#!;BP2PMbuN+zI#~aox6rC!GWo{i6n6jir>J#6s
z(M`HRXU_p)0k|AycWaPl!y~kg<4Z4&;2VvbmdXUs#)kuwG)fLJepaJPB<p`vyH1!p
z^!-K6Sjx-HO0_koye-XU77;<}olx4x6CyvE=+B9rdt|Vtr<rqlz1ccRX;W9qKhr@2
z+<apy;Rd^bW&Kl!V4~5fi79F0e!B_DY>!(!4*Wtqw(M^qU0x;i`k6A-);$(RPVY|P
z4?kM@?)#|n#?yM8UajbA&|gfb#a4fMjNqO>IQF@VQALA>w~E*q58^(@FozDjx@$ua
z^SCH;O0D;T?9QE@N@>p=ky9D9E(umZM~gT=e<kgC<lM4w_AkAUYy)fG-lR^imPg5v
z!P-z8$Z|8OK_bKZj>c?~Hgf;R>mnBP?r^mti>-c8nCH_7gm!x{SUyQP4!87kYresj
zFDT~puOo*Ny76qaMK#(O$P7XoYhnDYqbW#VA>>0LLY#_DC(!sehQo36<2FdUF5$|%
zPV}83Y~hvZ`&-=4pK4b8T<Qdu;tV6433H<3m+f_5E|fKzXb<3R&q7FY5)z0$RK(fq
zmjDxGjiUbGRwo<5VeSg0rQlON#^2hT%kR1@z>yIhhKN>Hzldf$htGTHGT&TsY~-G$
z3tFd7ZVAki>M`Jfs9b$V*NZIZ8}4u>(3plJ6apV2XOqC?#C6wU;c>^aN;cfUUYc=l
z{>V9!N*F$&WWCbJFu8NwR^B(w%~=ikQO|PiTPV)3xwGLta@Rv>Xp7X1&o#Br0H*85
z&n1m~fSFhZ#SHxQg1^XM6ejO~t^YZ1YwVtu<lVpJe%$|oI(3%9=7SeR?xD}UDTwHX
z9VE^5eCTW<E}IzyKbiHiM`EZ3W@L1cLR3ttbG{#c?2j*7eph}LB`w)^=I7K-!^bqq
ztc0_sP>4Jpcc=M>>8ZHNdR)h1Xa4W#nfh-k$rfXLgZa{GvO%5J311^b#%<(oY?`sx
z0F{3D|41Vp6g>wF5^*TmEsIH;#oN$jwUWeDm}Lj{wAD|Lf@g^+j!*MXv|k1LT``m7
zX|xmW#;>HY1|{91yv2pBJ9cgA(pJG$-3HTIqPH=~=BKu`^zq-h)Ry9(u<*BK3;f?K
z-|hNua`Zbu1GFU>9OVKgE$Ce7d&sQiU~=ZGuyFct;5WDZVOF~E<aFj~u9iXsP2hqF
z@nk-W3P{eo%Tp`O$Vl$ReFk*mn{Wdp?e@L)drPIfn=|iYOB>Zq%!+spIY4W3RVp<P
zvqc{*oVLvqYH7Z?UikqJjWPL~RUfgV+clyCf4Ivm54|NHm5}>^GdRsf1pA?btT!P0
zsx4STWwA%{`r<hde3c&k9X~;XQThT)K{b?yWpBSr!w4QY8BgVVM2dcpG^_SPy&PpA
zEd+n_qbX*bPP9);4>#Y+2;P8`cEw&r&s&SVWH|AkGOOgUEGIH5SRl65haV*(xLI4C
z(14Jq?FcKy8&owXBRYJYz&6j(Rm9P4nPZpNU;a09E#>;~Egk!;J!Kqrr92rWq&GC&
zb*^6<lV^Ukl;6+zc~55RQV?Xr^1P`>oMl@whz^k<4=Y0Fl)@bD3-UXj-fw%j)@%Ff
zu9TFtS5ifWv2cbW9c`7MM*OQnY&`n?>~K-*rPv#ZXca|Y>p^K3$zaInt$P|fX%nfz
zniAaVlmtKX!>zHUllT%B`d6`gR4>*)Q%kbaSw;=Au_<`mcj$_0wQ(mJWIW`NGBITq
zh%bJ{*3K8~)a@x?C=0&z1I^Twv$M@uyzOAEw7s90Vy#$BXRlk*7Ju`karrZS3_9Ah
zpr@eRy~m;?+<ql+^l=cZDNO7l=1J$>S4LML5{QVT{EC5Ve8y(Re6PQa$=?!IZFuu2
zm?^9A>3TJ)dQ#V;P+qC)DXCS@kd^&?-hy{Gjh;Jq5v3G`g4UR926KPtwq9<L_>;(a
zml~39f>HJIpnZ0%7+&YrM*pK4m!FXP2^rfCKC#<|AhYQ!RW+JD$7&rPMnYs=P!@D9
z)(tF$j}+N!Co3Z<oQ(*VQ0=*tqb!|s=P-8)51MKoUpzi2r5SI(Q_cVP9GOd8Mlp2S
zhWW<-5EIy@>ym%H&ijUijywEY{>62y@|oQUW(D<?@SIBP5LrX$6+iv2S3Kmnn+tM2
zuY;zVFKitjR!LdBRfuq+@Dm~F7`Q|Rt&X!O>sJ(x4MN|JjH*q)xg9wqt><vZmN7vf
zC#7;-My7P+dw>WP`tC{eN4bcn$pH>uy|=81VvgYh&1fZ$6ni$6RI>+-?GnjjAskD?
z%xKLVMAY|TvmHf@lwnn~cw=R{<5xs`g;iunp8NNkNy+q2o}&xtn>{YRVs<cofP5Pn
z?6E>^;R3RB+Zr2HfMET`sL;}JF++Rvoee5{2&S*Xx<0z>uN|)C4Sg&;HuhsE#!*h+
z<bC@x_0S1RgA?y5PK}*tF=?%WW{o5x{e+zwdG;V9g4$#6cV6ejncs2jVP|JKC&h_!
z+_8}H6LIz`6u+p)x5BRbGOqeUIIgI{xw^z5E4fT)mU>MkaYzn_p|&5pyfl2>iC@a!
z@f2rK)#=Pr*XWP`Zpk}Jp}A=@5;vGY{BoU@3~aEk&mT7LKYMUPL6L8@a?CdZ(lAny
z%2KF3w)cL8#%W(%HzN=ozSf)Unp994S-%ES-_zmANN{NF8_g|h8&2Ifi;w@!_mUjw
zwOnztT6ai=HS<+y*qfip+jJ>|poEZ@;(Q$^c|tDO2ch#a%ACqG%5r?gV@?Id?!j6b
z)SS?!fm%$Co-?rx^K6=3ZcB*~!BdO0gO40^zTI0|cZ;=QvNw#3iu|y1i1!3>c7|1p
z=A}H!kvg|>xFx9Dn)A>EL6z?q<rm~P1q$znzub;$#Z=#D=&xXOx?6iw&L_(FhDq?Q
zX0FTV$DkV@iC20V3_sZKgY3@jzDs6&O8D{^BR#p?3C+lTbegF)55n9U2<FG@tX^_-
z$hox?GH}aF$jmn7utDWZUq#0#V=<%dhNW|{HkN^L@##{)>=WZ9Go!crY%|#V&7YTb
zea&taqBFb<gLHGnsZcJ*4VnMdd}mZ`bjoc0gKhO0g^u7wWjXWUr8=9#e7*b9hC9Q}
z*Vr=LNqp5$JMN>4>~sW~Je;cZG3O$ovA0UC6&z~gMzuU@oQQ~#fleCkeL-XF8PJF%
z-HbFc16J8=abLRQO`v!txN0%qa!<<l7<)bP9DiCQmPL_nzDQj5(JiLNw+77-^u{O(
zF{#5imF+4@sSoJ9MW3ua!LoLIOY6``daeVrgXsgz6S@uIr|-NAxb^RC4>#=e?7u#!
z8Wb1Rj24R%o)`@7UAh6eE3@2u+OUsyJ1Qr(*nrK1#Dux^{zD1gmLXEhSE7Oi<S_M#
zri3ozWP!*No27uO7Zs-$J#<;j4f(!-vDI&f9Rw|?wj2$SrLh9?dc|}AM|<-hnojzo
zx)4GEejeT5z)#xxt{%sg7`T-z9v>Qsv?BBfw(8iKl7@?Mf9*fJlw~;#=K7tQTK?|L
z^hs`~>S(Q9^`J{5)Yf|+ir|WdKX0wNjl*Md-7Br54=&PYpl)-&|29{#9T0Sz<J7{<
z)0i@}M_Y01?DA6smhzlP(;;+1Mq1J1*z1OD_Fz`St`Fz0YZd!fo2`U&8(g>Y?EbP_
zP{+6*T<yMzw|f`daw_MoHo)q&nl@63-jK7vw9%qd4anYZ#Y*6WUw6$k!jAKbYxyeA
zW$oZ6dQ%S%PZ?H%EIlRgRys8|5N(6^J5<yTN@3ef0~{(E<vVSTgmQdPtcXbakOATY
zvv^~2Hg}e_jeV}AiQt6nIV46fGEC3rQWf(k-HO?19_aOAWr&C&QwFQ*xgoWj%JS?w
zX9C0dTd$v_TIFA3eNXi{dc3p<O;`No6$I&b0=$BzVno=D(>IpHE((v9mpX;}2C9us
z@ePcYL35nME}-wF`nd&O!+R0~FpDY>mLa|O*V)Z{2j7dG<}~?Imi~6D1e^z=bhVlR
zX)vyFJ!+K4Jo+2{(WkiFMs?VRJ@(BDi3SPS*l>5y?)ql34hHD=$-_4UgS*!WZ+-E3
zfE@T>>Oso}*ZmCWM&|ew`9{mCIhfGTQD9y~Y~^)62czD=<!lbMO1z|vhLwHNb^m8p
zbOsLB=<})>%>tu`iklsr9PLc=r)52mz9~IQ7y#VvG3VQ&TN)(b%ypY`V3<eyi-S}N
zenlEoEeOdwYc*1c8btZ!WP5f@-Js$!M!STqvgGNvfH7|dZ#?F$6F_5V&WwSF#?ttb
zh817zb+m4_0f))gE%w;aTGrqJFHvKSazxu{s!eVohC+ipQ|25G@OX`W(smVZrAl+g
zleep^uK_8jh(bP-{qyN~9Pf7EA-CDHkrqRp<*&*GG1(>Np!`Jvy{`4?=(^Y^I8dL6
zShU_}buc$-!-rpn$B^`hErF=Q_bunc{bo_{)$^)v9#2AcY`1m4m6@cz-?(d8NsN9x
zcJf7`=a-TFfP;n+4)Logu`|{!JM8DnqY5*G`HZ^l1&I`e=*M{_IS1eZZQg*enw+a6
zQX5)-BfJ)%fTlpc(F|7a`XTh8Cu8wB9q&X$RpMq>odR=eF8%q$dDj`Ybk>8m9~fpQ
zQHLb^e*qVTYgI%UO4E$&dD-Uk3EOoJi4k?ci-`)%Up6r>O<k&BmLCz^B$m4#C1^Ox
z?!@0UnPvj=Gwh3zt2M%N-T9_GZJ(SlC7AA*CKES4Qhdw>1Li6sph7I#+sF?I<M#;}
z_~Y=xQPg#2fDUX2W&9b3uEzV2X5h9(N8uE;hvd@zKS6a0&$IpcoeT1F4cjcAzT;@F
zL06kel>B9Hs`5u53U;c_Ai4h$hNtixA{cn~FKq!Al}3N#H=PjWf2Pxb$VZq=j)7m|
zI>;9u`n;s3I?;LiyeY%D&mEv~@xK5lrq&1Sp_$PZgsVfalMFE9gA5AA^bzSb`n})4
z7AhFQaKC~m8#U=RvSXO;x!_?dKeq^=YR4&QIWBGX$NE(De>_4`T=Suout#n;8z$*f
zU)U^Z5I$i_xW1_>T^JV|Ug}N6iEh-cZFqeM+B4Mo>4lF;Y=zEht|vq+!RJ~QKYd6z
zXtaKlY~K*~goMerg1_#0PM(dl|Ipg!HxQ4M4XOf6q_qJFC|jhz__mGR=%%-o+bl$X
zdT(2b<Z7$>LIfI~?jWjQq0cv)h$7cfP~S<>vW?F7BegIxl{$+0&HlmYgh_Gm!M@a$
z=PU#5r)(M^0-POhjo4el$lG6O#geB>J=Hrpzbn}8>zjRLQQ#E{K`;RD;YuyXK6iSx
z_|QIDv7BWR)~KJN12p2RA#ovd8w<Gv9K`PfVV`dImE=8?=otv94*dDSlcF5U`nVNU
z%f|_=r;d73yNr}j)RoSJC9lck+h54NmC|w!En0LO`<0<WUaLc2H-Sd;6E73k@!gYi
z&r3{8ae>d?#3(lV%;oQo$xII<6L&z(!ofK_Kf{T-`w5>`^q62&_j{+h-i$~$rNuoF
z{ZhLocqqMC1l5FTUV})JP;>b?o85l>W^b9U-M?`9fqIYkoZT)%igBu%4_!}}{*6~@
zn#`e1=A8&u6T3%WvKB&d*|4vUX-aCD_u?N|$L~`V5yjH3UXqd%N;)~abLo*O$HTRP
z<O5c($rt%~7UoR)?jbfq!xM-8XXgYX$37LNU6}eX4d1kOj}X(59*t^Zjxk+%?s2V*
z%WfpQ@cWlQ26+Qb8P9~pZ?t+(6Yg|Z3f+}(Qm?Ffq^FL`4cTU{po&<+5(QB#`7iX?
zx0mv3yn9fWOKcs=3t7mlaXqLZiNYIK({w9iKa4Ku&>Y$VXodLjuo_6`oU4+yWGTH+
z|M+Dk8+xD&V2?u1&ITrZ))-H_>AkhO9N)^JFn|HT5lc9NyP0L$i>>*faIN>gVBwmQ
z2Kx>b?H8|n80IpP_Vw0^kVwE?;^bRTrRc5`L1wgQ<H7J`zczQh;&lD~;K;(L3uk(4
z-gpF6`k9%pI$w&53eUEz<Z?<@WRYqJsJg6Y(cp0^3wy)$$tRHIJ3q8~3aG-gD*p5y
zqsr(l{OyLSZ;>p4QcF?-E4mzyE%O(1Yzz|y%3B`@6}r@Tvb{<u407i%u9noZskT6C
zdEEaX;3RAlDc0WhG}R@~PlR{H(9Rxo!NDTfvXVe~DfZgv4`n6kf>FtXJ4FKqlMibb
zdrRqaYaW8jZ_1@9eRRZwYtJa!-Tv0Fr+>Y-akC-pc>kiB#<q>9o|ea>Z(&)5CH%aV
zv;dR@fUNS~#Y^|nl)WYe5b*hR;}Jnx-Bb(!kNtv&Oq;2K_ad!Lzx~X~*=U<>?uH#}
zgKv)1mgV}gyxj9$K=P!RA`sanY4X;lGd#X!wWq%g$ZK&bTg#<^p8K2?yQc6UCGA3G
zRi7jCar?Ir>L1s${ck<x>()s2$i3mcG0ZGeV`Q)Cpz7q*p3~d5)|lt}c3*y<7^d6o
z!OE%8eLho^vk|f7;4pmMx_iD9LM{E?F*-TBBCdz7?&Qe@X9f$Xp85MR1>dF4>AbOe
ze?PNiXY!-P<#+NRq_-ZMhX?<Jg8ueS(Ss7^E*s8p!APBN-y!VpRaQ&SvMXcE9@}JN
zcTmFpMmLmfP66s;jDpYVVSvW4^0go4<wW0F?p`f$W`ooX)A?rllyU?4=IO)QC+8^-
zd&BKU8<m>;r;w6OtZEJRpv*P}xv5Jw{6ZgKYXOX>2iepEmmRW7DUaRw5i*jRmg}2$
z9tBzA^hY^%ztd9fiq~p#4|w!h_bv%?>#2jpWe-ok$8kGM)YWPC=roNrdTK<nEng?K
zH@%Im0$JVz4Ye=VwqJg`5}V;TwWTy~Oj_n$8#Z03xO+HM2C_V1Ig~m{wRJ(V=`;!|
zlG*nj(Z;r1U$~@Guqbs)@}WxE<ZJ*%V~rvE`%;)!wLzEnTSqY`ApB4Exzi~OI1K>m
z^x|mBpMwt9Z=jVe2#ruDcrNwJMZ3ExDSSsLp@A^BspG<u1gy3VDtg$fk;EGbl_hJ^
z>Y<u(#9Eu}!>9Hz)dt(70CI)n;gpdP&01bQjNOEy=l<w9^PtE_KZ_4U7@FqICDRc{
z#)oq@9sL>IDijKE#qflaLX^ItbBdBw;nOL4BlRnn5bg0!7mahWYCML~HV+n;iOu=$
zcB(0~I=!P?I^j7shhYSFi`Pja)e)~UY}lT1*s|Gtt%|JleA*WOY@r=>gR6Rn<|)BB
zXfRK*G^xk9NRL)Gu*#vr<Jh6L{{4^!g#FTN?Vw#mtM=WYs}f(M^%9jvtHo?k#rM$*
z#%E(Z^P3oD*+*Rtzdm#t;0Hx6jiCLOA`KwxLfW0h05}RTD*=j405?Xj_?!vF@x`X$
zU#k3St_J|gHv9&Ca2c`li-o|kowwlJjo>S|WTY>9sOdU>#lROii){^q4ZQpO3O?M4
z)T|EoUkH_CSHW`VNj4T-M=J?)$~tBg|9n-F@5m|K0q-yzwH>__#H!x2SPLx@89%?s
z=fVX28Wf?r(uzRk7HyzyF{uy-)yKx39fMM`7qUZhixAUtmJ|Cb&j%j@Y^oYi&{-Nb
zrPX^I_Ms+At@Wf%<cRe<-3R((Kf?$dhTjnySL5c!-cmT;wyOGsY=!FTO~F>q20KwD
z(<P!69_CJ{JPFTE0>GEdoSY1``-To0hX#5~?isv(f)x&y@l>%y8$Nq}m*)#l?}#Ts
z)yyV>+5v6}XtUK)Qn32rXp<!E2xclEvVDScU;IP|dZIQA2OaTs@ch~_B+{hyN4pY*
z;hyE96EFBN%`bA}O2FpbLfS2cw7nnmzZk)5&OQ!AFaS*ieR6QOyk&W*<&XD-;Vr#Q
zBZA!j=;ud6c}GX|2^UAj>#s6j{gm0&wJwbmH<Wj_thmx|r9OpI(Co^?z4-|Q5rFux
z9-df*K#zr*ls0^9rxpPS+Q&J7E)>Vv@AwT)n94L9o1k3>ePq+?+ws~b&HN-8-u7Ks
zVZ3Ee+C)uZRWj>6c4`pc_3Q|Ls3yAY3zNTq8h=lfiR%;EB>fJYiUJS}VKB=%qNa2x
zaLaj!9-tUzX>0PQMFJ@D0=*sZeQRH&??E67bnN4j{)uzIm?I?b*X=5Lpy}v8`X5M0
zb+^_Z*c_R%f9tG3C%}>Uo-=LR51Dgnm=BgVsl%!8SLiTfU3O01c-Paz*Z^($+hX)f
z7~H8%S(|AGX+GPgZKL(OJInD@g$~M_!M|Fgj;@mA98qSBQh@E2lYfFi@S$F>)TW=E
zk79|98>SpKRA&o97f1VHM+^fR29Da!UjhQc;6K;grk3zc_#Q`E8Dm+U%t(t<yys-G
z+7CG2e}h*EC&G`yrCn*$esXE0bgJ98-b&2c-Al5;2FOkQ61ix=%>Ku&!L_gtZdgw3
zo3)#@j=q`SC8hgTbYORY4vc?UaNdmYV|}8dcjTG!lF%M-XPI(yU!+;}zsAIy6Davf
z_?3gBmYgf;NJ3-Z$R2QU<OmXl&s3~*rlOEHDlhy;D^wNiVH}Pr^S}1^>yoOJ<9hZ%
zGXpH>*Z%@InGI<8-$t%JpzVojV{bYdj(?LuZ0*ckXF=}WD|tWzX8fmOaulkcZ_SRD
z-<L-HEbrh7oCm6;one`O!S|!h=kUmHyw)y2MxQRU``>&CF#W+1U<yLPztpGn%E2qS
z<kmk)N^{Er|2kyhPAi#{a5J9r9B@0P1^`R<IA~`$<h_@Rg}lBhlmsi}zE?Wx6#*oo
zb_ZZ$5|CJkDI<{f7*f6*R7jY(Z^)pbRfOZyVX!#XdHdYD&p4Od%HRrOO~|Cmi6MFW
z0_vy%=7{}NcTiWX@csDDr@<uflhu!As7SHxO{vwm)BzB8W@&C^nBCc3ip>pC+lAjk
z&EdI@f)}%cj^6tQyjN@>f1bm{@317K?0b2i$*6rbjE*B2z#?Ixe!_2`w1Qu-&_p`u
zm;cd;9G-@Bobpn};j*o*pC~{9SOB112my5!ZD7z;ZTN=A#q&_{KiIfac`5ncvAX7_
zZ#q~1Xun{n2#WlZoAi@T^y50h(3x?7+B*QD-C3CR3q$OzCES_<ICRPFJSxGKV6ncV
zrB(Uv89-Sja~J@7{oe0D6^!OEn%EibIMJ|uPt<z=WwKKNKP)3xr>p%XhY5k)?Pu)V
z1wdikdKl+H=CT?9k5RlX1@7eiy3e#T)+7MrDn~~rCcq9tTAgSlw;}gf%3kz1Os>C@
z{<skdg>9x_i9X0(9~eO5MS#Sl4={r4vn`&cs^beR;Mz}u@X*Rh{9%cb4dLhtlOD10
zAo!n2JB1aRQ--1tz{RkNr@)cdpZw0tcl2!@l#s8T7JKu>VwH_nqF&_BEv4eU^%e%c
zavKSnrsBMfH{o>QSF}MQdn!+z(&aty5y5TN?m_qHa2==HU%y<uqnNN8A;Fv+_{IGi
zLNc+MmFW5&s>-vh<aRi{JyI#y<LSSA^IVB-ha!s2q7qVL|01YsM{*E`KmxULC4C^;
z{L{Asv>|Dy8Es+buV{NWEgiqmW~Sd4*1;3u!mr8mbh>_1U1?TTNXdRh)aQ~V3vRx`
z01hRH>9X>^dQwaF-^Dm`CuBOUJ6N|&-0*456aHVMeRo(>Tk|!Fpi)IZI*5Qs69MT0
zQl$4z=tX+3N(mxWr3;~pNH3uW1SAoVBB4kL9U>w~FQJC|9n|Z+_xHZv^L*vs<Rs_p
zeP-`HGi%M7u*u8``7rV9@bEWPyK#Zg1yprJ5Jc**eJYq^@Rx=EricsZA<eO`5s$eX
z*h_;BMc@gw_wFJ)Z{}y+O!%A}D#WY5{K1)uzG<GYP(x41eC6Ha!fHNVYhK%NOce(#
z?G4EULgXgWZJGf<zq-Evohsr0!G+c1Qm(7WlJ!MBoV)3jSZ7zi#5(m>+mIs3`F*(F
z=li)%L~q9n6!R7o2#e*flW?_H9k;(`7aV%^D&P8+I#1GP|5^^am`KozJhfTwk^DDC
zArNgdRNuFY*L}wnKUE2i_R9NU@;=Ox7megNnv`0EL#dZ<4H48=e5g5g_M75PdeF&J
z9i!8X0M$DBLd;#9X!WRlWtxh36}=Kxj`Br)$qtp;qvMA%6I4a@hshVUB2xG(rC+M6
zjm##ge-W#e2d&tibc<b?@CkzJ&lD{2J_|#<q@c+|4RY%Fq43CQRhygmeh`ge+Dax0
z;;0(9n??e!xZ@rEYZ4Y;F^U{heJIFvx7YtP`iMqF_I9QoYqpAcOwnT!)}82_@dE0&
zXkt7$1rx#&k*!IYX*PYOwn`2|vDn_gzAr|d<wN7&HL8?L$l$xyVyrffIs5AS1dClm
z)OoxK$S3d-tvXjrvEr@DR=za>s2`o^^(B|rUob3j558R<Y8Bx|Lo*;-q8E4^2&pSa
zj!7aCWAKXkCpWz`+O-v`$VOFAO>cEZX7RrDrpEBp&K2HX8jDLFRi%q4UAdjy{bQ_H
zWLWDiPUMPAv8VF`xZmWrF+<p>-YmY84c5}p=lDru@md!x`Jr;QkafYXqqBA5_S$W;
z%u@PrL~2VH*FDWY2SGu+9d@>~ovP!q_xy;NVB$j&m7)i^<JO(j6O-Oq`b!gvRtoUc
z#~_vqDn~u;6mZ*1G=W|>?#$8F!%IX*hGcjYN({w4QztG2;dVT6cA5|vg5-x2bI~*r
z7*!A7`D&L{BZjPKbno&`C?be#;eDG_;R;=PM&3xc+v{ok`e8^IcL6WUlJilzKs5)l
zc=cK*SQ=A9hOC`|mID=ncM~<u`nk6+y6YOGbHBf-=lp;==gl=M7BIm_0%0Q+WdEqm
zrF-)<l{0!Q8T_peY^~v2R%Y{eT4R4u-CGKSkp4ae3+%C5uN&u`P{C-s!{-{l39Nw+
z*^NQT^M28mdJuD}q~QQZRttv|8rzh?5gA~3w$?bs`;M`@wVM4evOvh{+pbwh_$E44
zNiVwfZ1rx}c^&Ffn|Tk3Z0eHugifROWj1fEbbjHlxFML-{ux93eZ@EO!lhn6aXnNC
zG0Hbbh#Dc7F!q*yl5G~LIH7*E*JFZ>^XhQoMUZDQWTPWHq}9O!3CE!a^1ihmAWFKp
zm@hg`4RCLud<TY;0f;dGbn0K&d_?bk9w~6jQU7>*dwh9VE>`Q!r`E~q6P2|nABg6-
zWvN+hYz|BfU7T-P;7bAL)d`(_B^N-7j^%$B&w-c8&MXiEJ!EuAd*q^4*6S_wbx7GX
zN9KZNGHK&v(RzoigK(GQbjecKb65Z+cfk&w`Q&GL6o21CQ=5SoWjOv-?ZU?&oF62*
zy4F6^$&t<?>(JzQ1-lW$9>c@^1a!^#DN^;|MJ@wP$sT3#p&F$%FWCHI*G@`^n*gNe
zGPlFZfE{Q9>LXC5FX(6bPEonu42NWT$dEI(lP5i<(~j05UfFjs?fv{pV>p%*#I0Xk
zRNgNl-C|yAj}tklZX)k8UO#6GwacFzQxCdq$_q>I+nM>)uLv&foG4f0S@Y}+Y%7X(
zeBvWB{Y71G>@2L?2>W8ws~CTA;adblC8N&nL&@kvQ2Rc<L{8^&w?^$<nVY5`T~Df+
z!bJaJD^A#t!HLW4H9@yJ5iYDYjs1)MG+0en>_Sn}txQzEYhdhA#f{v@L@qAxQiFyJ
zCm!oFjPGmiPS%%Gy{`asS=>O4hVD`q@Pv+T@SOOT*^<4&OZO@(q^zgCK!51-(PG-N
zWW94?aIbwK7&{oWp>G=LQE)LeV7awm{7fw~!X{0KS^))3)_AXDsVLN1V&rl!T7my@
zXdp<@iN3_JW_&CptM#;-Z8l|kaD-n>Cb@%FH|35pXtyNKn5~J{L&!vTS9PTdR=#^{
z?2+CHu@ve$YEXn{=VTA+V<Xi%@~G@vg(Z!<pyJmi*L#%6%MQFHgtxDgxMVz2?WNkA
z3=1$7A1*M7HK8l!lUSkM4?-QbN5(Js?!O`18`yBmTb_UhQ~T}*p6GElH@&8`bWBx+
zwR-rjYsYCYP8D=A>xH_B?=YYsci;5NKaMO^f0LxUTD#15qx9~xiNhUU1ED%mAV>Sx
zx^%^Qk-%||4MuBI6D%o+N8Pm_BK$KQcz6&Ievb<qw5x4PXZ%;xqe}}sJ5}j3cyJAx
zpVlpN>1gK``e_ItY(M)fhi_wTEpVU#qs~%7rJ}txvn20N=k)31DVz)>qr3O%Xor`v
z9Bs*05B5&RuDgCChPuW2p8msyJxzbEamHw###$qgsGT#f5%E@&$I4N4-Uz-w(RgvB
zU;eCAsd9TjwI$zmPiMTe5MB}A$J;eCBf&so%EhsewOD^Fk}9|ILv<3PuO`?Rq4QK6
z?7RC^@Ul5aKqmoC{cuQ$awN=Pa@4-Y#djOv<Nfw40ObLVW0Gsj=F53DmCzVoF#l6q
zG$y0#sl8P_j7wc2!>%UNom#1FeQg@|Rj*{a<LgA<LDc%Lf!J;?fy}BWt(Pu;eylEV
zOQ9bmCbslBSt%{TSFFoP;qoKJyyGTJnvX{UE>BbSAO8*5{dA;z;PU}z+khreA8&@8
zad&9Zc-0UvoD)cP7W5V7`nGArd{ZM7g6Ofst|d-;m7p=(10BT!n9C$T*+CJ+K!u0)
zH6S*cPA8--l$maH325pyc14nv9KV^7=>6P5pQUSym3~^<y31z+rz17K{B@G*m|CXM
z6~(a6>_FXM=LaQPe30z3Jn7aX?7sE|6G`x|f40Ro7$S`}T5L<9kPX6ptoPe)X<py%
zxWdAHu^bL@Hdq-Mf?`P*#=mP6=DT{22r-J`DlJEo+O#rsxl(`2F^&oJ$O{tQSVmKR
zRv$-Kkr(Rsa*0P9YY|_KL@5vckJ|yPN*`T}XAZ^It_(-J8W)d3WulK1{zP?`$6MRR
zrwGZyQo=7@CF=HSO2G!rOeOCM`RPcyOalG*Qx55qD?gynQB0dUuWS4@XXVFIqt;Sj
zI_Q>kuOo1ff<t<ayO7#7x5lK2JbSEc_}?`&98rSR#|~e14jS^?=9KvU?C!tjw)XgX
z&U^~VKTPFk0K-cL0x$iaT*{{a(NO&RPkX(2&?gM|JpHxqLJQ&SW-+g!X)MnhVF*%Y
zpIV_z#wE0BOt4Dm;9-g`tMew8X~-s(9QW!347u;=>CwXAh}`Xw9I?8P5j-ExqvfRw
zL&#dE^(&0}?knKV^`CXL4cyHDw^sK|<LUzO;A;Sh_<MCrJV!ks+@S9~`}#%;Dg3nk
zNn>FeDY#*gc0``C7QR<6&8tJ)34dmPZO+J~$aXmlHosTk`Z?!g)IR%L(I*J1*Om={
zbNoDRNx?P(2od<7{_$HPAf)ns1<93x$PHMJ9thw&btl8Jic$@6B}_u*$_Fm`BlnHb
z^p<UjDOJk7E&Z?O>uXJb8XKA0q<`kMCw*R4`FlQLk&;+x$Boz_QDl->x_NU6S>GFF
zH9=P*PrO=7x#S1=)4H+Ym~<b0tT{!?>n>6P6#p~FT6PV6H?^@<lew3|NX}_KSZayw
zYzFbtVb{rO^LCnWt~l#zW!jY$FJ%R*Q0K|w_^c6SmBy!fq0-Z-MwIF(rzc21(_vfY
z`(DnQLh8nlds9(FJs^^C!dKMkneEa&eRh{*l51}oAwm|)A3d&zxZHBMIeY8#<O@C4
zWa5vG4#_3rrgtf>7-a3mE(0g@h2JBiu*R~hPXz<PAn#b<9I2`2n$*b)o-3^GQL34P
zGPn<c@KALc6LW{P#UPOiPwmB$vX1I>iK+pcEr`<R?HBd(;fDQ74zD@~&Pw2_C5bcP
zwrmVBP-czKJ*`F?NqlQ+6nLsMcqy-K2Sf#zgxO@O_LlBXkM6&!%}mBDCBe+0z9z{c
z3@gYOC|m~>MB>QoVtwTWo~gD&L&FuC()z&cis^g_{=E73)Tr(}Z)7y9WsIRM;fR6B
zU56nE!x^k9C&Br+*Q29l@p)G&Zh5MjkQ0>i0oCu|A1HxC2cO{@yFS>=`{61Iq!3{E
z>Nz+si7x=z5CNTjOz6Jonu?wAhavtN&d>cNoV&I0KgRBv9OW!6YQS0-f+5#5$!Mvr
zhI<(Hay_Lku}@I6^*Jqzwk$4oxJ7rhGIPTF7OYiBdO%Lpd&C}fBBaz9RH&Yfd96HH
zJV)f@sZ1CJ&wZv=m#hbp?6yv=&Xb|laM>EDo(5k*al-oTU$o%tl$&<jHt4}>vrSc4
z%3o%O?>ON;d?dkak3?-g^feT#all%3y1Yuk6KdQqw9vGmJkhW+`lNF6><+c~iOToR
zXHK5cbLWA6Jy7Pva4waRHd2rOGN)2M!~8tEt!f1Bl`gGGwwtr&3Sw})&0X00bDW90
zPLbs&U%U?{_P`7Bi;*uu9MB-tga(gI4buLNsiR|hQH&9pN4>!&SGCza_5E^1`!8ln
z7e}hIWAifB!Y(qXbFXpVjcB<9gHp8_8LCT$M(tZj^^U+WE)jxpuZFleqUezvJEX{c
zR4It7I*>@vCtV0>{wTdJi0D3D6(@CcRyCMsK)XuvK|BMbFC8Q~LV#qf`0VHxR;TLx
z&g{{w^IWG3Yb#8Q2T3~Twj@TPWN&6FZxS!YWqjdsy7NiM8vQai8E?qmd}97GEu!pu
zRLzRnyJt+e>1*Tgc>t0GP8^_`?=*<_{p}j;n}?RV1KnOPfka>$2Qm(Q_fUe9@kYPC
zWLO+@M=O<oj!N5+HIUp!Z`q+e__*cWD)RFW79OSo>bw<QDa&R_P>9IFmlR<E*8Cvx
z$(L@LMplmL_AWQFWY8Jr_-Pao*t@!WQxB4A(YMw7)^&GH=Tq=rx~(iUT>~vJN^5aZ
z`46~MQx+BVa+PQJOgAjtxj~mi6YkNVax11VNM3R58PCur`RI&}c}S9c9Gncn8)91}
z!n;H;57S6-(6z(mLF(OivcuMy^CdtX-(Sb{ygwLU=gp|PU#;q{)joa+Q|>f(wZ`>i
z{8A2CQwhu9s^h|Qe6hyT6V|@l9umt^?N^O9Vr%>zVnmwO*}7YNy<_Zva=eyR(CNv(
z)TXsT^bQ63a!JpAsW^~RvR#I_b+J=jQX$#e3ai=jsu-le?!}n%#PmcRdGgn6EfI|R
z_}nm+Q4k!JWSSc_V?A0kJ}H7-I6xG4Ozb0qoN92#?fgrZ_SB*21}Nv{JNnLPKB=#c
ztomNI`<BR-MR=zR-Li048D7(MmYOXH%{jc7)h6V;dkZA#P3{0@I1Imd8i;zO>&=p6
zC3G+bUR6OJcz?7Fd+wXHvkLN&cuSUHolJtfb?%}P-xOk(O;%E(l=7pAro<J=s5cP-
zCd$&-N4Ra|AS*dLDZJ6*u@o;C>$=-^qM43+acAi*Re=?;ENz=_&`?4t-k5BY27ZGF
zboF>NJhEAW-~4OO%EF(vYeX*)wZ07JavC1@;nh;FOD+XmejpKCF%x8LyNUMM>-fRF
z3dim>#ZLRthkWv?fRm*e@#zlVULZT)TTGGJf}2%iXIf1*Av8IiYszV@+@ZV^+7S2C
zx&SD*)R=F6O&YUwyL;;6!#3LqbkJkto1ENT<|E$;4_>+|Vq+8*l3a06(=3bA#|2`-
zo{erYU#y2P(giuN&m*+HL#k^Bji9%Cqh@#}bFj2S>1D?;2G7aq_XAa56XV)Ss1RR6
z{Ex<CpM2LfzF@SuN!28nGQDYM^Wr!)=n>-CdSX;`9jz%~0nwn-EpqnrJgeWnK(^N|
z6u`>nzYNp}Pu&a#(#{5^i2bi*Hs5ri-?155rgZ6m02JWRp+n=^M>Yi50+s8eM$!d0
zjnJYAp0<277Ec52z8+^TdYBPO*-L8#fAWE`C_`WBwmOts;J~O<3opY<o|?3@U^&t;
zes5?(hkD5|%+VR<n@2WWsbzVinaWX5<wfsE>2Sf)RcoiF#y~g|BC1%(Y{Q=KbWmM!
z?5p*KdKRo^z98~5NgIgg{cQUP$nJvX$i!}Ficrng{toraMwKpd<77HS32(foW6kTP
zbnhglh=Pa9cj)9{&#JGiwTtc7{z50vU?el|I@+gC{@|p8ZZEh~K=>e#-puFZ^dxda
z{z7)}^o;Dpm#JS+0AnEcL}xxT6Iy2Odk=H=0`lY%JMyBzr&aT-+ugKAlHeXEDZv54
z-Jy?3!;ia3(@pVbioUT&ylxmNxGs2tVIyB~IqkrOeIqo1TRlM8BT}@u5w~OC-0Kwr
zcDJPC4sYk=5`G_Tb4!c5Hwl47RbJ+AM{MDEyQq~m=)>t~T=>v^-CWTHg3?r!awOQ7
zIg95#qEWNGfa4%$bIlHRJoar^-jMk6&+<vB0L%LNJwhS$`~5Eo8zM~w2iLEiNL=1%
z1d`a2+v6F&PO@H+zY!4vs~B$dN`i%`^b6V>$xlm!IkRJRXGXrItA`t_)q0AszwMF>
z#jul{SZD^?gdkDlewOzQ<csk2JMo7y)dl;;w1Sc^4jQD&%y<SBxegE|cp7Ja2(K%q
z(H@PrQlsqKyG8f#L0Z3Jr4G2z<OsET%uR$y>@_<U@fZ;z%ta;k4(yf7a{;ODT*z6!
zS!J)WIK^4#sJUCD2EzF$&IH~@61>`-b;lwyY9qKs@XzZ2(#wY8$o{<Eu(E2ll(f$f
z-npTK#`*g3LhotMx;JU`ckf5hN^cBaX^zTGtxW2OvBJjiU-h1#=c!zZOc1W(tf~O1
zqq|nx?2~m<0KRc7XULaoqiWu|ym>ol`|DkG@^xK7GT|=HnsJUr%o9sFq}yN}ZPu>^
zL!NCMz;QM+$G!?6QwhjAl{7n(oOi(sUgh!^lvLg}CZ$RJTqWmW4|xEDY5wYM-EHKE
z>Q`8GPHIl&eR%D>Fi{0R(h!Fyl25n%1t#aDpep?3uC!2>-9YltL<Cc6u4B&QYMwAm
zT3$zj-HIkts_}gm7d6G)@WUHj<AE;Hl8S{Jy_~2dQ$ChAWj>AvIunY}a7SP8jR?d&
zP4Onp6N=+;N3sd|CKG$?TWVx|CR0OTWYSal!vLW(r6Ejz;e5Zq&)}{sVP5tH|I_RH
zFM}_<GiV;^N!LI0X4QWYBg~-gscR@cHGqG6X6bB6ER#6cz%2vuynt+^xYX;C-tpIr
z0;eMANb%#?J1OO<#MCbqs*iF&N^MA2YI*C>^jy5Od4=qemis@}X^Z#nlX)&5nUSsJ
z>v+K5hnZMPH9^#*5&9y1WkO_VkwKx7GX0I@%JYIhzz$A!gNd9rT3DnOPVuIgngb&_
zB)_F+kUGM;*e3VDOz5#Rr=I|WAqz5cMs!8{ISOyGOi9n6KyQCZvG<CsODSDAX)3C{
zgR6!p5*90?^O02(U&qJqP?ycCYO9B8rS{6>weno(vjM)kh#O7x+|{)aVKCZu5c2I4
z+F<8i*oHdZ^4zejlYlX#tg=v_&n1$+L&p?i-o%7cC0kGCW7WKzMARQsSl4HS1P49y
zwow_NkI0hY&EnELGiX*gM+^Z-cd{1A%D6SvD?H<UWGdO&$)K<iGOpqe6tQas9q}BC
z`!3M@#KT6qFd531KgE17xwuurJw%tRq42y7i@D{P5I#gqm9iIJ@bZy#S;u&-aPgf3
zTM4T)n(~-01z%7X?S%$G@Ab>dyI!QXHijoo;%`ialst5)ZiuyB3gn&M-eehGbC+1?
zouGK;#^e>pK8X?)rv$l9-Nd4{jWv0TRdnfU-dyc6QbOKRq#d4EHI3K*38Ds1&V=6H
ziaHk{I6n?NJ0-I@Jg|Gl07;Ii#O9q;#UIQHc=QWI#R`r}(l*ak^npMLfNarz$DgDe
zj*ShDNYO!aA>!E{?If8p$BXmgzGz=|{?UyOyB)ZGIV0EPfI|CU*i)4+1pTB{Svedc
z<@*c9b$$;<aKJzLWi@X#WVj6vG4wPquKWeGjr3uppO8L(XD(TLTm>*ZYMij_>xi?+
z5mTp^ZXr5G>IOae=T~Pefxx@2mXqRHB6QoW;;(+kvDl_)rvs^FjcnR>x?`?4>%GIb
zg$|O-A3oXgwj3=tg;ND`G|IX(yczEVaa(NX8yde`DEgi}6iBpAIjIkdbg3~bEqyod
z-^JUNe68Mxr$gN71Gd)<yyj$n)J^uJ*U4;quO1O(1kqT)1)YuouK74D(0%94(Hji8
zv4Ecf7&1he;+#9*&#qH{{8))vvZ-_H+iElj{+X*|NTL@-n^SJ-qAR^p%G*AGze;m-
z@tt(^W%Te!NkE2-o6G}|rfcvKr#+@+UhW;Dvfwc%A3g3Ni~?fegzbLkheK4w=}w{4
zNkf0osaN*Vl%3R3Lw_Lt*0@ISVa-PH+2yn2g#G6I=HSye`yckRHvIc1XZFga0=JoD
zcO0-`W#`bV1M>2<6F`Hauc_(HqQx}qu%pj}Q}P$mU8yh0&J9T6`?w@Sf@%57UJR>i
zet%RJ!dU+B#;E;;=J_KaU3M=+hP8(R=8r!jwF+zG9O=O*d>B;zkz5ft|3iwj-FyOb
zcAzm6(F$xpKW(OQK9qbP{ZsqnU>s)Nu^XZTNF7RlZZHTu$EX42|9KSQHDa~C65Q}P
z@ABL7@fmWM9QQq4#}a0x2Ho*{@3gW8T{$gfp7vG;$K8IppcHgz<~-z{MVBe5jRPUK
za?`w@Do;U)(SfaOqok+Qk$u}?&&&?lG_z%7ubg4Fj@WfNn@RQX)mnYfU~efc(Q-#m
ziF=7zn=yRloe-h4r}M{$hif#{o7;|eRh&%eLI<bb7ELUg@<Rg+bE6Q9*X_}Jx(U)C
z9;miYAy?@37Sp4_nd#IYH-0BL2r2_-;dAWe(*cW9F-`CdywS|3rwf46ERxjh194>6
z1CMWD3hL+IaL-*wAEfZ}EV&m-)f7`~1-&7hxTXB2$*B%{!;>=NS=#xjbdQQl4zCZ%
zm|<GKl;!1iplGkkwY3GejSoB63lubGybM(axr;j7$kKTY*11LDl&wA#5rj}g8gXQ+
z8y%q>JN5XGwd$p2Q|fyAqDA4gG0d!kDuRQaUS#|bC#<Ee!+5@H35x%o(tAw$l3mtv
zf#v%>uT@<WnzR(?z3cj9Ph;dwsFaa+4`y8OtgKPmy5T>levk8I)iD_V-NAX*pl7(|
z_-l~*QF{73tGqxBrxJa$&@M-kMO%?lqOu;;-4UUDMS40(lR6UhAu%)O<&76MZ<hPJ
zsUhj<x2qFykPc$z&`LGUDJ_yLWsna-EzuQSe26GaRn_gJ8Tp=c;~JjAg$!pdWL==}
zgWxD@b4e+>s-D0R!+2U${H3H(0ncupxA|>T&~)Cnx}(%1dUPtnT0)G`ni^NC$fWQr
z!hcZze&&Twn8?syVPSumU>20VODWn`CMYm@SVk}Zjea$Ft@5^#m9-Ch4cTGNJAGv*
zbJ(5^;rJ?lx?KwJtP`KqKTVspRCM{bh-kdIZ%slx!KL&Ov^SLCU6ZBxR<<BNtNl^c
z;AVx&p_K^X<6gUKTab;y@kaf@0#;4K?mg0;el9wm>-zP~^OSco<rDYXQ#2gVTE?Lu
zs_p83U^~j&1U%XCpZ{V((+LSY#!5fawG16%#R^pHUZ2Y=@szV!0OD7?wbXmk(4NLX
z$-!IhK>S+kPtzthMDU3(68@o_nPY8oTt9uGad`Otzy!BgIQ$23N9znlTObuDuQQ|a
zgxl)^alaCOp^g6<z`Ab}SXUCOvA8i&U+-0O?rGE)ZgXsZ6qSp)o;?U14VAT{P-)+K
z53S!iP-P+3{!H>Ck*5B*?nKYMU{{RYX76uEwb&SLdE-vxW>y||GU|n92k(HqE$g_U
zPu-hxcT)qqP+J~-+%Hr11_`V6Zo7n&_+QV`shrSfb@{y{Hs8h^8=G}X7xV-(#7go6
z+QjX14V??c?juy`$SP}nmVG(vvfYPTG=oC=Ea~d}0fqU-7d9%F?~zUN-gm+~yc|(e
zHw_u*cQUAN<h;dWykRhwKQtB)d^95VvR7$i;!&B^^o3uD#~bqnK<>G}{pFq(_-)Bb
zNc`5{3L=2&g;5((#Va<#o+~r{0?KI@jqb*O&|<9yq(&s(?w2zG+Z!OI^Cx}(Gbg*j
za=LMIrv3H#x%FF#<d+|oHXpg)O|*a3BqK=@3g<!@yCjr+lR56)7~n?0nm`2`T|Q=l
zjOecfh`zgadBj8(SI$%-RRJSDX9WWi3FnM)Ku4z-kdxg61QK2&__lkth0Uw1nLNwS
zbrEg?<n}$F7@FA&kZ#p@I-~#jgZ<<iLm&0u6edM!z!l8)MD#Hu&MXvejhTHat+#q-
znW2Zw*vd5o`}y_SVPT9XreTJXih8)rHP$#`Wxwt&<u-TM{)D`5I<Ip8le4S%aoTe8
zJ@H3o{)8HUEs`oB$K;^f(i}p4mie1i1^DhYc38p8gi)B8o>@C>-<n3q=9i#L$o?)@
zoIpZ&lOlE86m!>F$TZKL*$$Q?1aVjyu#*A<mD)b;jem0IT$O;Wlbh)yCP4^!8PL-u
zbLcubmS`3J<8}i{`ol4^O~{7YgoHn7A-@L`HiqHLgsCgGs`*%6hQRKO{3cnti_P_F
zPQc;t<zcer)!6E9^ek+yeJz1R2P{Sz!5<(~5&;5Ac#R^9fbLJK=&x)$0GYS+W%Y`)
zn73kT6qbMvDt>-E5cDS_@OG61Pj>Wq!L}(<xPfXqWz_BF&KEzqvjA*jTx-!CKRmDV
zo#vb)M_{GKjo3065?M3DMQ*H=w`10H@d0`J^U8HoWaQfnILoJ{H6yrXKgKv@e?ODw
zJge}FU&YFe*b|3IK$s{3**50)eMa}pzzU&j5GK%E0M@4GXN)45$!P0Fx^O<CW6)YP
zH~LI+ed_!$?Rbo}TRoHl)IzP-WF#F&K4EgZGwd$wF!f^CT<qp0GV^&56-@<Ak*%j@
zR(vP<Vo(SZzc~KGu9tu#LjwyeYN+2<YubCY1JqQEqWup58$+I5c*r6$Ozsu(b8G_C
z(YMb3xdVe5#WM`B{cZ|zi@aD8eP9O6(}gXt-KHgx{Qk*99NbMcGJZgd)xsA&#tc2D
zAb&PK#g*E3{AA>Jyv${`MR5FCmJt&lnM>cT0Av$RKU`bCJjHXBc@A)}e?tbh-LMC(
zeV*r{b)VzoXhC37cDmqTDQ4?`T~hI+ovWH2&}lQ||DGEGK|eZ>Fg=~&F{1k$9XJ<I
zl_z6n68xPP|BK8sgJC*oFt8H^bPKC&x)cBl_~#y68wj+glKYR3Ujua+9eoP$9Ukb}
znj2y}#;xiY_KFIzMUFlkv^H9({+1O7_TiUhuv-Nq=g@~EE5TI>Ql1utrzp2GEbzhd
zE5E`X^9Lt9eg}tVdt-BP;9JPmtIl$F&|T(_Ei##~ZiS_pA|58DJh{q+VULMzWAG7E
zA8l$R+V9@Cqb<kIs5#WJq|J(vmfjzXxGM}Axkjb2(O<Ai@$bh!f6mEzsQ*AT*(<f%
z{@hHldOAHGot|#@I$*B1ZNNCG+<Vg#=Idh}ce??|<>`;$qcHSEJ-w!@9`gdh?FR~o
z6DOME^l^8M`}@MG+bUT3!0#&Nj}|<6%&l#?nL?wpfrw6~;BQSM)f1!BJG5d}Ri8fr
zAD$?SgP+?Uv&0p&%{P4=<1xS3t8e@jS|!>l-?xYqM?&J%iW@MzZ#p!Y4<)Qunt<}C
zuxlW2*l(pl3}ge1?BBh`*}gI-Yjm^wF?#*mrFdM?`^*nR{7&l+==WpXUcB=KnGY)B
z$=Gt^oC(z1*Wt=0W|~M|Llgx|Fc4%A-m**+sa?kS%J~`!QX0!ra=o>s5f~_dXh=LC
zSubI3*mHqu=GVFQp`5=xq(Vr(F**3~BQ27d{HnM!t4-G9o;8+Zx8(2hPV@esIJj<?
zIIev0mkkH=p!Yx*O@(=d=&0XuGN~_#xV-qTDR0k~@X$6eMG2|0(L0^ODRdB+Fx~wg
z3triE8wQ``v0iS+(6ocK27lys9*`&4PP{L_2G0d;*yq8Iv^(62<a3Rr&}_Uo#D0`Y
zG&i9}Jb=L2IYaR;p2skc`O2$(xu(Pou;Fv?e1<!#PrND_t*BF4C4mk>UjD-_RW&2R
zk%BN-M3hzDMT%Ro%3kk+hx-~aaI#mBp0Oy~R%e@!@cGn{+4dPWQ{tY$uHLQ%C#_z-
z29TkiPPzZ6HdQXHeb_x{+@f}9*jcbsmm1GmOz0kKna8By@UB-vZOjM%NjcD7r~_fG
z#jCfWs)f}I^)1HgLdEfEjivfCDW8nEmK<SySFRdgLpl=+@4Gqht#p}E4_dg$FIf%E
zGGES>Arz{MT`5_<Q}8%mjL2YAqnp>6N1IOyeM<P2VDyo|<@te||Hk!fF%a~AN30H8
zcAZr`^&0Oj$XB}JaYOA(*$&U2_b3m1%MqgG(;*^5Kdo#lfi0>&PpYt?BI8l++nbCQ
zTIA<bl)`ZuX}l56FY^fD%~6u9WH+D-lXNk)vvyigq;ygsak0=Jd-XQ|B!C6Xax8e$
zdW54hIpt#GZ4bTeUGJQB?TM7trZFpf(|YK`yVs*HJCrhlPPNw#x1g{-0N?o}l&^5}
z)e_Q>MX0IlSy*|-q-$`h-e}FPuXASl((>}xTi8d}?VyF)Pctf<bW*zP^k>U!%LKn$
zJV*p~`+vUQ?>vZ&dbj2$4Yia4yj!z$A@oH+ozDG(o^<1|yE`1VP%8<3hJi%;2gLpI
zdc?eS+_}s3G;%15Zn<QAx*F-b;{|dseh0pRq-@)o6^QS$=%7!Kf~3|Oh;vn;$N|w%
zj?-Z=8TkcbEq*6-c2+|bO(jcmR}>+4L)(z_q-&+Qe&Ov(px|=I#ezy;7c+2qCHo#o
zzJ_svk<J&`tU@P>*Qx<x*78NKG~cMoi;0@0>ei(^v0ST@RUVE7r7NA;cpYUt^~s~&
zK`q9#s$6JiVuxr2Nr1!olkh7t7j0+Oo@!O}Aubv?MmScCBzxZO;Rr^!T>@JyTa;T&
zgxNQS>qc&QH<;2ZE#Hz{q};8=*h`C*uoA%&JC-8zX3aAz6V2|5&y*G2{zjNrX?Z|D
zs<@b6_l&{x$I4e>JTihn!4H=cN!oPQ<b4o*kU9ow3+Kco130|I{G=;4E*#8<gU*%n
z%H;d<-2BqcEiQeRm`6coLX1Z4O%~PhJYQ($C-Z=pdWTi}f|S}-U57n0m+X8#r%}ai
z+D(I-eT_oa(AX7%n4_TL-5F3lnLe`MMc5vr0Nb?x1>J<b+VON7D;%Ic@fW%BG)Z<o
z$mSfN1K#UO^YP~HhVJLW*}Hdcs^4_T;gFSPVMJYAxRy*WK3iF?Ca$UK`OsFNhz(nL
z%?aw*a$1sRFY}FUgto74B3f@0zC7V5aZ&0Cy)vKq!+^M%+oIa}p!yCg0v^-RNak4s
zLlT#PyrJcLdi6f#`6pMVdCez4X@ku7)XhIuRDOXe$mqjGIi#pH)h^8XC-9A3nXgRO
z;^y$lkJiBDosXMSj*>WZaLjA@I;=2-XX{m4>%xQ|zxFB<_QHb5e`F1A&el}k8c~o<
zTUs9DHw@)T5vTk?-EE-qJ*9N+;um+SxTLC)cn5Mo|K%4RFEy|El!@jSO2QQI(YeRe
zR(L|yAJRrgXZ^TE&?M-e2P#Ko_fgj`=KvmTZMQ0oG|xRy^ndZZs`@R^_~HCK|1VPt
zNPe%4g+lsMd;hl=WlEeYW^dDCwEir#;O-oZB>y=AhJl=Y>~E&MFdE#>Wfmg!v<q-V
z+>>OnMS$=2KL_#j{C}b;!vcqYqs~B|4A0+oe6Gj((;fP4=5OaUM0IBr<bePg(D%E_
zY;*Cy{pQ>~T!tXtyUTYJ4>6MmkBG)RkLiKoXWflP^bZyG85%~PNi<YG(Z+PN7Xvyn
zZB@dPp{rkCnIC@>oW8l^>DdE~<RUoG*Jwm~Y<=hW-sMkQUa23)eRK<O;(kfcN_zG;
zb2g}WoSl%GG<cz<z<Veo76Cf3^@KkJ`kt<u;~u|B?qG+Jhv`S$O!Dt#HcVuZ<{6WT
zt|Q;%+YPY<aX34s4`zl|tMrNJ{352EbyZ>>#S=3y08XqAQp#=UE^2aM?8DK=IMash
z@^)(gj;)$KJTY<-p#JBLzF-1!=6PExxta2sOL=#zQ?h^r>hyVANlxFU%9Xk|@%&$p
z%-wqj0@h#e1OY0O&|Zr!O@+UzAn^E_Ai<mugz-LCaVAvPbAE`=!RuA4(6edJBebXY
zlri6G;ND!zR*u>6=A29N{VwuGL5XdDaG31Ng?b}+fPkETSz`wWSKa$-{LspIg%UnR
zg&66VHE-lxo8K|z`A%r<C)pNmb>dcTcCo|(NG((I+dyg+w$8f@<W;$v13qKbtrM}s
z%42xf`WC373qdrZ#?ZPL&gbeUkML|p{I4mo6blu-VZ8clQo!HB##|uT;Yk+&3{hT9
zViU((ic2Uo$C}}MMf~#cdq7~e=gS(L+D1xoQhG``rB{l{BUkLrPqYV#U+a`TwhJpy
z<!~k!Prfen^=4MFKDC{yvBJH8Yl)z$$GR_;DI)AjL-tBzLCX_?$?J_mc@xb#UDf4n
ziH>|m+wptIZ=)?~jRSS997BS!xO76m&Q)_Y!V1oyWG&WvbYUlIFTC8!;R#B6@_G!w
zDe7sQFP)54)eqW}?UXoQ9Onf$98u#zkP7{g_>#q^F8xkHEYhnF>|6Y1cLq$Li9+#H
z<=qsPlzFZwMf${CM+Nuw)Pift!x3Q@#WJH*jXK>ADY_LeB&EEF+*3_=(#3@oo?h*B
z6XV+CV&OI#9V{=ufdmb$spyaxPS|z4Y*g%}R9_n-xFSTf#`bL}<o&bs*yb+F73~AY
zaNDX{kyN*LLA;0O3_V~|{pTZMxTP-cKR0<Svp`!+c_WZYeWA=|2J9`~D`zSoT52q)
zU5_H7P)Sd1r0&J!Q+L0mI({MV*zPX0_!wrN;CLg~7%bo=2+4*m{CH;s@l8`Hb9Yo2
zk@kGHi}Gz@?Es4KGEv$UI3US89hjP9?%HcS!PKf~%$x#3>+A!q@M-AeTt|G6RV<FA
z7%r*Q@xAL#!r(x1?qFxi1OAT+!6z%M(NiQtDbhSOapmnM4AgehxZY1Q;^;0E=v0-p
zl=Xg1QQ4*w`%{3>z$RzYnP4v=jt?4f*Q3ojFF(*Onhz}_*c2^F7R{7exl8FJbZq~=
z2UMuptXt2i@0Pc{eTgMOXUj1<D8IRmIVWiHM3XzeEpFqRmGi!Lpo`sSuDtG+O=q~!
zsXmN&uJ}yueEMDWbVk<`U+L5(58u@^U|%eMy7EX_NMFPhAC{x<QfGQk9(A*FZF7h(
zFb)vkFCdSleRZz>^sFCKNdJ3T1F4Y%8r`7vulJ5V(h95#OkBzS>Pp0}v24&DRSU+%
zzFJ^EAW$NA179#aLcUR)v?_mj;1ji5@8<LsF&hZ~ieRV-GI?ItA`EvL&0ILO(s@pU
z6292}uz&1O0j|I8Xw)VdLw#bkj-Yr|6Nr_5b)Sm;fL?K)+`}@6%5~Q{LDq^a>(N9X
zK~8igDxs^qok^Ja=yUaj&Jk-Thl(0zB|eHIc*vP(jM8|gqhpNIM|^sBwdH)258r(Q
z7@|CXnxdrKLr9N!D3K3zd)>IUcR~>HiNILgwFtGd<_yuFTEAcT)uZVeejGiWZysn;
z#3K0pgY#HYYW|DIPyZ#YWWHiq){c#PNJTzp_qCtNSMm>A`R}jaQ#`s}5_EZPl7pcx
zaA;?!I(6>j8G89xTo7IC+=Co@RoB8BfTyqK6+DM;d2@GTp@<QPe3-DHUZ*rEHRSu$
z0A46f)iI65x9sfDXQdOs`rM4k;)sk5_~}bf@Sy4Ja07=qZ{go^-%NhkdrV=#eFAfG
z4-Z>@)W+!Ffx|J-U99Xy)b--Br(uwUA(&pZXUEi7?6#FcPV~w>A`Uv7*x`iq?U$yL
z=;BfD;*xT@?^aJ<qe$pphzMmw2|DD8J*_@O@1VqVW1NyV>A5InO>H9Rc`|N%n&Xz5
zWDq7~>-Tu&Jg2)+aRZv3HE%GPegi?9*V_!g+54z(PsLOHjTl=4O3s<J%d!4=GvgH`
zj`8sm4qUpt#bFzUL3FnrgAohVXJxuk3l(fA{{iRvDW|qgyuM1Q?(`BKx%?}9ou|SJ
z^dNAnenvF0$tEg}(*p>BvVmjOdx`}RYH$Xq`|o%mkd0$|>h(#kk_gIpUNH4Tx2g_d
zb1`GK>tG_rz~M<diEhP47a}+wg9e2hgDj9&gE47j@TPyew5wz%D4?(Ov?bpPDAI_}
z**~P88+TOm{_a3DShl^SE8@$lQwn|PNdGi(FKwhLhW^D)-HSTs8Yeq?2--wAoBT^+
z-Lnf$y&D#H#tq{+Ylx-xb$i4Jt}-Y&R|=KHQx%rA5q`?xqsu4-JVS<~DonaVo4e0+
zo;H?VoHA0l8}F;T=^ee;n9hAy<4l-7rRzha#(jf~vgl3g{O>9Ewf=2o#dcWts7(~(
zZYvr5vpeT!Z)ILRqDwxS-$rwW2y;a7rH46l&;>l!MUU$!YI;DUkn%Y8?)=0TwATz|
zX{1_)Q_kS~4ml7Oy)p(-)wO5v3)T;k{b9C^9v$JtZW*7-W%TF0uvZvLYXUi#{QqlB
z2F5t|?L(OxLn&4A$I<CAV@Z$ija%wV0Lge&rzs%3NeU$VZxtEZNTA48mh^Wz0w^5q
z&Y5HU=@LFd#!YDH5D&FPNEAhn460Cu-pTXMXdsB;yHZ+p-1v4!sivQ3`Ssw)b3k9T
zzXL~mBiR%+BqPD@>&WwpLQHLyuCiVUDL2nq!%03V8pKJ&+vq_5L{F4DAGWdetLWnJ
z$yBTz79YbE9+SQip^GXZ6<m{Xxd($@{e(Y1cK52e{9wUXnHfcUc|ygDc;7$70$>-q
z@hcexgfDl>lNTp)q@7?)1o|?D-S|>VAHjG|<Zl;L5^($$-~aUPREIFR#80#oeJLsK
z9mNWJc`mWNl;-`;UG~niDPr*>d*H%1D@B$exl1m}fFVliP_lcc(0&?c4YsW19|I~c
zrk=#7`Ijxsn-+S)mao>ricJ*)LB*eqxN%A_(tdQP6HtCFoej(t<t@`P(M)hd=P;&X
zZ6}UXi^?b|f$|}5-9dy~O9zVsI_h$vOsH6H<ufb+lG|Cj^?4y)RdRh#ShmPSLXM+(
zLK2BYqdbO?dhG!Dv7Ux-0T)ucyC?wNA8Dk~FHLW{tHqjc%!_lm@rsXiu?S<my%1wI
zKuBY8=;8T?=la*6M={dwa&5+sWXf7q%#zo6ZUjA2$78zM7jMJX7S}R$(I-ha--qa~
z4&~)b7hdWjf>!*ELJ=v@<;FMq{Nb%R4YXHEbr=ek!OnMGkl%o6hlN*FAYseQVw?q6
zQ$r(T)%La9Uoa4dP!HW{5H?JlGQx(XEFFd4R;^Ot9Irv>5F<<JG{RG;-AnkX82h;1
z8y2)!4ClqMbGbzwn)PTd-MiF=Fsf$uU5OoN4(bD?YLQ2swtX8E>V>1>uvjav!6sj_
zQr%ba_$I~#Xdm3a&^xfTg2wRY?jG=8<DAC)$TTxgqZi<hem6_2PB1ky)~x*c9XHyw
zp{+M>y8VfJz>vVWN5Ztmw~<m`4a&<#$kq1ssSd>tTd!f-tLja`L5CF(B8t9sx6e`k
z-oNazPTe-}Rs~C6d2K++=W~2s%`1MM;O>Jn1qy@r+CL_W2dJCobETtO&V+R1!6zOo
zAEd8C9%F6V&r?A_1oLYh$s(Dgwp4Tt*GJjYOzp8Xz*lVVONH&Ln(vQ2>5(FE+Tvz<
zg51wt-hTo*wK*^Lu0JM|rA&oL0Y^E&u1URsBwcqsyJDK3y1pk#Q(^?pKSFJ=%JuJw
z5eD42U+7rrQTk<I^v>CRMt`|hl1cI<CZp}RV>Wh4Zw&~VT3#^AT{)7NEG~^Y=N)S0
z2~g4%Wh%^=VyHvNo;9Bfxz^}~i!=BZ!B#{W+q_uSbe0h9`06szFZ$9_LxvyPxA3Kl
z@aUSv&Zli*bmdtk;}9nD!p};A8cVD+pex7Ccj$V3D2e9!t#l480}Tt%>IZ#7gO1FB
z@s!x^=5_6mk$2D$It88LJmQ;OP@4&R(>SX(=4m0KA$!&vHym}0F*!$zkhq%S;x83>
zrpbr&vJvV-9r60ITc-9j_57E9aeeN*Bt0$sfpGr;7vH&=2opH^Gr#Ah&e0E$!c3GL
zVYmIARD~Sa1T7&BtmMRX%Vazdxeo21kclgJl;b<XsP3G4;~E>cvBW-q=iXsUR?&#+
z$Y5s;{2N}Hj6+&$uGTilQG7h%6Iy<mV(QD+)4jr-Rzd@zH(tPGLU+NJiGR*ZwulD;
z<id+SDT`6qXwV>KeDd|+#Zir~t(5oT&!g|>i@P&{DJ?`^1@M)P`(K+5A4*i|n!km?
z;*FZo*L|kqIzLU&)#d3>y|nQqlI?rbA-(8f$;TDJ$j9V_p5sB2a<7=mmoM!t(IpyX
z4YtPo*m+8Im54FdMMCiYPiDqh2QJrBNF2yWyoO0^=O4jh#QdbdQap)Llr>ugM-4_r
zP0p$8bI}s_YCZCHGX@{B$faWN_EmWJvUv$f#qj;G8TJzIMJ+mtEwwcL!3eS#Q4ueZ
zk6l4=GAY^tNYdt_sQMnfT+9kDl(}ZSjHm+xT`6<-GUwcZybV%{JnvAk8h|yH59VcJ
z+Ykp|41T9S(zhDfXLIfb{eo!(FhCovko((i1LiHFMMakLQP<RXD0oI_0<Y<_WhpCQ
z16Z1a9xuK80t<*>nDC1fNrZ6E4hgLuNa5VCaiL}&jUNB(FX=%_>uqnE0Y+7mx!t=3
zH2&Jgi+*~lpI04dZa7g9!7i#trQQ7diHhb)*?$N3z~0D=$HxMZvYBPU{aGufLz2Az
z_jLVZ@BEV~0HXf$s_mb(w|~+@zsF*M4I?5s7h(OAKKOZu-$m*_*Zr@|#n0gE%I}TK
zwjIMe=9%lbic7i*C?33i(`1D4oAO*-x1L2ew`QMr4B;o8@rlbL(;g)WO13lekx&L%
za$rMKOq{|C8L9iL|A2$P9~h{n=e<jUhXA^OTnowrR_PC*>qA+SFK?ggd$82ttwRZ*
zMEon6IUa=9E+M|=3Wq2Q87he84`Jwc8YEQ|sSx!^3RvjOuzNmSEQ4-%+-Pnl&bY8E
z&7>3&Q*);m?Ch4MB`?Z?Zu}K-{u$Jckz}69)U?@j0)LnEJ0vC{t`XwKjAy$ETo33s
z{>SzE&BuHo$&2$^wj+$+S?-kpO3J@0)PHA^EpDL465^?xtA%~nC4HH$n?evks~N@G
zk_RP<X-0(6jz<6S{H92S12lZve`w9!B;oWfQsJv4P6%h($`IxU5a$CT2Y(IJ0jcn@
zkNL22vMFxbu7CH@INmUjTLOv^W&$>&GG!heshI$B(!hHRqqy|j8>+Fwh7$jO7|S07
ztB{^^<L`~(Pul!X`t4`3;jg>a9{-hT`=!$GdjS8J7H5zB|FZM{w@0@tdXOmd$5MNq
z&-32Ryr7;n(x$^s<?&=Nwy^WFNVPL7AP*q7(E3eDf{~?ABRt&DaQG7qVcY|ZqDe;h
zQbqffF3*?%w0gxfL059!6HF4L#<jmxkAESy&mrixVQ$1NF;^bDtDw#gz6a~Jtr+8x
zN^;Pt_s{O{zoA{=LR_9;C0dBoUgUc1al^mrxM=DFmDryz>w(hDoTP1it-r3S(evHE
z>&wUwdv^<VOwGMUsn1XBhSgTJ(ei%*DK;hategFWO2xG;N-l|zw=$nd*C2#naL{>C
zVBBAXPJ6=a>tLQQ>L>NJtjYa-rG=6HAQdvH@oD$Q`;0O}F!Ga63k&+F8C_a@1^;XR
zvg%6AGiSxuf5W3c4~<j?WdE~w#hZ^r1p<UZg&E|O99oWb2-?WhFq&pzm_G51q)bD@
za8d{K^Za~*iIlL#x0z6y8XX%B>^CZe2t<1*nR6u8=CF3q61zAGQnZd8SrL?&%}56E
zJ4@lU8)!HfHyYl$8S`n+Wc0;CwDTCwc<<IHn>;@7q)A@B73lL}#T~;(N(amhLMJ9=
zk7+`UKOd&60-9C7n@;^g%puwHuYMT8DUQO;55hOI!yk!W0u&u0@?N*Iy6Z6)nW^4=
zaPT$sAnt|f?cl+b{9euca-zJYmYaG5V4yvlrFlomllff-w%4QgSOm4+vZ0(LOeYvt
zCaOhF^a9mKd|+}Y93rXj<upcOr}Yu)tZ!o`Wt4dOfv%v}YP^+J&MVvq&x#!yGm@Ok
ze?09EFtg|3d5$Pfz4veZ6FCn+^Ib=}@UWp&557pya{JMH=;j@WTiol%H=&S<v@M_H
zFHgLCw?OdNaU*B0@^MNdupB;7b%XFydP4qOaH*QJbYm>Jvk|#zhz)l4MSYSVxkJLi
z;e7|}(7!Cns4h?`>UFW7SOD%FmN%FA<L+yO1H93Nq^b{M_Xm@C8!tjQt`0~q-Kz<7
zA~=A^h87bHs&hHvQFwh(mPdKayX^P9B;kb*RuD~UFz3YN7MVLr-?%ok6LWuS8dktI
zU|25Z0PnRNyE#M$v<50P^%Z7D4Z^Z~0un&$nG@+ih0Q++EIrlpEYMhv)Z^l)%K<vC
zOP}VvC86>u2jI^<IvnXE6hCE`-$V(NM$M(yr*6i=bLa!ZMi~gtt4hw(gkmtcvgU;|
zD{8f5Sy{(!?NmW&W1iinec8I47q-#IW6*ox^ZljQ`k|Z+o1-|mg9b>axj%@7P24ui
zkfF~Id^Q6lFt>*3F4P`70DaWX8z%lrq;eac27YaZ#Do6^`p=V>S3svvir&D<tIr9?
zLy+JOfeMhc{ru1FN59WibBQH3^8LF6%*{XjK={7T&^{SUsifV190mP$SV-#Mgzw*5
z7*JQ2j*8(GwMxGJC!zlP4AtzR6NlIn2ag#1gD3v`XGuHUXeQg)evsIGKEFS=S^(5v
zHay%;p?kSnM|9t?e%6WS{Gn|Jtk*eM_G@+A;11?FEx>}2DZ$*uE7`I#ro}~P-^tIw
zs{BCP*k^956z3fre_ngOlP#Y{;xGe*_6z7Sj=v`i=!3WnP(_Dw4NsZi*f{g;^wH>P
z%#gVd(^ZXLIyYpOl*nUlZo>-=d_^#vZ@GT#i!gkxM-)<Ir-=b*nf%k^$nvgqfFi|a
z1eSt-kJ3|?`-|hdwIGbZ!YYE+xD;?+o}DvfV}RwH&>3vj%_?pr*~iYH5K@w7E6<Q}
zU$uFSFHo;t3hCDzYz%s-Bz#?_18{*UwmbS36ZEnL{<wIWzEMZjhO)?h#>vY!7{Ld#
z2k4tyGkv{X%>|RqA@#?HZAY5<<FTFct$sdTw7_GvKR_}`l)byp|MzRO9l+G2*qAI3
zaGRGzRTw9a_+Ck)2FwEJodC2M`>EHIcheS$84}+qS#7n4@G|l`P~1cIyD`&3HcAcb
zE#XzNBY-~sS32?VKaNEz9+HYBPTRCOoc9uzu@^(UwYwaX<sW);N?JFqWv&MQ`8c4P
z2?CZ-pmpKBKjW#fz?SCugESPG&to~n-(UQ;4j|Rn`sbYcZA~BTu>ZI(E|NV@1aQ<P
zd4gmAr`>%N_9gfu_w$$M_|Lchw=3|UclmF>4L+*-k4FR=$GyJ&mkSnURCnwK-p*h;
zJLqJ3`aPi@F~_j+<cD~|lbr#Dv(t?;GYxWW?tgEepL#&2=+iZH>+0DzT&9ELA5v$#
z6~QL}xq9M<<bK0G;_PI@f3yjH(9Y|~EYtnB4#Tg5Obw~Ps~H$|ngTygjtkr&-#Ggc
zi9Tx~W!Xwb94%YNN$l<UeF%N0@e-&9{>>r!^+Rdo8DODTf#ScdPO06r{+11?o!L0>
zck4Ltj&=4i5^*?oB)OT>4_@CkKWL?z*)8`w*>?+4;ku?x`#(lN1UglaJRBem+zd4b
zkn*<&OxS~5_Y(wmvXklTTgv7SbAXI}?F4buQ~}>O**F6fvmC>t<38-3ev)-NiL&h@
zVtTqF%NvB1^?w`qJzs3*;oRzAEld>OY&`;1A8)vs0)KG2&#V+3SsBOM+oTp0gQE}A
z3bOr&NWr-aYWoFqKIxr|0jm{~hg*o_(zu`nuk1670UQJH)wefT%ufzSrA`;kgICGp
zz(Vlc3QBsnpv8GJVkUq4@b#lFNb^Q{zbg!Y;s{ZLSpio?*8B=>EkS)1(Y6^gEMaF)
zFF9|%|G`jg;87DVpkTKR$aKk(oYwX*y|<_HybDAg^pdkvY5<3haz)}?Zz|h&$@jB@
z)kY3WVjQRb0nm~?Fg6VKf|2dAT6;<RZ#^;~_aKc7J`$hVI)CpcOvm@aPPcf$N_bLR
z?ZBMi24f9^_x*zR&CgbXQ3RCM<V_qPNki8SCs*vQHwjNL7TB<X&NIP`lKw;mB)keB
zZmBoA7T<xAX5}dc^|()fnwK2OMW38i`%8~+ZgnMqX1*ry#^Bg|OPaz>0;FnxZ>P3A
zXS|X-vl`%K0ds6Ox_Fu$z6Y!DGXkfq;yZvBbB;C;XY-`Zl#yFcgKttskZ@|>e4s`p
zcc<;ObB<*UiX%u|u_GQ-)NTBl`g0;=<F<B;+IPy(&YL<;Af(0vx(Di_JS0$*O*0>u
z6jc2{WpY`sMrC0wa+Zq52kP<tXbI_URZUAbaW$>jNH`~wb%?e<!i0;)U>BMS{)B(+
zhFlTkF##~r9Ui9CDdX0A$ji4@fQiO~rqJUcgq?(um%D0f>yH7d-kh#S+$Qm#BM~sp
z>_TB*z#ufh4VKurleIafqfhL{=rNCOLl%2mZ839vtPc$8+$5H4B5*t7`5X5F!jPm!
zE&JWN7S4_;n;6{_f?}4G><Oy>)!vuJL;bz|+o?nml06hLL}f|#vSe!`OqQ}lw(P~2
zQMRINF+y32RQ5gF429H$kbN0p?CV&EF>{~M_FaCj`_cV>{qF~NkHlv=pL4ErZRfh)
z@4EPOA&5b5Elk^oQ~A{!No9CczUk_`iDrlEyc|C^X`#FC04zQsv~b2Fgx*W@?Jc2>
z!Q4|>qkXL9dwcH?buQGb-b!Q!x>lkUFEpYPfz#88G*dBD1~PMXwkHhc@2!3Op|-{s
z{xC5~)(ue*Af5q`cJ7>tCTW7db>;~N!dibhVkw=K+>C{{p$kE^9c)=zWh21?<QMr`
zUUofg|E}oz9(FP6i5fIs@B#nP{QFMF4^{{SWqu#(3)m8bN~$tT9?BJtdsFqs#Cfi%
z#he4pq9q59f*w;2d5@wto({#ypFYp-HInl6ayqUYRVo)Dg(>GWH}@2E$~K3D7>c#`
zJorRG&s?%pk+ceiN?Nt-zU?kfE6r80P!1D^jT4gR>;j_ARB8ulKKEp+(El+M>X>!J
zlOt!zCsMcGccV#rH@2}Vq;tG$+XhKrQRiomReQ<NoqU?wo1*xF!|4e=+|>9PRJk3L
zi03Eg?(N!5#VousWM3#zK#XRZYf3$pG`g-}V{&0=!r|UYL-|M5heIE8e@ab?kIsY>
zFq(U=69q1IuXp4hT5)PGQ^|8u6*lO;>Xt;2BVdesF()=mFs*dk04z=p+jFl}cyF@y
zo<;uyi=|0O)(bKcCUn0wJ9h~z(DE&UW5y;ma6mZP6mQjVU)FD#-S<FL9Pb^=SE2D!
z?+@{`;sfm2SB^9Y7I*}G7aeLh<|+*5(D}yP&!Gli)u<T$7*!It!e=(>!x=nv<^Y+j
z_I!LpSs~eAV4eT1&gtH=y)P@86v8gAChwy!EijNRJ3gLJ8E^FXitv*CLdP!oaZZfe
z^YJSndzpAgTHq}ts#Cj=2<pWtOrlJ8MWm5Y!6hA={pAdw)1HsO_g?+wi^wDcM$HYN
zfj4RyRmg-^a29I?xXe&%6&q5dDxlg)hz&V0dyQaeg}e@9-f2hieab3}?Fq@kT71lk
z#;0Q+7CjF)?i6m$wK%;|`E{wkoTF6A**Sd=hl91*n=766rxb72x<8u>eg1iRL%Hk_
zf4ScqSdoh=GvNH_s&0M|JmsW)9d)-@ZSCYqoUGH-S>qx=wuU}ar1V;s(zt$|K!rpM
zHCo)5;A{dkN`WZNfy_rWbF^RZ)ULGF<k&SNq9HOM+W$%%ls+4}`}d+GmckY(ntc=)
zTmT$~2d0j;F=_{paUDTk_w$RU!?^k4RH_k15ncYFb>Lk<c^A?A-b}^Lgp5z0B?Us2
z8z#C0iAF(<p6f#Ys8s)o$K0quN-vD%3^!Uos!#C6ci&_9fju(17UX+;$DHmY8`5?s
zo?!<64{;Z$SWx+s7I}UD{D;852h2ayUhwO`T`uq#3J~Pq0>BnY)osY!y(v<ztVH^p
zbf8=2oLi<BLX?a@s<Mg>zUlA}w`ut%;aD~ad-Yg|u_>y1C5(TXn7y>Ey05GV9rxrB
z{Xd@W3PBr$+<YDnMUj0iw*c5F(?9I`8C6XFqYA&|1}rVpt(xz>=-4v~ua}{tSb1qO
zR4qHh{-q4s7=MAjo%e|`7xD>d&<vaAzmgJ)|Ek%k$|s6w4M>X#>N<oJ;Bg!fvVCl-
ztx!_<UG3G8y`l9`Z}D0F+TCbkdf2Sb`$NSK|B!Y4bV0{k@$u*H4tmaKkQN8~Y-V3?
z=$d?hsOyIXGgUg|-7UD|5;xxCkt4PDMTT*qR5VximAwq)Na0<Otn^R@n?pA<4}SF-
zU}_i?odbPJ4M?rGG2djV{gAT?Sqdp%ZJt`p8gd=?Nl)xjFayvaKOqHw1X0gaF!GnV
zpsUp@9jPQQ-1dHjY=V@|CUlVh&YM#geHsTY$%<78JAG{zd*wpK-1!ZAkD+*fQk=Yc
zkZhp6u!oN>rW`3c7h!z)w!EAzKpps-XX|;3(1Lk#`szs!&`a2y#STGQEqmW2B&yw1
zEHzi`^C;e5K!eFQsy7lUq3U+ie<BG2fxmWC$mAoXr^M3sbqt(!e`{a6^vUZO+vks7
zb|pY1TG#dto->F!_4o$L?#+FzSy67$M+MXGADe721uKg}he~9si=rF|>CaEbyk0Gp
zb3xgf{d08Ag!pl-hg`9-4Dnp`e&?Qt@cS|fo2xK&r9>M7otP6xo`c@im(r0&2CZ$M
zq_-L}JjK)IcwV|v^7_H9G`HS%x%~hfq5PVha1o_MVyALB(|w_aF$K}02=(RrI(izK
ze}|;lihkeTioTJZQ3ZAmsQzk^OwED3lW8I|(wpu2wH~{QoMt#Co_V%#Kz*kQH3tUi
zYCtEukZr+N{HMt?aodAuZ8Lv;z!4_EG~SvoIpAsCZK6Y(hF~d+`30!$B09)|QcUNi
zN}SseyuYo%#&2JpknE~8$nR4E3HA5I#54jV65g=fS~0TwStb~d4u$pih*2AoHCc6e
zDjBgsoIA3qGrTVm!xpeZt7;JKK)4!wbkm!FTCdIXY`IIyvw+s%W|Yo6v|yZHB^1C;
zzMQxQaa&8oUBy{Afv5e%XFUf+Db_rI`@9a(`Y}1|XC<vp4xZsTJBQ`4?9)Z@*P#7^
ztcE6HCf4oAYYM78{%?Ei2r7`=PgH*tO?Vk>xEXF2{?nsZugAyi%T4&=FxRRYNLIkC
zUy?G7G)0j)EGtC!Ik}zkCm`r2H9!xkx>y;7CHhC^^>QVSmVG;3{HMyHlfkU_xkxYG
z!Gwj}bOUS?g)l_dM2R`-Om!<|jlyk^5HckyK?JN<8Ev;LR8M#2!<)fxs(@p^Kqyw-
zYLrK%XYCS4Di*+~iV@SEdC<g>A2hTE`-)*y^jy+mUokctrKQAg9-#Mw0+QuKNWBB#
zNVXTyQw9R0#V|A;bWKj_S#5p|Q&|DeTk_8LAIwr&6^ESFN&FIq3sQ=b%+p_@u%Iuo
zue<em^RRKD7RR%Q^<9{}D%{2ryT|8^rB$WYJLAR=C_Uiz&C)x>)bKmc$V7=@>=E2h
zLru;eWJd|{g3Na6Jrm4&{)+8R5(HRD@=_FnH=MPNJUf9}?DDPNQr)hDl9mNXGHj`c
zSvL^mM4`ZEznXmVB9RAUwf6@L#O?qrVq;!uL1oQi!ujl`V}hkG@vOlLsNmx-Bu=>0
z=oXK20ZQ``h`_Za;^O+PB$z*jOS%=lWpX|ocQeeOxV3!}#Qv+{5@UH3LJ#o=0M`&?
z4xBC!jo|nv2oj2w*vCWqkjV(&{4}#JETy_Jg57*hULmmtY~-upW4deRy|KhCbocJy
zH~^pqD%i+99N!hUqw>-GQ_J~75IF>{1&Yflz%|mwqW7h4w#tJ^5h;e{uL>$1XfwKk
zR!UC6EwFVnzQO~(P4#`-!Go$l<|GJ7E-OcGqlt9_u<_zla;ZG=Bf_H>a?_RkMu3#q
zO|CT}Hzsy(FC!|ymvxg{5Pq|6q%~F2&_c~bD@k9%_L+*e*2vhKjwHns;75<^OBwuP
zSzKP#_ZoXM9i2S&_5EeI2HRIwquiw=8_6kg^^bu41@p?~jM~3R;=Adl09$#g+(IUC
zU3-}&ERTgJn34<_=i74#zoCm|f{=)5U-$$dmYz&SjSeQvlDUkkN$0jmV{MFvi0j=5
z!lWm8ki1+!GmrIXC2zKXUSL`Q;xG?(Lo0V!!P{ehinH7u{Mhcn^|6unhjd-Sa8)vz
z&Iwa*K<|@;<rkSq#)$N-ee?2f>&8Sd(!h{{a!;)9<m8FGo_nfB0|;_i4I}xJXI^MC
z`Q=UN$*Cq#y2*}F1vRHhr_jGmJP1&&2yd?j;3TXFMu<h^iTs}R59DPxEV*eyfQb3%
z=HGu*nv5PItMZe5$@#gyHB(Wf6@V-4KR9EV#c}LbW%VIY?qgk1lm8f(50mMx$IncG
z+Ms)2!Grwgl~C}BTqD1E&Wm^JDWFz<QbGj3<K2H=--{<N*_9K&Mv(J)$cr{$S@ZJ|
z9oo{Q#~lSkL>caO0?zl7UG(^qqphGkz2QmL?Sldr883aG4&fHxm-1@Q;mA&?#NL@)
z!>K(G*-+3fI+Rqeb13LbK%YUzp=2g0hA8z{T_woWJ92lPd2I5SXFv3?A!>EscyU+4
z!Exq*%^u|=V>vt*Pc=QsGSv0SNmsfgppjNuWzTi}up_D~0_(6Mmb^z})e*}E9P}@$
z81(2Q=(4kgOS{*N^Q?Ml;8(5lekXapq~ZE`lxA3}Cv~g%s~5ZZE2j4fn64);C~d`)
z*Pr+h$08Zwc{7jsWUQ5M(=i&DOkmD-uUMM(`gng<7FlCR9F=4@7x!+Kj423rmoyW$
zKrY}fZ{5g~J(-ay&hvDksl`vRtXR=CNu&ElnS<}kyagsZ;{E>nlaSrhl~wuUi^So<
z-BoslKJ8|X^`9kNqbIXa3zq`{&CDGnVyUc#0@;2URu2TB!*kcC?w|@v4fL-)<pxmV
zXIRM}Pe^0eGiDH*TkvUl)Osp;^GO+bY~8hTyBuVFd;#1~f?ia4<zxcKc!J+Ey1ut(
zv%J1}bG~B;a@~|MJv8rfsaLLv6T?ay!7$5YH;vEbfGQOgn`Cyn7BBI*j50s<sXBT3
z{rf8+7K0t{<{muMx#S`rduu*dxpJ=khPz8UQ_dR@>K&cYf+kN<q6!*G0p8OdQR49I
zW?x*Zz;8brSW&XPBWd#ky8L?+nkXPY7}?`7n|XnVo+Kon4B{+jdd7u%MXWnyAZ2hp
z*EC^vci~$FU#S5hy^d44&Q8bI4VgbAXWyhp3b3U=ue`0DG@3tYst<i3`B<j5KJ%3P
zM;TL;x6mU8LUXtR$E`-yQ%-(g@#@@2R{bTY3rYe(`ke#>s~)t84qr_n6T=Y1EjQAW
z@|tC3JyN#mZ56l1h=|0?4BB75Rmctwmsa4mz8sk}2(RO7cv$n+ymI=mNg>U{r0Z2Q
zO|4c5>!aG{=QksB+?Dpc_cAQ&aq%Sbf4gPzW!yu2Zzlt2moKfne#YFh7iq<F>!7B-
ze5I@FNyE@ivujO<p6&kSp#03bJA;sAL~{i}HgMZq3{xdi8vlU_YX>GQ9hk7kz=X|g
zlE3$-`R-a$oQR{|39wvF6%;raavRHzU76B3^4aH@$=*swr1;Ite~+-@ul|a#Cf>O}
ztEdke-#C#JVYc@Z60=tpQrsfOZ&F;Wp4W(1-+DcbWOaTSU|1aS1|V8CKuLoi=QVXu
z8LRcre#41BHN!9h8{SQtslo<Obf$4W{L~{dNH6(fmv180KrTVkh&9%lu&VU<q65by
zb?o4R!G2Kk3joTo1rIk;_TbUBo-KdYqX?uwC5nj+EA}mEyU4BSIPz6}pdZ2Y>jJ3$
z)c5HrPXWWy&k}_aVv%VcptV($cqjAp#Ms>P-inUj9n$|ehUNN8_I@W?3L1f6C-f#C
z{`J)2uMI;#DhGaMj{oX1|4RM-hXnI~xJ+FaiRidj<%-(Q`!Z@U4_W!k?EO4a1^_b@
z)~8wJJGLOTM*&o74nIS<--ix}&{USm`mJz(hIF7@TK*cEylcW$LonSeCfN-=^KimV
zt^qw&YvFgpuq`0@@K(8MXJG)^K7ZFFAWFV<+T(k%M%Ev%5%3p0!m$IUg!8jl)Y2QH
z0OUhu7Wuq4<MNUMX03kH#eZDGUru+2(80ANl`60x>>8hc)$9H6U4yp!<yB_hKlY2J
zC76tTC#^l^vV7-WRc$@0UsKwnWgChdtWw)VGf^Ij2lxL0mF!TfA8a@LICz3IhP$M8
zjV})i%~>Kd>dylxjelO6MgZ-V{40D?mcpj~K6?8=Wg{)m>UY%#(?-Arjr&y!xpSnJ
zyj#7)sdZ2S(`r%u0q-B7zI6Gt@+yTt`Pa~cdW(oz7M0teX{r=7Su0ipUMT!k+rud!
z^8xyy+a^-IafXTqS{@-%UuDFoaqDi}0F()GP8k=xu&?Mc2As;x;l~$Njs(1Dz$Y9-
zTF&0<&q99!^TH$!+Lw1gIqjS9tOCjm;$aW0N?fAGYQMQZpsOYW)c=&*^RFmO2(XNc
z2aRvkG0M&LMQH}}9=?u@0&!9av6KBQ_BcIj6oKPzc2+Y!L5ve;X{f%@53w4W{CWKJ
zLx8!9V0Ws;NS9N}jXl2L>6t3;RF9?JCD~tzxeRDRwm_oRxfJ$IL$^Wz1mlc<U4Br8
z!dekFvY_lmcS}lo&K8`ww)uW4-=aPM2doie?x?sGWR&Whi-0)^#InCUe2OD=gJ3yt
z@EHmrQ>Y+N)!&0O52yglL=ThmhrdGv>@q|k2oM1LDa8RK?8Jz&xqA<w0I|c~)*i{K
z4w9AYl)iBNi-;?a=shuvuOpHf|HF%pdlQ<?1zT6=5^Kh4TVg64yWza%Dr|tD{z-Lt
zhZ`X*ieHmU0c6lASe$?OD%g>3Zr>)|VUCRL(j!t!C3@u%?`TD4xm5=&NQNnJ4C5tG
zXU@1|Ie+ftI_B*)2siz&6z_j?jPuvH{(tH+agW=rnF*Gzg%fG^`H)pZitOM2sTqF6
zbeBhlQ}|}OEbMMXeVAi!huLi*v%d=O1U!FJPp5gWEgV1`qkLM!-;~s=x;ka0F1Oxv
zM(?s5fD5+9mtg5vai;HMdbPO?F2;s+8^XutzhcZQu`4R!8Ki$*Cvr!WLB-Tx@MZU|
zIb&~)KQ4Lq&asBePl7=_!7Blm4@I9E5AkxC9_Gh5hEU}HA2%hn;=ga&6Ld#d^VXA6
za%wPm$ca<%+uN1Xq3OFQ-@yB~Z#bsbJF|exzlU>5a+}?!G0yO}A&91}k{$yXOxCG!
za0VRs{=;xHK3Al@J+6Ien&saQ^XuUuFtNJ>eu$OT89WxnQIT-WM8TBA>C%j))wwev
zPf<xDf17Jh_3a^R?!QXMk95m84JA{+1pYuFMfo8I6_ntLo91uh|KXDTZT5c|tG_|v
z{`(F8Yc4zQY=-Df2}-iuYo^p+eyud1#D{ghw-An@tnBZ~tRIQRIMaK$aubSH3e~hH
zM0vjy1yh=H=vQVij-m>hJRDUph<VRcf0MD<;#Smb5oW%6xh0`y)(%WvBh#;h)cLW`
z@SUw7m7bL1(Un`Z`=gk2*o9?N^{FD_)1G3u#p_bnZ4<>kInU?%DZAvogSkpDe0_ef
ze9)&q!gA$>6?xSP0q9Y3j<SI#|KSulKZbPU9T2`W1UrT`&-{qTt*Ny`%NAmS2Sw5j
zQ^bbT0K)~xA4TBH;WOn!+w;C3%e`rSalrgcIXrw-q*;d(uj(PB%t2$;>;TqJr-4SL
zXHSu34QL|a)6jAEGE*rbl_R#wPoTLd^T76d9vu2A&bWrb^Nm`Esl$7P2_~5QULqUP
z$|;euWg@@e&&@#Fb_V@BKX=~tbEIaBM^m|DjWufM7Qw&Ft+abSz~Wm`f@gG@yia@0
zS%=4zyCd>$5|n{FQ5bK22&OpoC*->4zT<98l^NY`y~m6Ou8)ap+gS{KFVy^S{_w1v
zAk#MT0?HDXMpTiyj}FlL=dR7F#b?X=RPI=tkv44s<GTWnDd(VoxhTWrNN^6QCH%4e
z&j43K@E3t7Rgyx^HoI`pd(cA3RVpiFd+t{vZ9J|Gf~deIx!uJ;EkQX%b?m-Nl9Xfw
zdBuo)1(C5w9kzW!Lc=&@U(w-T&c+7@)k@5^>To`MHCuJ7w-ufO?nwo}Ttb_h!WK;U
z`Ny}mWG@;E{be8pby4$2k%WF{;44e0u2-~zzR?%7s!iZ}mW_f-E>=h09t)1<_=7$p
zQ3{MkFJ&7F|Ea_Qo@Xn3&6Ano<s?ONwf>xrCn4R)_9AR<ksF9}Y-%hj%ZaTr;0-o%
z5P?*=g$IH{sb}z66hr}_et#xt4We+P5o?RzKS=xcVu<CE50GRt0C(Z_B?pHlt>%;8
zq;9^EubDCcqG}HcAbw`*0ngFm&^l^8Q#xQO{;DOxjns@@!WL0^EKV6AkagAv_&}12
zj6)L>`dzE$x}a{`+gNhIrx*|_8a08S>xZ=NO*X-hv(cN`Vf=oRH{s(q%UlOHmsQEj
z1{ef+OSQ@Rcz9%DDbW|T{9O9(Cp}J1&b9f$tuVw!7#Pi~AEyzNS_dyPQY!INDzPtr
zyYC(?Bm6rTJl&CiAT@0rWY%hvDMpgPSh;MJU>l2rzE}hB{hWUt0wZF(8?n6xG6NtM
zxQW1Bg*PBDG%#v3Ku~M>IR<V1yJJ@ot5?Z$=<V_a*o2a(wjnjpG?#zZ*ogw8HQTNy
zonTrH&mPZ9QU=rySkV3A7ZaO{lzte6AdaG!c+g7=<ZZN@Imv%$*>Y!|i*V!#GBI^2
z3kF~wb|s$vvpq0a&kG&<=Dla~&TBh00pnQYAIOi<9tqe_hU^h!T!3}^|N6c*CN}&h
zVFZZLG+xpCR#kT>7;nH(PSz#KgyW=ljSaiF`Ev!;iJi9Zz;98UT#jGDeED!OjOkrX
zxsCL)a{?RV`ecOi)Lm6u3(p%Iaafe{SX%WU#2M?+xu)#jmA}V8S0+0|?ZYJxdL;Sn
z)tYGtg4m@BqEaAi8lzD|_$&$))QWZ`FVHWP!04wMo-BeTAZ`bI+nk)q6Fc8!wV=-7
zudx8Zh6_OwNoJ&Q2pNozhd3M`9DSoMY7v~#No~hSQL^8EndT&<z&4M))wW5VvR6W|
zHNV@&t7_cUb%rU<7oB*4fR&5eyG4Ve&2S)tv^92A^-Uj2|B5k_kOZKz`;q$=mBkoE
z^{)~F*y9pzE)!mE8$(H>QL2#(Ek^q^nwW#4-blljBHqqn&i-w?Uw)sh_~@D>ub|b*
znuiaR^lJ!>fMhHgxHyTqNU|$noePd;`8}O9w_NjaPw#5KP4GFp{e99*hN)8es~rJa
z<{;CJl8eOK6Rhscx&cI+AV9)q9`tK$SxrF*<;hTFtMzg4x0gqMJ<k)sg6*)iHBSGz
z_A5ZMq1>ON^6N6twfoOIfBq`7o?DgV(ikob)o+~qqhBb{Hg#g6vMzR#5=9NRkNAH{
z9|-a({qC3UmsJ)GSLVw8;|-Z~F5Y%^-cY;WdISWbV1Va$^-X`iKU4Pk_x=I_E*N4Q
zTS;d;eYZ>ezg}JGysF@C8xiD?m&_@;A1#~vuPYn~FQXwWpqeepDzWR|&m~@L;$&3E
zEPTw@cly_8%t>P4*=e}-(W|fiLUXq>OPO>K#DSs)Kq0raB+>EL@}3`Gj#S;<I|53)
zw>RP)0Wa@Q%}43=XVwyzNkEd{NF!#VEV<Ygw!S4`kG|=Qfw0_gl_W<Et-mp<S%_M(
zhW)2I3vXb;_~1%QxzdR9o(Zgd1bo&|7NZ_@K(`cndyZfJ6h?pxy!VJbVbpv=3Y1#^
zM8f&8w3+qb;P%!=u3JFw*+XFxa9h+hj1gbWJO*3j)iPj8I@n#Yr$iT%3TV84mUrze
zun9o3Do8FPRI2)6%TYw}y8}`q4pBo-v_r#VUq)qGt!sNQWiTI#(R3>hEha9?MP9j=
zb)KUNdK|OvHrr#ZaSGwIRH=Gv4)X+j<6$Hg)dFuL#;LBpf$?R~fBFWw?VV|7PCD@W
zxOZoc3fV9VUvKR9D!x>F+q%!?j<y?zYst8?u{$!q75^dk+}j&2z%cD{+AGJK?UZ}*
zq&$?jUPKZR+|LT#C(=%r?N4j_>P-#Hla(xu(Iu@2r0TifwOl~%FP?wYjo*$Ky`X>B
zUh=`C_u{Jx$`)%#H&#47HfgxOgu&pF3zgUrDJP_xqE@Bo?U8<iGKB|I<|+*N+0k9p
z>~X;vHbs?BE)E321Rr<cvzUHoN+@#tFy0g%#w`!QR$q1qm`^c-cg!j`%UyLQh&_J)
z`bNz<kjNWsNNi!t)1us1$OEgylf9r!VMy-lza9h%e-9W;L?{H`u#aT<P^S6pzV9ZD
zLT?EyZo|h<VK1;u1Lzve?)2uy=bG&UpYbsTmLoh$)V43G{QT#D@IHNjE6*>67T)F&
zWM7f6=_o&^rTeZr&PcJc+M(H_5xn}}n?eE{JSja|2%tNA`UHltKwsSY?JY$smabfy
z-K%FKd0*@or%GCzvgj&^xx$YvfLU8Wi<_x^De^0eWKEiJmIyW8_P`dy(nRm2xDdys
zAc*kaNh6?hUdEXgf`FF9pO)(EzK^|_sPUgR(2W8>(h&svZ}x6bDbWtR^ncmbZnGmi
zBK<$rdG#jT5)sZa+%Ex=_uuEWsU*HIr-}243`hn4IYHmi{8~o;1HXcM{V*BF{WLPK
z*Y3RgF`z#MrVCULgM(o$@Z&xW9r+#YAxvRL70Te*NucegT(z%#@6ImSxr%8jbmydd
z=c-^YO-f0&{LWPxz$XWpOdiU!n1lxZ?=}B7Y4|;w>;Io6?cMe;-w%Ha7;wZhcdj4e
zX^Wx+Q51=mb)y7Y6q!w=<Xm?4#TOpnQtycSIPd{}+yUsiQg{9seHYMZ?)<T-8YEM8
z?yw!2EFs#cu8rCA4wg-QhN2c?EpBeSb6#g>;X@f@|JX(vuPAwY%5$Ud+JGwVg`pbx
zL9dSIzC&+5{&+9*!zCzbZLVM5xu?M9Ba3q60BpIrsd_xgDH?_UEWyReDT0`-oo(A#
zP9+n)XS#$SlNGpS3MllhhX%=Vj;_xED0J^7s*qC{yG?WdwORER?{15%kK&AHaN<U7
zIdtaBdv`mSoPV+Zn}+u%t3Ag(yxMp*CAh3$?sD|JpBKMA7%REICL^xw5O~=Fqk^&a
z)w(8c-5r=#5jox$8Pm0=^x-w;`{+RJ^oobu$*5~%H|xF**xeWUR6Sd1!TGw#$Nwx)
z9Re_#8Q<DVRyUo_t{Kp25tB4^4IWeV#o6a7#q8Cum{D>dBBNRad!_Hx?P1|Nonh8C
z8*{gT<Emhd9R}&rU#3gyQM|J#c)F6bITJHf<1f$b*no_}Eo<0BB;S(~xmSvG+JpF9
z8ByEt<h$e=m1(j^nV$Fs6&@-z!)~oeJ}(iQ4+m{eE2mK{zAT+CqmiK6GemT6xZj`D
zdgNu!(|g86$_>?8`S1LkpTU_8jvqsmt!AZ#bs6vqW6bBIW~WPMe9Ts)1;HwvYEY?M
zx*27b`^YXpT5?^_)=OKXc<r2xXMI8f?1N80XCxL6)<mju^6=}mmgh>M6M&(&PUxDt
zBm#>H*jismxUA!hMe$+t8CiG()39D02IW||(y_yjixsNZ`kc~deLe)@o76ePse-~j
z3*Q6?<vIc?u!9Ea`JmDxqzU`ZUASF-;5Kdhr2wx2OH=j0OuC|?r}tm0Nhs`zK5i3T
zV&z+6lXc<UNBD*PHdKDRZv3|${HwdHyJBktWe)0=-#3nR+-&O$ah=PdI@xpWFmxi(
z?i0tdbv!X8&%Oe=r%@bwMCk#Yi4wHm`Hn=IH~Yt?B9p2;C4#C?eFmi>I`i4UEO3mf
zRxaH|-H%%0N3PZs3`obcp;rvx)viJiY@mfz$a5rOgxkouaj;*`(jBvIRWhRl%jw@{
zt;T)G?asG~Qti%#-c-D5;mtv+CgL&f5B#YPsL>R$?9ndNldd`NiX|%{`5ssGFujgj
zPXTq<>%)m({VJffxip`#K>B?L+&|hSSlHVwP5@Dmt{7v>XrpIy(4Owo(b6_4sMstk
zGWcQ-%Plx+m|U=Zm_4>p`~U;$kzn8V<k-p$c1JgkOZv4!p+e2)lO41T&F+4S=M_|Z
z{o<pzHfzda@N$ci(d9uh7c-x(m6)(1)!?U)`4jZayKtH6(3AT%AD9Mtn8@Pr@!>Rm
z<(hGiT*TUC8wCO99F#7($ct`lUlT*f{`$t$rAIeSA%P_a)HFW#Zv-T_FNkgA(#4hy
z+0l;~VUHN5zgT5j3GR0<3G8wPJ&PH8#hq!@xWC1g>|?xyk#VLc)+Qy&-q97rPEd(6
z+ZrcxO~j_X5C|ORQum0C=9O>`5Mt~pyWt$`h7lF!5@GDozc?g!v2WH~2IvweYL$CS
zOA&M`pKu)qH>3|J@}OEr<b^$=3yk~;!~~jH+KljkZy4V&<3dYWXOUV~Du~{zQ)15#
z3lVgh5)4gh3l_x5eBn~gBCikcGRneXy_Sd0xc2!Eul2L?SFR1uUG28P02P(q`J%(>
zE-t=&$WMaVABgvDcadSNJ>m9zNJxlg7>f{MrYrZ-3`i+e`7UU&d=m)spbebX`LF<Z
ztKU<k`6<6FPFzKeg@u(@A#jDXy%nQH?Z_#=t0_+FtA`|tx!_h0E78$vIdtwagUPi#
zs$s4}xBw34P#2!|E_k<3pXK?!vJSSU)-{d>XG{!3Y~yj;V4rj*B<t6N&Qkk}J-bWp
zA3Mm(Hi^kQgK@U>acDkNa;&K^M1w<jG{;ywNY?pTY;hTr!Pg_lK2s4lKx1(;cdvu!
zW7UgaDz&ap^&K;3DZqCfVMAK7sYVn)-O;dxgT=Oef{>4DcLV7*<AaCwM&g<;)|!<(
ze3&Mk5fk)YPMSLR(;H^&{#&}zxrrO>5J7C$SupS1x`z-i^yLCYW0v-`hm^8L2T9!)
z3!;`2j!Qsg(CgY9lrzl8<)ikdX6qI2KkF0*(hv2uM{jSi+-`NJViCO;<?!hvqk^nE
zQ*`tKJ?tsQOl0f{Z`1nyjF^Y`SjV}S1u#Ba)9=iV5O~<PTe>Q@KKY(64!jQ8T2L74
zc?zupU8yJXD)RS#%pdSw*=WYD*X{+D2+_?x|5g<vpNy@(yBx`<MA2Eic~<D52^+Bs
zxBa~tDI9+}eC*NYG_E{(??%Ew2G4-M)2+9Nem?RGMyg6*uRc?~o1(sUH%XlCw)BUz
zziW=B!Dy@vt@Rwgx+vH&v1Q&HdYx6Dh6qoqoJ$Op*d^*hF4EMqoukFZEztCw3k}BU
zVPY9f8tlJI&m1A;7|HhooGH1!u5-(tg(c7FCo{dB#lSaeT|eonb5|sXs!=?Pd2GWn
z=M+y6Qm?7r<r16^S-<XDYVKdIKZEIxzpOKC6g8G+D<?A6Bq}2KSS}#a`nml^WX_u|
zeP(`(tsy(^?P2<{G-+Ljw*3xya+~oC^k!<x4~CCthm=T)Pn$24;o+|j3b7Q2#PSMK
z9F;_ojg9yySJ-(yn$$*ox{Kfmc>0ull5t^_7r{0BC~fls{kP7t!@XCdtV8I@b3vNi
z@eA}}4j(;|=$W}i7Dr3!XiG+`I4dFKkoA)zJ@Mtd+zt41D7Sat8Fbe6ST53-9nq;U
zBXwT2s&T`rJc|#Tzi+B?h2QZGF@(#~A?kZ!5zv$I8JP!}`5$j6QO98`y=Uq+`pbv#
zxLJ?7!#4_NkHws;KW;0<k5;DH4V9@nADnl&x0HT1r$m~zV6NosJL?&?@nj8dH15(l
zwL{AqFBCO&o6G`>#e}DhkalxsXwMu{EVMp1Q@`Egd<iavEGwo-(%@3a{<uG`<XKMj
zJ=xa}E|)z`$w7X3QK7(a#7=JzeS=$X&DAp|cH{CP?f0SAamlorD(2CurzA!am~@=X
zxC1LrhB3ml<ubbTSMGBX#mCZw4>-7R+v2ty^U88!`Oju(D?dm>rmC2$v9O_}-dYdd
zb_m*)J#d{M7Nq~IQxYh#C+~rwt$<*ea;@s|+)|F&Hw317<>}w*QA<o^`(6*BK2(D5
zO%P<k>1m^si0k_o>6t;neH1mc&)4M<7N0(f=Rd=1G4v<_`#fYsPo=T^`iD@Zg=%(r
z+6&8kN<I`DJP#jzEdQe5%wU2))xg1F6Lpfk{#Y9G`Oh<3$M1*-y}F=fIr5Q@MvX?a
ztqGX&n4vP4<Zb@NqFO(~cH`;3ONSCAn98V4T~8iPq+xOCzwkv$-T7vj{42hLv@M@?
za@6(Gm|G5CPjlk&Ip}^U1uaQ8^`4cMV>?>p`^|gBa04|t53hR+F=`y2T0<F~Z&3jQ
z6IYJBc<xYPvC3oB;)fgiccb(@A2L6SC2S7SGpjWUrk#o_;Z5bdQ0rH3CO9SP$iiRW
zQW~Jj<!BZ<Epb=~=iYT}w^-;Gd#<K+|1hcB4t#fSq;`5`Fni<(kDUY?MC7=&wM{gy
zNVM?7BMzUXV&Ts0drMeX1V{Y2h%30=G4sx%_iSH0>MSkpZOYZBc(k@O!^PdGmS|+F
z=a#knBDHJkqDg~F?Y2DqG4noD)Z)>;xGz#UX4Y0d8z-_IgkxajIdN0!525$ga!-*h
zdQX=vK~;$TLuFxc{Z>hLn@@G?kdP4Q1%`(~jI6Fh)r43*sTl05kW#mScWstcSYRhM
zS7&5&-=QRX=Lf4Uvf<hy&y0sHjY@t_8-tV&+<!*P$db1I+qun1rTJPu8dt~#hA;^#
zOqemdIl9_zf*E0;6X{YGNK+<I8&1%#TX=TLsr!W}U<qWId&`!yN2G}Ngpi2H$38lR
zZ&!G!SlT3~HycH@Sq~p9K6zi&ZXU%)ZR~tY&inw2@Pm3MrE3Flspi;sB_h;C^k;RG
z`P7`urCMl0Rs~(67cA^;ZT4k^AK=V5UU2S-G0p3z5It6h4)f!%1-O*X%K%;4mBY#}
z0^`>|MDre4&c3eWbpHU7Ax4^>`AWi#TF$!D_{Z`mVxk$^=<$WI$c}41sxL3xrTd!p
zZMElk;8>cvvf<ST1A$Jk9xvio_J}De*d@l&evQPQ1sV7Z5S-{!!D#w@pTNq5g{%hd
z!?K2H2UI@fhLfp2n&l3oZi!x2=?S1F9L6jP7g9HM@Ak;4B!7;k^H3`eymwixeQn!L
zG1n@@ng~u|j@7kl&akqYac_JoXXT^BA_v0IJdW+6h9xjrXj6@JuGclMK`bRS$`DM$
ztFiJfZsqX=8iFbyE-AT@l-2S9Z&<5p6*+XF8gX@ZhA&yuT*XZE-EAB~mHNS(@z_pk
z^hZBD@*z;B+=9=421-og2mZS-3g+HzK}H-^5T!eNDRGht{L?*Wcs5VN`u=|bDI7rl

literal 31438
zcmb5VcT|&2^FNG&pdz5sM5HK9rS}dBNH0q7y|+jWp{fXo^j<<yY0^6Z5(3g&Kza!T
zX+dg)0HN~>-uLr-&vVZE&&xSsuid$Jc6WBJ+1by|M!wcmBD?+YHUR+vnToQ4HUR<Q
z7y-exft%OyB?>;K2z+wQOIt~fpknCJIzB_>@KWO?0YP;f>6z6HeE!y3Wg{;F0`ktQ
z-?bD@a(V&+e;XBrm%4tlTiF9qkMyV_9M*>lNNIPxS>!~n-Fq4O{ulV}D{Ey-Vj+0S
z@#T-)i$8CraQqYV6T<UJm_7b+>|_fhbER}_P2a*4hULdMLO}3{A^dMjfF-_4+hEuJ
zX8$M02l!j|FO3fq;^%uXHZfqKRTO}eJ>NN5*jqFhZk)M#>Fqc4`7AWo&}8A__wMiX
z;aqe3O6h0V24AIRi&ot4J}i@B(8wW3Yv9L5ad!m8-K#ofPN<r}ooj%(%dKRVe*fo3
zt2kNO<^xT1`Nf9iAb!}tl;;BWw^!pXqgK~LP$NIIcr9f7&d#PaPL3h6Wzz7}3(d^B
zkCm;h%@>u9pyhj$uNDF?NqJo!SC+Wg{ULOlDxX0Ueqm2>Y072{saL?APs=Aq*s);s
z@0f(J&6r(FnZ14048cwn$YI&ED{%rn_tNP+-?%TA+z_G!`gulmuQX|QZW=b=&^G*>
zUdry+*h5L^sPq^YgFgS$M|xb!)i7VWJ!?{<QM2{@M+eEu&qfA=V&)-Tj~8b3Mh<4l
zG>K*wMUGLx;)`iviGj5AWRcIg2qc36c3fH3uknZYV6Nn9UFw`A6Z%5anG_Xpq_L&V
zE98C#CM6(9$E~O1nwLsZ_0*aYes{2wpI!|blA;wy=0;&Y<)in@-LdD2$FJR-QKL#o
zw~?15uzC+$)NH}(ALTwr5y1BC)A6vCY>BD861{*!6Q;moz4HUY7q)=Y&SRs9PT0JM
zDC)f%)JLeX6PA{a%NMCsh3C<3&|dSo(gvvYMsjG@t-FaUVbjox2x=UHdt8n+#xD=I
zQRdz)7h6PAjF|8j#{s+YlU=dyUk$LnBso}1du*&3>V9@iD3*C8R)Kf+WZ)0_{a&72
z)0EqjcqAq&RjqT^qZL-bu=qQw<a56go!BNA(t%_v=)8szD-_0zxT;CI$4ZzaM7hkC
z$a^9A{+yNR4N4kRWadepW&j}~Od0aOwrL0m-WmLaAuG#FZb0tX(MPq2e}d}A8>T2_
zf9<tG>NoRY?n*MeHvY!#_G_}m5pk-_kGZ+ptp|Hp{pZ^+)C06xVilJ8J8^D0$&cIg
znUW=~=|Gw8(sIz|JE?SWTG&b@6d^vH3+YMsMg)(g152A0Gg+{{Uz$tf65O;|;g8U2
z%8hCt{T7WPz(AF%zWQw|RNky-sMpl&J|kYAtWo6&5Pr<Eo#V>cmZKFpVNZ9(3k)q*
z#@Ry1bmT#0_X9M5;?eoGNDVklI}6TPGk=1lcmZO5hHGZXfE6e=1UNGcd*J5M#8y)g
zP$FyU%KC?~gC<RsEC_CNHe0=qBf}#n){?+uqcv-krZ0dLO@>z&;1mqWd#;3T(e!WA
z_-fr_4HUqr<ls`#+b4PFsY6wRA|kLPP#WAD5wKUFK-YIjgK<EOgr}FyWCDZ9n}o3q
zED|rDm>l%N2B38m{FwAm$4h;Bs>g5}w1&PYUMbq8Fo$+tGu@s`J)ez69=}cCO316K
z7Igrt4@xr8xvxzso)<`N7M8DVh8LZT+SNZ;Yj;iZy=$DXJ-KjBu%gJ*Cqn1*)szPY
zvjr>6`VWy>xS6keVjIBy?+T_8)TD<+cFTSc)@sap75oBnAzAIi@HVq;4(8RaqH?E-
zs8XDXC&Mmd(rCO&vcuCFWv6QG+cRy>$Qrvli`mn69oFC~-Ue-0i8<z^7}^`6x3(ie
zz)egr!4q=nlVBDKo5&AqT2aWEp&y8#b-3{eFa%1MTHR%xeeNUBA)w`(1;)jAu|bhI
zu+>b^gXv+|a`Bg-!743Yen9R(9Fh=kuu>WWqsY=7UK4EDqbA4Bx)UQoN`bSUrl{xX
z2$S1LIMdHcE|_xVJ+8H(VP^yq;OGH6dx3R_{sN{Pjm~baC9$Eo&-$@h!IYs_R@cE6
z1wJ1lh22NHbq#il^JAjWv~L5gOUo-bF43`_LPQb@lcN?DG7_c2nBLbG7itnL2IOY3
z@Xh8C9qz`4F!Xj&)SQysFFY%}A|xf>ddKkBo)HlIYq|eFbN`rlf`4iMG5B;>>l4BM
zmcHvU)fvh^d-e78Q>xoxa^h<rKsKnWr>lZN@CT62-}0}PD11)t7~BHARb3KI$Om_s
zpxrjEch<8UZGZJTiYSKo<i)@)XR~jI$0Kg)F&I0$opNf1C>Lo`q9VV;r>Eav5xoR^
z=-f@Eevr(Ba8%}$-@pX*EH|wUwP+5`dDsS1P;@k{ElWG_aOYr8M)BQTEx%f?zQDd-
zCCQ@6c=aSmhV0>m`fe}$pF|&pFMEyhnd5VtoW2xTivc3E|0ybe5a7#^@^6*Dul1XN
zIIq?^_3S-(Gt1Mf$ESc*{6}@w(BC&Jy7t_w-$`D2bjtT%EgAo*@gI6J&N0y#gx8T5
zATaiSc;Xpt%j#dT+P+--x7+{Q_^ER$Zd&i(zBPhQwyGU)8e<Ne7%9xoHk(S~N~a$p
zS#(wx)r#lx<s8p2s2UbAl!YhRp6a6TT}fh9c@B6ANMu!6C0o_FO0K$%C+mcqAA%vx
z&69|2*9d4DkV#hH3oHe)$F7nnb*k7D=!fV}ioj6>9ULE>^z<<8%Z#-^p;yAV;sWwL
zp96(3qGTIGaO+d%Vl6EK?r^wM6>u0sa_Aly2;b93^#|<D8kBn{bEZKg`w8JRiL6MQ
zvRmTVnXft~xsvrh+eiNX$deyh6x~Nj-(XBx2K^UVE8IX?zMw;!<2*qL37g9n3f{rP
z&RbJj;FO^d?>8WyZ9s1i^YO@NkBNhK{#XUn#$H6u)DtO9QE*<(AJRAKx*|p;324P6
zoVC<A3>>aS#M~PdRNvl{(cbCxawD=XIQ$tzcyLN`qBJdT57gU$fAuUVfvF^Bxvom@
zt6++0bKUk03yNA#i(yKl`<)j|qExucKY_!aSUP)?zQgkDY*?O%orrlJ4xO&qD&=)8
zI}*9e#Ip2YS?Zo*>JqL?%s=Ul3y(dwx<h}@VrN5Tsyk>oQS7k=YF&ew47>v-11o;Q
zVvl7e`l0$CeTpBZh?}oU{4{X0a3}BiQ&8sy1g$xrE=Bb_E=gLTSXFAaSA%|^C()<H
zIM(m4G^}#AO8GsNs;X^n(LHgKH#pmx-?g7T-uSF1sa8O#!4sFjVFp?&${6#da?6~K
z%`J{|7&6Mz@QH)NSc>z0jVb2)`dUS2V2;G7)|6Cw%x<q{E2<%9s+>NGweo4n`t(D~
z?WC@)nicD_eBhk8h~&nMT$uNRS^I8rW8x08Obr-Ea;LavV3xbp82BZmI{*xET{pce
zJJz!-%YYOL85z-2%QRzT(Hh+wD)Rd1nYkUyK9m}zAYU|%K$q0sc$^V7!R`V2ygr?j
z`+6AXofU5nwNaEZG1N}S@(=}y$Xy&4>4K(~>RS&+gz90X7-bJLRroWP7L#d<R=H*E
zBJ_}}j9Zq)`KZv_vE_*;VrjEvtJwjc7r)-7W8k1d*V1>iyj5A`SzjP~7*f3CoHQqz
z$|wmf<X_d3R7t#q!f@LX)hChm!SnThR<(~YUTaV4FCRXft@d}Dy;wUtc2i3W+TCxb
znd<IMYKD!K`O?feF(~_LZbi$_$R!8?vT5S;eHOzMG$m~YX;!mu09F48c{U75%HBg6
zqGqhqi}g?jnT+m+%0bntylj5lWxPthc9!|^+{AY044X+19*J77J)qO!>}#NA2X~D@
zlxu;{ybf9GtveyEA{q16L(szyZ-y>USSEctGBI=V`p?5Kho5<0;T548MuKydt^QUU
z#*|949k8AvG#s?p9#%JUc_?{V4fL(_(6xF*vm5tkl5;zZs_rhIoW}F8#2tO1OgB-p
zvAQ4QCvQw(Pu;7lUe!INQdcObVEW|uSmR!~rE+=QLqf%X0-t-CAzu_=&&<1kYls|a
zFZAG+s|46xWVj<PF<W|V(BSrP4$R^3yjt5+iLNQ2RHKerAxeE~dUf2odsMxk$*w-K
zA)$L|a>SW3CBVZaz@quh8mu6rv0l8_u|Beez&j}esNMI`rh6&s78Z``Ggh)K+8{J_
zEVXC(8nap$g~+7b{Js$+Kk2^JAYRRor7M2s+5D<rr7G(8&bKtSZkSo$p(#oq5`I_i
z=HoZmi_`HD7kT7;0oid5M1F&9!H?E~%ih!hD3i+0Qx@RzZMAHh$r-z9Tkau|SJQ{>
zs@%Pk+}sG0LBlmzHg&21Tw%+IK7Ehc>C4!3;j97~(#YyrPce(@r~^1Z9oz6~1_Y0|
zpP3a)l_iGSqHn{b`JOA@#+tiNW{EA)zf76R;Z5U4v%GhWlknJ|(*S>(<3)xZAtZ-N
z%C|k32yQ<9csJ1!6%~OSa&HlRtRpWeD}LUsnqG;@_CJj@y^<h(?(?T`mq)Yd6`((#
z#42RY6b58F<2343_H=G+3wV@^^Fzn(t&l*i6{bA;O%89X&DS?VrOV9R;l~@W^Q6jK
z=<Ujoo3>Nw*6mrqtSSG`FdIe3-5)Rf!|=VZpeK2D>O7uXc6fjpD91Jwt<(wtO7qU*
zkDt83i!UFC_j^4mF!07e{y%@#t3wML0?-{^dzEKr3*{yNO)1>ErG=aYU6aWmy~xh(
zfsfBOzRz}-AA2=$7=Y`t`hA-7MKOwqzWtA8Zubpp@BPLM4tg*9ZQOQmQFlSn>4Se?
zo5DR|scJ~XPnJ<AsFly(>68Y*LoVg#4A`w)s9cxAbq&j;9a`j`8d{)^uqS<TyWscb
z9`km#gY?*;Um(;=x>w3t2rSI3zJ3!-7|KN=uwhj7pceJUMJ{vnc=N_EtN-^XnHAOo
zkSNmwYaoSmcfP6bWL#$GNSa5~LrNJz1p`C>qDzzVDj^aneql3vH#Yp7)X-pqi@iZ>
z@~AAj;Jp?2Xh4s}M6%N7HQ+(3`O{49y&aPdt@FEMW{TY~evB);W3)IzWa&2u7Jk0}
z0+4`Hn8~;ffZ54Pu?8gogBT@RK;U`tVVlTFhlS|CV%vTCFzrl;&J9MK!S!Ja;y|-U
zaU37-$|=*MgZA6vjxQW}R!@d8bamM6oF3a#;PLj*VbfV2>YnZ2QEwoZRUoVyFUj#8
zl{-TRo&8F2@U_h;Wr^cur0;?80|uczqt*z{EAo=3bz{|^z3KMFAldDOY^z|NRhk^$
zp;klx?e**E7`!jmLJ5cb6~EU|bZl^4>z{#Y`POW)L^rgB`2LUIy)(On>7w{IaSH7g
z1uA%jjrYa&%;7LnCKe<!ky#8(m1ZqhK3%%#ReQbJxBha)Ki+(tE^3MT_hCQ%%CRAM
zQS<{ZFJ1%uBf%G}CBD+twu9gui12?>g1;?ZRj@?iX@ApyU&WIwuiTvfrtki?eN}=c
zOTTi+{+s?^-E2E#MZ2_#@0`!&3zGz%(R<kLzgPtyrf%-M%@R6Wo)DW31ZD#31u_O!
z?Oo0)w+;vNG6vVKPg-GWD$i`gklSBHI3bob+6S#fcn?=nUN>*5h!#B`dq>yH>iLAx
zAT(_-AY1RjU&ed@ymB6@B`$w>vIOjfxxBBkbA5c$^lg@biF~%jbfV45#VqKC6p#$7
z>4G22)d;{nu&!#r7`RplGo&1uvrH_EX>Rvz0-f$W#LJTqF9-bix9|NxQc2=@<CPBY
zU;cd%6a=Igbn!p0RL$%P^k7@|C6p!zh`R6aSyRtHaq&hfrL$|U>ycRzN|B;XW_N<J
z+W!@ASnR^&s;A~$R=xBm>&?uddx<-i`?n2ymQ7XGG&5Qw90f7vOFNnT0O-s8@IvXR
zDnzB*;BSWqZgeu6NB%{>REc9Y-R_5|$&<}3414>ahC<>C3JQMx;q;TjOFsq#u*90D
zlyt85RdG$0w~M4-&PYOYzQ^(rAjiiKOUj*iGwYndlbt1QC3XDOiuWx;kKVtcil<Vz
zRnz?Ko$Py;i|eiL1A<9J&*&t#wiwZak``+=X*Y5>0)7nPbA#e|lwe2F>!T`T`sXj3
zY5k6=Tdr;lR3kUp*x>U8JuvRg(U#tZzAeP;ml+`mq<eXjiyI12SnQs#s4XdQ$_d_x
z2AP2S)X$UCAwj<sfD-5y2ra)2V9+F{)3!m!<)hmElTtxs;p=RHYSqhT7`4a3-nzSp
zS7_m;(7f3!Y`!ubbjovgjobae6%T}oA<!+2d-gUqlvu{^bg4$J6U8ucH|g6K;zXL6
z*5>3Nyq>Dv`17rg70yF+pVd^9HTy;3zLXl#_902c03DAo&O}&y^PVd1%PP18@}`1L
zMQ8U;;dj}o-uo@zjUC{?=Jtj@CbG&6&m&@aM(7+w@q*xRgg+)70=#S5!cs~?K!7C|
zkZ3vT!jK(k%i4x*(t|~JhH_d3{1<1Z%OkL0a60gE3M+FGEVXI@HA>e}c`T}L#j0S?
z56e>-92Lk$@R7EpE+<-YmT}TAG4KFvMQu?-L|@-d#y@(JTb;4WfQ@A&UvP_dj1wk*
z74W7-)2U738=$+l<;kYFIHLL>8`ZS;1r))17YZ60z<<ts0L1>%=i|3oJ*1q?XXsD|
z`{ScAw!u@socytv4bZX|513zXlrmW6_VTOI{-|^a3ebOjCGy#$LOF3abLR{pfCDD5
zgH1{1vE)p)8KsB_RPw?@Q!KL&y$!S4+%Hh)Etzs+{M7NsSJVX-u=i;4mvlm4rc3f^
zVF%iM<pY`l{-SL6)~nz6Z5{T)&30C3i!*O*bCbTrG^`D=2e@d)xd+M1bl=DB3=493
zC1~=?YR!K27UpPf?@e1)LC@bBHpzJW3W1y&k^uuntedJ_24O)lym+D96P)J}j%X|c
z(QdywkU)6!emwp2yRLL1H@r1I5)8rai-d?eqMp$zPllJHS-m)~;bp<wI(IxJ<aE%G
z?QE@fxHk206bAASl+9%fvHg6@!a)tIsa5dQ3N`9JkO35vY|uh)KSWVsD>CDkWy|z+
z8;j6pb+kU?8L#RoYG!gX-a5SbGmDTEz0ey(&i%3kyq)YP!b5E&_fk6C`s@5l2U?qh
zr?@T`C-d!4x#o-vndx1yxF0Y|*KXZD$9^By0r4NOpc9i`Sf0zXR1tsy#?$5jLq$3$
zEkl>Xcg5_kA{vD2h7Ih0OO-efaeh(el;HgK$z$8$J}0|c-9c=uCSmUmWzB2pE6eO|
z?1B;O)0h1YX%4hLe8oPKYs#1rP<^uK%6E4YgxUH?%~5haR+wZ!sebtz@3v}DEYYCJ
zZFk+t(sYQPTiZ|&S*`wK?+R+2r_)AuZb=`{^JSz_bt`zaFVM`UZ>gUUqMu8h=Jp~}
zSSY5?Su*OFW#0vBF*GdPD#*vL3Fz~MJ(v2NKIhH(-sM*Z{-^Fihg}<`qAn+6eaEZ0
z?y}m)99lFML1Kb;K7a;ZC1-DX4Y-vR><`{3Vc6V_)cZES3F45d88Ln-4tAicxtoSi
zR+9;I*2K9{V?|1R$`M-@kIvhwJsZZ@S5N%68<?nC5^k0Yn%S2B?rekIS)<)}CGF!&
zVuXrNu;*-!jfDlS++H~R)u}5P_&&XeE`uGvMnT4SMS01z*5ePmzDDk56hvSLLSl!x
zL>DSrEDUI5r0T0i%v4_^nskkxmb?!72*Pn7J2TyXM;n@uMjq)2aBQO1&WzMRjj0H7
zB3=Y2tAuTY;81C~Pppt|X1JY-DP;&tF4aB;v`K18_M&?!zBOq(dEaTX=Dthl6D_Ce
zIOET3cvUs?Q8m*9<>(%Uy*O(EACDoM-~p_?49zb_jqw<<!z65C<GttCMA?U0def%^
z?t78O!wTH%<=$tT^x5|hI*QXU?-AH=Pld6bMIu4IC<i469XzO(Ap#H<*Ukhk_hG9!
zhV7b;n`LqL|1M2!FmVLl3}AGF;pfW62ZN&}w*w*&Ca-?rT@!jN@gUNb<nOnExodPi
z@>p91wXop-Km=ofQMdZ*5u}T*J;2XzcE5u`PrhC$HGa1VTiryqV*VxLdUiTrYx3b&
zKq%{4Wpp^=w0(mAiZg!k#~(EOPl{h9{{gc8leS$sNLTO+0X96z5p@bhu1N?To+E{f
zk@eZIQ|Q{mavS)&4R`s1$J#Nw6!5v`gl3PERCiy9N%{8t#iRIb{XD?wha5&>y~Y-(
ztRsivIw#cY9yL^1J}+5Drs&tc7>jiIk%bK;=<|L^tMp0Fd%Sm(y%o6Oxqp_zm7kIm
z6BE_ccrbZMD>WUizic{+idNN*_)ffxsRq$=Z-qU`@R<x$0^YA%uJfIdDoZG>@8K}4
z9E3Ksik!yS#7XWCK(0H;orL`~2*Ln#e>Yw{6vMfkO?AMuGC{KDhR3_PL$ym2gx=#O
zdPnmJ5~Dr@$?$$EXXO+RUJ)a<Odn-7%Hp)sN+DC2q2IZBU;RsEPjXuXdwu4@f4n9C
znMd`Ttl25X9h$E9#(PZTnuS$GJak1se3+AAcAR&QW1AJDu_i2FZ*|ls!1iW^<8%LX
zT%ej&IZZ2@Xedn99Zj*vxFX#f5RYTVtfeeUy6-V#UZU`n#~{+%q$;FZoODRGmGXTq
zW$xs%5bAgOzfwbvV9bCOpC;Pb)Q1;Gr@8mA!9%k--#Fq`zNckMWqn`6qd8h8&HZ<p
zIB!-?mBW!HqMPiDz0^^{&^54zYyCQOW3VoHF8xkv%Z_XWMWpLbUpIk<A>?nJO}6cC
z8sihLGfG-+9nG7D4m(b4UmYw@kqR45_MCwtgbz&?!_!4>OVWUc7wqH-sd*ADBLdG)
zsP($eHkSx^($stMLk8tvhZ(6_2YMuRl9ifR9M{wAbL8JH8|nWNuYfizqz_91T;Iig
zhYVO$>cr>PJ@q!@Qj|=JHX{(2qs%Q@{TiD&hDCNnB^@%}7+?hrs7FYT3=8XrN=rYZ
z<Y3?@4GvFS53emApzIaY7OCG#??y)C46x+oF}UN-siIom%#L;{B&pK$@w#-RQ8c}g
zpO<&|I{zC^&mm{84QtD|RZzGtVheegbu8_iE10HGlwuO*e&Z8e-0s6iF0LQuOa#ZG
zlbL<dO2!BWEmV-#+cL>(o+*DiUb4k459wt>+?|y5<z2T(6Cig*Vx;LooG%8>D=jV(
z=|9?AIR-)40Rf*X@9YKdX&2Ok?oYu**!a$>Xh?_9uLtS30*nPI0^+BejEU;SDentD
z*qo@ysAFvyaTd8&#m#C+omD;KVo=kfX7l_7syfl~E$1G5;$3h7y-ZU6=X#<~qEpko
zVz*+Bc&r1i8x7L;(GypI6zCHUWa2ct7Lzz0B-FF%tD?%C<d9=Tn@>to70`tIfM@TP
z<sMUu1t)R*`F=~Q>ra=XL#m1P>r2nCJ0q{%xwmsZq=0P(y*uARrH%U4b$%j6ooT8Z
zUhMJB2QK(>COye%dAd0F-p4^&M8}sGBq=P}c-(f;NnexVS|}_?s=R35`9!71QIo-K
zd+LqHyXHjHMf_{hjNWmXDW2kK=B|sEB(xj>b)PG4sqk(SZ51=Uyp~_mf_KL9>Q(o5
z$$7+2*ue?`D~LPF7LA86-j}HBogc<;fJn8~8jY7GJz3_W?N%bGBp+Ze7K;{E%y${8
zgX3{YKLB7&zx6Es4?jq==R#-LkwIlmeDJsB3A%S4)H#-dRQYbZ=y54W?{se2<EncV
z2Qxc@HV0|GJnxg#Pn3JS*)3BANo6g6u_cyzr)r+^;4QxyCBZT!&APZ8iu_ZyqT7wk
z`C$R3%!oD_l9YkIfFPXz=Ia<t1N;UX7jtkLtbW$JQkL$fsX^nhT-Vz!KZhEp)l;nh
z$aG??@<PY6KM9)Osmqc-Zk#ni7#d0or2~y#k<Co};4;kn&<-5qHkK-BmfD(EdQn{k
zKP3RMtnH$dm-4JmM9FMZOg#w8a~f>*?!wh#Sm%GgFmxdFb|ijdqKjOcW$T(ryV;=n
ziX(s-)A+}7GN(Mx)H3}zK_4qU!@e0*eqV_d2-dW>B;6ZY@jm5{e1n~O3_vjQhc`$8
z9^1!w(XMbi2J;P@@DyvjFl978Iby~Xd9^B!KQ4N)WW>adX?OCWk$UjOp%=RFf@8(3
z{41~*T0R9WUp(zSP3I=(S5`vRQE${@2=fS^y>rfE;qQ^4NQ5LU9QzI3ZLS4e90c#_
z&#a6+Z*yCly6g_Sb-3L}AF6)vt&4g&+o%YFx_Azl)$aVhE8iQSm8iW|Z8l}(@KfW+
zx?_W9uaJ9mVk>rv!Xl7%kNA<(v1~Dco*$eA^W;geD5w^5xMG%(oVTI@R4(xnlRRvC
ztKxmwLI~nOX%x9t2aSv_YVYkx9P{t-=zbvomUMP)FV=WA(XjvRgi8YCUHx0W@a7m;
zSWZ}C!8@7bW1Or_LnNFtEaYsJG!a5m>zd?u%a=BUVa06BSG~Kv{Mb=txnw`Vl@cuz
zB|hc=*5xPGM48Q2<MOJOxB4U-cF6a3C@C0YK@mCc6>d(Cxt>OwaV>Z*kM55>iPsWm
zE>U{uv*R1V!~xh+QI7AGu9)<d$<yz2rIgqwUsyFBan4+Vm*|~70AU=!D=TEH$mlOo
zG#1f7_6+@&4wIAif`!1Fps7UGQ>j2<nc)T!Zdw)pbwv9QJOl6w=^8Q3E!D%%s<j&5
zecyP;64$QIaj2zb_n*2ZJ)z?TH+=t=?k3l|S#$4plBX21b85McZ8m09hL$ICNJgRt
zXAl1QvX!m0$i3GeDI|zx5qp741eV`7T?^=QYEUU3wHj|62=LjP+^1Ny?7NjvRo5nz
z2ubjkvMP>XKWIX!>Ft@0HVRkgGXtc&#CuN{S@E8$j;{N(_w6;^6K>c824KLC;~mCZ
z&13Q+`+m1$Kqjln1NA&<wjaPvGZ~C(3B%Fz&7z{i6@*cgsX|(@JG=EA$=GOemYgc@
z^6w#?^Q`Jm-kM9B-koQ7yaz?PL_oR-#jWU`(oo<!i6VQQuEn)Ccna(r%|2y(;M~D)
zz>m>%3T54~G^%D)6FQT4zYm&9u+A5psZ)KOx0xER`K!am=tZ-3m0V({_b>fM3!7Tj
z@j<RCs_QjfR0puNMEMnlBqD+BZ<XmP)f~Hb&mybW-B&L@y%oC^pNNx!N~P{Ff4t<;
z{5YQ92-02gYjoPtzFo{cTR+^S_GGNT{KVR8$=0FB;)MMp^{YF<9q-pcC5c5}(Si#x
zos_9l0wjG*<SO1MZdPk+2a(&Z<IRIAUZ7Bz!4XZ)WZhjtcl9nB)k!HzHgx)n55udk
z0vP*{GOVIPt%32lMidGjciHG*iV@9H3f|qgJP!z4XcUYvnr@Nl7-k9H^4U)_wD{!@
zv}=P)SDI+ab6$X5&a@<!Lq_TFF2yNz%j~`U?z;z#Ia`BPG~`^C=Gl@Yppd(u(_EEv
zDR?wSm~4-6iW#$L-E;6PylOg{9ev^b@bcby>sI!>CcP5XyLtVV0m+rbr?lIIKTB>=
zpBvmu`0hxkO<3^E<Ag|x@P1r-$1l~EjaR=?Z<@DdANV^AXNU_zyQADh7K-%h_?NSp
zD2|Xbf`ZvX>>)I>j+2&cZj9(4Ui3D{kWA+V-|uCt5Z({{7hD4T6ZFFOZ%XhlY;y(N
z@BuWM?ymLq^;s7l@_H6GlBWeVc2HqnO^i<`JLs=$3@xA0_)~<+@Ydn}$TD2jkkQ4O
zH!`5qVmC6?%x|oc3uo(4LaWp#964Kl>q%lv8L&HWRx*>QS|WU0%wGsD9j6KgT9bPG
zb&Rjv;s&_K0ddm-d$m7yV|`$e2M(sCrPZd3F@rCY<#KQ&MVDk}(2J~d>pSuU)jc=Q
z*4|2Ebk42(j9T_T@omceGc%Jhmo}}oqM$z{Iz}HC09K)9nSNp@vaBwgQb5*VIw?-m
z?Q70f5yC36N)GIv9L1Ct%DH#?&h5?*<V*BZbt(Sn-u?)3d0Z<}X(?hkf*2a6=cLDN
zRL_U#ZbpWWYDllQ!9VV5_PU3l{c3j```5L@#EE0_28`;oesa|;Y|ttxA`8J$DI-_=
z>OrVHmYgtfUbF&7$ZNie^UfH=kUw21)~@Ko0Sg+7#<0mCHTsJChH^BjUquP6y7P?N
z71!T@IP=ESAwrm!5AK*{DW~ubjmd|P!j|n_Ep$rF(N&Ibq!PZIP;F2c>nnhP-=_`^
zu*)+Q5*=3AU%nSRI)^|~1u=Cqr)3D@tUwugpBvDc!%qOJpB9iD>Mxbe&AfW&$G3Y9
za1?MO0r{cHxGe|fi5r`qnTRJR<>v$U>&my<G8Ufw3*D{JVaRXvMgqCaM;XsRTOmIt
z9`?X`@J@{NA6`*Mi8)=2%)|ya$@XCMY&xVBy>F`KoATmhM@$ect@+tiUPI5WtF6cm
z<-FDONFi<JR)7wgA+6s)7GRmwpr`fNc4@B#gw+)4eGy9oCVNVX7OZ*h5(UuZo$=r3
zmY058<zL?n_j}{pTor3wB|gSvyQAka-SSH2JwGXB+>+J;r*raY_I3Pz3cp=C9qMcr
zj02GvxByTy>1ccGP}KVclsNSwUnz)WD&f{(`2bV^<DU-Wap*z2HLm}L^|qXe22jw>
z#SA*5-b@}C`oOQP31S+rkzrGpmom)Do4*w=d*rP$K3icD8?-?wB8ky4u76=poU{V?
z``X?Zz+G@QKL(_h^gU0bb1Lv$Oy+LdT%s?T%yZH?zB+)NcN#x{?i)*oJr~LL5Uku@
zT?yR#6>&Ji{^MtTE1e{_u5a=Xe_1`9+Y_kLS#g+=Nu)_8PJM*^jmjNt1!3@63O6?O
z15ciYfR(bgFZSFj9xkt(0SSELV~-8}Il{hMR9kgJ`byD$WACVm8+hufyc6%JnSmYH
z3REgwyrRA3nhuF2j0}w&SUU(tS(RO1T5POIYIN3D9P8PUQJ>7TqDzNl?y$Ss-yMX2
zM_}~M&O&*9YQJpdWhb=adPIk+$_VLKh+a0iTascKOP`Xu@NE4w<dN=`(43ouZTIW*
zDl%@VmE;l<L6XNltmdrr(zRHJ7u*rMb)uMkz&FLzE%7VA`P_vM^DXyxMs~OBuSLEi
z>5{y)15^Ad!PN&sk2SYDfw8DCYjGYr!k1GmcI&Sj)Zutd^k#&vP{VMFUYO(@p=Z|(
zmjnHmJCiV_sF^QyAvl`>YKyBKGBz9q#yJW$DX1*Ko>voqDhH8TnyVD<NMx1wPbxfM
z{~y@?{|{XMQxto#e6&q#!pl^7dG@;&AQN1(NDf@O*ff_q+vNTWc3*)@SWoXW+$@%s
zsod?(WDYpubY!-cmWS@YbYN$UW5~(=X0q2n2ivI?j{3h8L9A<l?1K&8m+V@i4d;s&
z^hY=YWWc}22k$_`ZE;W%^z<S4^YXH&{RhUlK%0Ng6M(qt`C{gz4q1ydbdcY^1hwzz
zRQi9Qf}IDV1p?H=Ex@<BnK)Ewp6)}O?_a}ug*bp|?+%vP?hRa6IiVy^Nirrh=U(w)
z+F+M>$Bg{nzt~e5#zas^Q+=9IhwbLnf*RJBBg1y*NxJA&^J*(-G<suW!_38W35hhB
zC40w@3ET4v!W*jv%vKuue10gHJp*Y=@^@`X?Ok16JvC~C!+rNOpw}!>q^l!q3--zW
zHm7z@D0*b8U1C$z)rkQ?+kKCYX^cZ>OPDWV8;rJ}L(9`-t?aVSBoiXp$Ld9kKaKf&
zkbnnk@F0C|s&Xt}G==MZPi3B_uy>IW@7P^fiTLBgwn}1}@7Yeisd*UYdjBnOurJgP
zyV7@j-RfY)NNSzCoj956W_w|6qSh~oL@nlY2-LrM;Y3n;TWrWXC*q}xb4f{Q3DhC@
ze9}Zub8p8d0oOKN#|*gr4)zjtm*^!k;O2)HDA857QCR`D-qWarXMW&!u*X-0cZuG^
zYB!StD(F&~f~5J4GmB_%WC?O{yhL49`f~Uf6S93BB!9OTs$oE_e%xO2;ct1v6F>zV
zF2ex5;=c#aE?;JlT!#e!ZT~C|woTu;Q6{;*e`nQ`5EL&;^zt=%FSNAO#nRH!-JM(n
zaPv9{66POXCNtMH<H(V{v=!GNl*|C_3BBskY&;AKh4%FH7#J9ciik{3O<7^Xnd5=<
z=`FeECx;FliZ+K!I@eIczhzq{#$GG-lkXAZyGK+{57N@osw^vWb$8#{+S<Zkm>xaa
z+TQ+wCVR<@K~8lpb0`KJ8oE&oM2wMk6D50y7hMgD$cG1H6V8Sg0x}JzLcz%Wn|uN2
zAMVdY6|h5#Nxy@_MPUby^+<aI0s>C=_G;W~Y7Cwl_>NhGT)1~}8fdd~Q%PCG?e{mv
zJifW%xYu3s0WS`BmpyjskfY=5VWm+nd$~UN=|!Js#l-bJb5m1OW8)ISg^LOU_QT1e
z#%C*T9UfOA`e%l?{~YfyWC}EU_Y5s0Ggrdrx!E!G_4Q+8I--FX{a)0zK|ka9jjL|I
z$IGgp0@QP+q2@itE{Va#!6ziuX?7^!4>532m4qhK7k_B_z!%Mn(5)Mj?&M=n)Va)W
zCQrBLeUkgC9eF=0`DLK;DADel&tkNpTgLBS`u^<&W+*|+Vu4JYO)lp71Alm|$|f<@
zMWHAkV-AM2aJi4(nGGcQ3w#a2B$@Tvwyo#ut*p03b5c~FTB(+JZzgC@_lKI)b&tJ-
z-JI$LhZx_&E(g$j_%d{#+pMO({=nq+h%<+hlG3w2@C=u8VU#WrO`FC^b$`QSzyjxY
z=PxUkJFg$h=XF(5Px&;*UNYNn6W2c$RYJ8(=|4}|ub`aDxlcEhFW-k0@QE?=%eYCj
zLbm5l4)Wqi5-UTtRyr4Yuq77dZ}q43R^-M*_MgEtm~U<<<V|7M92^`bHeS^mOUqWm
zLGqQ@+FI;X<t6A~YJr2JGB!@@A`lelceIBKr6pR3i3bwHo!CGNPdiCjRi_B2STJHN
zqI~tYKnsQ;Q{+^{$?Q>I9mQ*&{R|{sLF8K2%c~vq9mW&l)ljqxsZcNdTgr^|H1M`P
z@m?(I1Adw|3={ZImzJK8fm)B2<L`&U#srPF>Zc##gV<2NT}Toj9<a=*AK3hc-wYEf
zD`v}Nt3LzBrM=cd@!zgSx>d18@*Q{TW||lg%=Gq(>Y+%a&g6l}Vl??)IP=XFvp5(_
zLo7#MXCD<w%11%D{GW*653dx&g>6({3-Cs~SKcocb2W@rKi+z(jo?<&>arEMqe3>$
zPO7r=MBA=Rtbma16fuef+w!ZMCvNL~KA-+Q*v83|`!oOXbKY4bo3`;#_E$)Oxt$MX
z>$oawh|5i+7C(lkB-=lg8}Wvbm`dsw_3M+L9`fre<z2QQJ_7tk1zc6~1)dYx=E4H<
zB5V@q&~A3v66882()dTkgjNt@9XM9nw-adYfY**4n>jtNS-3uT^<Kb7ipt&wbFDX~
zc+OM;_q``yGhzY+M%c?I%TfXxC;0s>>p)lw(WaIJKph~Y6j{zS$#z`!MtYhsbZD$_
z>?>R^=kBA98<Et5<G0>$u4Mi}>Gy%9b%k{0m8>&P^GI{j@`i=-^o5jB;Uiz~kaI8t
z;(>y|(f7<ZKe(sBVv;VY#`Sx(S8v^5mmB<i-{oy#Dwo5QtVV2Cl+TxF?hL|yw}57q
zR};IGRsO%8{&eyi{W-_ytshld6c156QxPt+f${8#cqc3gE&Xy@9UUEJkySNRp?M~1
z$^o#mRNz!~Hp@gSr%-74sLFnds(9Q}BD9kI!{R$(FPP?bU}cC<uo`mdr}4bhHH!{O
zO=fc@a?Qbux?Y>kC~HT=53N@2&)a^#d3)(UFyHL2MwmdHz07r`UU;9}yO$X@Od$Um
z7nW@ns0IA~mJts!4p6Xa?xjl8Jz8<|O&lq)m14>IO6@*I_T9sz%tQg%hg2SgsVcTo
z*_8Ug)vc$=#{@_?$RMDcr{yAgV(X*+2o)ag-K@K^+<*E%-8)F$I+ta`B#d4!AJ(uv
zbG)D>0b$LaKT~hhxMuAxcNo{2A!Pq3%P$MO&Hc}UgJDmERHVZ;Yd-DZT(y`anT%n%
zW*0p?0Lnfeu-2oRB*<G=K3wEHdV9wqTcEP8-h+CNCp}HIj^1T69<qicyCh41^wCQ`
zRm#q!R+N}4+f0CHTZO^Q5RsBex63~2AeJ6JoHyEh*s9|XUO^0l2S+Vp5qG5*7<hzL
zQLO#+5h>BS%pM>aU*t8=We;j*MZ{hHnwY_Fc$y<{-rK=jgpkV2dxD3Q=(WE1OCCN*
zuS`?)`$z0ARKYX{7s_v9v!;h|R(#5~k%><^FZR!lZsL8hN=KA1htY!@S;7E^7ShkJ
zI?)Uz(`6vZQj=jAZ8wZwWm_o&SB#H&wwq9He5-+V&mMYA7xeiDQ=&Tg6UI3%!O=PX
zb^-UZ4+u#o56@Mq?Tho_5Y=`St%k^G5XUjOsCp$@Ds^1!Z=g8N^#QLCCic!RqtL8W
zAjv&>tUhTBZ^=jup0Dn@xh-ljv{O9?XcuiGTx!KL3{7Ad0ibw>1LguBd}x7&Wuwgo
zgg2zJJJ7Pac#VuZEc9%#r+js0GGdRku+aPQWX|Y^mnD<~ZKeQo1U6bZi<HNoL2dJ|
zLO=d=4I&?g9}I1KO-#5>Q0YMP>`*l|AEk1-QAl*QXc?K|BWx{aPhr+@&iF2xVN#?x
z-|C~5z}TEu|I1fyN$5}=-8;4t>A_f$dJWrUG`E4-v<+(H)S;pwayB93XV3T>6*BVX
z{Nd4bNYibl{LCyUh~shU?p89W<|&fZ#HWvAm)>4meZKB0GNsKf6Q`le=8r!!{r*Gs
z)<#Jl`1WK4(Lpq5N}!3J7qnh^$5;1xDh1brLykKpY4zs#13n8{92I{~Sm`I)iDrG?
z<IL5?G~yD$>^<L1pv{XCahA)o+Fsa#cl|-&V+pOE(xxC&rvo>vOv#;(V(y=FvBH>S
zvc!*KF;!f<7}NK*Z*qVqUq#xr$?FHjxvv6XOe;Vk#IzEZY+T(GH6NG7EU-iMO6o(v
z`yM(^ey)Iu3<^MMK{ysJEV}^hqpP#BD?b)koa<6c`Xl9^=$b2M+2KQ<5ec4j1!i1r
zCh(Vht~Lb~2z>ruB;)Tk;|k>XhyG7g%2gg4t|g4Ydr4DMQzx4y;*zCYp}a~c^@(-P
z+U4tiV_EP)Iu`RV004m5*~#3Kc7o&_AM*7jWd-<V9^kKLT($al2a_r#B?W`Q2Kyo7
zn>DVryq6i*QR*Q#2;Lf@-99`^3(H77(`o+QbHP0HRdBQArIYd?{m>|E?9%7hech)S
z2?XxDpK$KD5xmpMz$K4}?xH|i4{Q7`v{8JREGnZ@<$m#`Y$ijC9$1`AaN)13;3O6V
zlxKkis|ieN4d`lj(<D%8#Scg(2E^Ig$8(W`p|3>3=-Hc7LAhFSLEk{Fk>fh}Ju*fZ
zAsG!S3ecM$IsGNNM~1(7Q;ay}=C}r5KJDfd!B{<Lr^quCbr+!@447D6Xr;InfDf6%
z&CamLNCB|G7zYddK0>w)*1~5;i(4)7H0;bT{_aM>>6(+1<E=Wtd{DuBIfU`?eY&{f
z51V0%j9=z|E9mOJq-tc{QHN^)6{UTnt_hcsq?`XNsKd+9tc;P^3UsJ2Yk6Fm27~7f
zOwzA!lewX+);7bwA(va$1f}z3V>pWlnU|^XvYvWqCB9w{hX8T57xc+HFN}Qe;uT}?
z)Mn6xXIOyMN7bH?hF^8@o&zeN=YFA!wCBR?KE&)&f;e$taogBMVQgS6Orm(?a%DHo
zEd6)z(1be}LeZ(3&8?A<dLDb|Ao7vJTo}+|jD2h+A(tU6^YGXn35?&~de~$?ckE?g
znj^PESqoh|caVk1;`ect+Ip{VG;kikPUY~}S30f)f8)XPbNKJq-okWWdMAUU=YHNS
zP<!TmI?>HLUd2NE9QL!f1ywx2>fRSLqEI_=RGRpvva4VL^=&b9Pi}k=>1*J?SZIh?
zyVr+5Zl#ZLrQ}>K=j4gyexywo#2I@PKn4tJ%J9bD7MnvL2PzUgc@>Qs<Pt_1?Xyvx
z<9RkNg|wUd#7-#BsN$LLfs?Kcksgj?^qxh9b~8yA2_0gNwkSB%xaBLQW<IEtCp*^G
z2+(L2ku4k2Rpk3YMqEg(<SK$rFhGi+O%DtqcU>6gq(}v@hhq3Tn)SLn<|M}Co;B81
zWZ;bU*hS{iZVxy40n1UrR*zyT8V{ae4;5MxrgV=*veEPN^dfCcz+mq#m!i9IU7df=
zvhh>Z=#SO+x&{0m=gljwJCr`Rln#{Ud!+cAkXI@a6xUv2Y)FF@2}mgV$%n~V3~yM_
zbVZd9Vf-g=FVN$^^{X&I0s@N;*g?DIB58Y@_z}10fl({jwSyg0LW+#|4h&?F$mBnG
z8ZRSrN4R{y{yP$cs-N-7^wDe{H1V|=fTbNMPQXH|^AVh=;7F+}=;6w2RLsD9&@U|8
zRKiuo=90VqT$?v#v_anK$(&^`(9p3Qic7h}vg)f1P6Z)#T!vC?2;1C8`;TYYYmC$8
z-gM~G*K7C&M3?DqtEKrmW#Yb}zTY_7j+PTNFwK&4M2(AFZC>#v=vV)s$-R<tbB&37
zEL&ZS+`7tCkNU#*X0I>3;IGE2u;7owNVqE{#A-HQ5XpMGr-6jQcp=-_07?nyYT_iM
z3p(?g1voVH)u3K;m~5Z@`3#Kd$~wvNzY0aT3cWLp1my~j+*CVKjbFKv)Rm3J6FNwK
zd9D5v(D2uUhNnahTz%7jBO0&%zXMH0V=pR0E>BnET0<_jPqkWu)h<UV)~D+DT0Z_2
zIi8gz3bT4~5pp=h{>+`_cH444k8e$HyQW@Z$z4hQVj@DL*SGAVuTjKbAI!}VlaJ;X
z>n7?MjAwI5hYsEoBbxOha(|ICuDz+kO@<}C5oqD`xW1V!=I7Gba`8e)Z2@99!k(0Z
zLx6UMje(r}ubIBOtT_lZyO^&Gl!a%l&G{#|kJ9~}E_|Fs8_Wc4Q{V}-t)SZ$iSkax
zhj9Lb^AMotjT8GqIR+3e5F^{(15L>vf9*cL26S+Lb~9NoWK{Oxd*k6ABGxvg_X(%`
z7@L#2PtyBzpuynj{{H^T3hTsEO5*i)-AD<&k(FZ&+RDWHM(Pa|SKtv|Ru<1woDYV6
zMIWw9#uZw$%$qHswsTE|y}<igWyuhfTHcoG{-dmf#dKf<ntOJBY6|G>ot(Pr&s{-D
zKb}}miRSPXzJc%SzuZKkHj$BzxHz4qIh|5^2&3kP?@X5A%=FPI)A|==ZW{h-o#voP
zU4WmTVcD!OV4)!|(%5cP|A%{F`{LgTzUtC7EaTG(r=(O6bO4C~9B4I1&OccQao@f(
zoa(*YRx3ORb;CByX1k$Y3Pj#>edA_S4IcW;J9*%bc+{`jWMTW*vQj?^A$c=*GpD*o
zNrlV4Y~cY=aSp$nTup%>{87dfJNN8)#~3yAczd}EUR`ih+P`bJ{^fLmKBEJM6a<vd
zgV5ZXk8IOF-rIbgpvPsJ0sOI&tNi5i%x2}&81gB?q}ahZCbrGs7t*~p2`Se6b#J{^
zCPO!`!ejBOB_1e}th{$&SUjsL5fn$Ok$b9@>Uz7;`{%ix7<xV&R8%K94C@GVuXHar
z*7r_?#Db8Oya@jXb($jnFH5C^f6pcKM**ig$j$j3`QLcWUBQa@84s{VHN5&Zp8$&R
zB1icm0`6knXJ819lrYu|v|Dr&O;>)*lT9&iLab(ZDSal;?-5{_)_<W%XWo`~hW!dP
z#B0+tT;dIHTk<55lEhV@jT&x3cfpGnvOm3m9su@<IL*WCuK!>m8QC2ivTjMdW=%b-
zMe>Yh+`a;YtV^oJ)@TfU;}vt8g~;T+ucO3w2`|%~<lNkrpJ-_zos(sRrujh@1j^Le
zfH?UrH=`c&0fehdjO9fnyr3tX1d|Qo14{#~)?YDMZvglYASuQ(+xLvKI`Ky*S5t$u
zg2PfuzT&TI#_^u7I^(97PIe-KC^sheVn8|__y2k6H1Lpf0;w7FC<6kmJJysbOE#-f
z9_pLj1dbkgAL}`Jt%djg-^XLeZXhzZv76{S>Nj4W_7_$Bs|3i;ptpYxet!U)KY{Mu
zhwBW~C;uPuRQWoNw)G6v08%^qk0XX3D>wxMP|PhFgkHP92JfEzCp;K0R-DMTt+UVa
z*!y+Zbi-ES#;)i~=wEmb%J$93(8hLYvgMlzu~<dH+xNfw9H4&VRYWyB6?5F`_g15_
z#wO2hP*6|=oRB2edP8Nx4We^I)ik7I3x#r;a!(f3$wa+w1~ACp@y}U8T^@3}qkJ2Z
z!uAfeba?YsV+XySbgi_W_?U|nR2xe-KK{2)ZtF_zFKY*(tD*a|_?xyVlk(UdL}_~%
z3hO?%h&F%YJ+lrIWN*G<ckm6bVWnS`PSHVhrfyjHq6+)JR@MeJH3OskmSq-A@vr~+
z1vIsJl6zt7?yC4MmDS8?TBxWwLnqz)`lYFP_wMG%%ZFLxrVbizO49QmKZ?E1Z2ZNA
z)i)wTNADKfrENDD?9;og<sWoUS!%AB=I<&$8{W##>!i)#S<8B4LIKX(gyhA>#m$!t
zd#3(jQ#~yhs^pXY@ID6f_Dlec8r~v7b76<_y_6Ft1K^-s17ed)#Q>TBb=)(J`Izwz
zOZQikfVkWkO=tUmSAusSlKZKe!DOq2FXQzv+HbIaUwpn~Et>>Yi?7mEs|VQHIhB}%
z-Yr}<Jp2$8@>y|a{6@f&>TPT0xsf*Fdy{@?ra6-*M+$T{W8(YAHp`HQ=Q2rRK9&(9
zoQmA0!-5z&MPjc>2AL=__?OF?4Q@_RlUYn*oXsTG8uhFk&<#5%O$bi9MWUESHAi-k
zMYX>mw5yxX_!zg%*1Vm45k-hM{C`zMGQlm8hGAQ%iDdWlkOBCF%4jqzKD`$rB^q1G
z((iFc@}+Tj@-Un2fO(?#&kLtuPd_sA`Hve2Ek0Q(8blygWMo%2pwPXUS8y%1ezO8}
zIgD!BlF%fwIx6!c@GUc}{y=8UPs(b@mk|FTGD`6#t0n&^SA19Ak<kz+LrUv={<7!%
z$&#98)(S7;NskS%c{}#Jsd=OFNE;o5S}X~Z?vR%ZBvu#wc1y5<^OR-57p(w}=1>~s
z58>Ybsa;zH$7}<eY8Ox2Y^G|<IERShMSJO2$U=WuGGkU(r2oVN(}*vo1`X8N0PEo^
zHq@ZC^|cj>plb6);yq31h|E5B<m|XR#~g6yQhX&lVnBSw&Dez%(@%%G1Bwc!IY*H8
zB00qWOfOI5__1HX*35thcZdl=l?te@MUx8P2NllDfM+IO;kq9wqoM1HHO&A4K9)5s
zd7j4oYd|yL4r-+Nk;5r>)29T>rWavvg&0hj0dyFCMewKIc#kTHnkK*S%@KB^y_^Sb
z+ROm{EaJV?ggKpW8Y{NFap$kWxA0&PeniBfKVG1s`b_K(!gl-bAFMP7Mh!#h+vVhV
zWFf+j0(K&A8j*X=D>PfBVL?oR3ZGZsEK5>&s!P9*WQS%2Aiekc?2^NKQhQB`&UXt|
zV)l9Ny#nhF@j;eDwVhYWD`J^GJO+3%)aL-Js9yg8dD+Y{%@{xKNQ7DmaIH>92xrWx
zH|p$NY-8eBsgAmEt$V4%D45#Dd)D>ydEStb)ZB}sHZ~ub%fq#}%L^s?1^DIK7+}b5
zZ2@*lxza+t7b{Q*D4|$mTEt?pY@83d${iANm`>2&XCIl$AS}G;^w`%A_$k7JRwn(Q
zcb>KQuN7s6=sRIFCq?z$l<s#(6*n5Ky(M$2540kU$4TczPE9Tc+zA-3ZH}QoWk|#s
z$ig_rFIEO1iLhJs>x8>PZ-l>!pR3S2k)~9$&axjB4tw9+_5b$v2qr3rVqb=0P7ev?
zY1>^6tqyWNK4>07elmP5sOC3!vGTqwI8KcY*W%N@`>-JHdy;y_8;bOw$7=UB6!v5)
z+%`!^ausL_6LDQV!U-@W2liEn4l{snY2L&SLWGAH*XYF?Zk652>x*#f1xNRSWduP<
zLFdbu{fu{~7pC(NEff~hv?&cvL*W1)VB%e!T(zSoHmoGR69HL+1J$M9jJ{U)O<51D
zAflF~{){c{F301_rDX70hl$DVGa`L=1r5%8YDj{BVN;LZS_h(5)<k45bsXXYI_bCF
zh(Lh%Ft2AFR=*#RSl%;knk8wVY5S8NGDCKaHBgyIA}H2C9Sr~WzJl~_Co;Q)<9A?e
z2kbMkanodX_jhNi8(;O)LNV0D$>i^30dt(5ny1%^_C817^L+A|C(<{?`R>iV3Yux`
z%)X4ZmLrt-#JViSUNg92??dGX^Z)DWt>dD4zW;G75CKsUkS-}H=>`$$1_5c2&P8fn
z7DVZ8kVYEmUSesH?vh$+DT$R`U<rZmMPKj7=lA%*A6#bV&YYQh=Iotwp7T6?;}XZn
zrwRV(s$}bz%8Kg-tP^RfTY056D;D-$7E}XK0>FM+t3Li1+0g&Er#sRVU%G8UFzPeh
zyfV0siV1|fAF#~sp2s^Z?xYd>Y?lcSVipT`qwW6$Ukopm(6gR!bL3bnO~^iSa0!$;
z5$X!V&AF2j_VgiK5m81;<mZZSc<%+h#TW@>zcER>f6D6lrkb@c-AJVh{wC<lO<mc%
z?^RX?@5_E+GSv`L!b@VtJ>yS09887C5mUBo;@}>oUbDw~&A%)B-qk<N=8fGa>%F7+
z-T<-H3-y|ft;g3qG<!CL$AjDR<z(_r+nGJ_^^*JyC#R6%XA-<nN$1K{duqN($w0>Q
zho=`BFNJFP)?D&IU+VJKv9=t=J+C+S$a93csNFOWsT)|`EZDAUYfeYVQEa(=)mP`d
z<bl0B=?k{b`$i^4ZDToq4pcKOOmOqcC+XkFBi8iquE`NEo@VqhC)(pMU(8TbHof}T
zsBz}VZ8p5Qw-j<hDv;2dxTje5P7dKV5cQh%g~$Xv`2{F}#MtT{Qw1&%0q6p(AqUla
zp)n!x%D&SKZC2J;*kI#rh?(fH_?pNdK50IlXL~b2ulPi;9I`AsI}z?cN~FgGy8k{l
zc1cD=dD1*kK@KeitMOg2ce!UnAb6MTJ4Am<Lfui+erey+zQg<>Bs}!HPG>yWc#n}0
zbYEPnsga-$sy7?^>-KMcHE!<HJL$hY$bra65MapCm_VIYN`sGG;$FZ5;Yz;)-f4+k
z23!K_D>MI{^NmhtmLCpJ0hx>o_gr2moZqKcF0D2OW@*dNP*s^DBRH4$0)fZM@*x6;
z0xQi}Brb82hsn(-L`am7BK?*~KWOlH0>FV?`cZ#@N2#a&j_I(af@?(z@d{E-dIg4H
zdt<=`b8-!L-R>olIVI()Ax9YKocIcN6+LdAI8a^&sEwh}=sT-$VMWA-M^QXadDr)S
z&$7<a9n)1rsar<D**z3!hyuFOl^>(<x(QGH{cB)I&ttHb;mrGT__u2`%du7403i&~
z?D^Z#;G!XUv{cbytCV7My3W{(NXEfR&KMZvCdKn9hI%>Hmb=Ipd{1-1dl=lDPkgG{
zlPeE4FS;#zPb$~MD69Fp5Q&Npm?&?hjNd_fP+JD&SBx#U#g>DT;QUkEoeFjCEzwZ<
zZuThTqKCCbjJasZuHwM$yDZVC_&aFoaz44KwEO5*DM-nAp(?b9X`{POJY5tl2S_VS
zh$J$?{<wIs*q$Fy*Agi^0u3Ky@rralq#t}|{O?QjT5+a@A4-L1euA4jZBhtwngzqj
zx8e&3Z(s6XK4&vY{bl0W(c>YD#}erfR2T`d8cc?ll@`ua)V@pQ9%=Ymwyo=R-^-*o
z9{g35L;tg9MxzO|g{j8P=kZ?wE^xMfzm6*n0*pYk(+n$0^ej&`KrGD|kBJvT08vh3
z=VcLnwHQ<7oj}LvU+`>)Aqwu38cA4=Nm<w0sGXWl81sT_Sqlvu=T>r;h&sF*)YfY<
z(a?0w3M<^n{RFi7-*+`&No>A7jl9$kP5ZIvkiLY+5W5}dv+5jSD5ik-r_q8@mOec3
z)HdGLoZZt-0iA2QqVOeo>X7qlMj_31F;9!2x3D21bWDuBw*@K?aT6DPE%Eawgh(GZ
zWQNc&p|4?1ttuir&$@tW+ZVg2Nz%TX<R>|oqt=h4!LwjH9kWB0%^f0X?1zJ*yp8M_
zo{>z8-FpI95MVL9tpvjFX*4~d^f(HuKOj#{aY7~AiQbzWSUgy*wT%@i#jzu<?5`HD
zkqFMR+Av?;#IK)UEZ;A777xuBQf<|c`tazgcAj>7N4b#z)7tA8Uk$-hJl16{ZAwdc
zt^c-C<>3yy;GQ)h$fa1U0lK%vnhX}8vGL;#Z*y64tq)Ci@9h=RavPSPNLJ3@FThpa
z8U7W?TCqxLY5@3gfQ`y00wGlH2J2!E28;5L4Df^46in8pW(!DGPwfii2B(4(idV|S
z_%DhiVFgD)`N<-6!>?m{M?^Wq8B#9=GvBaCoqyN8MkHK2@RNlFIsbWg|2m(6J>@?i
z^7S?j=nL>i|8*z>mq5XC+z=Gg4dbM<`sZ)}KEzmGU;f>x{eN~v2G2ohtw9Ec@+-V`
z=0)#Ze0|MQ?nIK?uZH4*6Q|rs@wFN|6HAhPavE&AwP&8(dl_((WM}G=Vu^JTXlNw5
zy&;U*i)V7=*5BUA2BAq}y)PS_x+~UnH+G%gz?lpFaPd<fWU?CVDE9=e(RnkJB!dm>
zoLlx20}obj^gVyXzcZ521D`lXrnE5w!~6uPF>Zv+Plb-`H21((9;Sfj6~WY6s}0e9
zpq{VW9rs}ckl-WTAtTSg_j^NK>uJIs*}$uKJKW$o%72Qrkj7l{DQ<1%n8LT*^xIeK
z@=dRs&DTj3JGnzgk#lcpCk%#vH%9jcMdpbFjli51CVkk{I7+b`7x^CZPi;!Omtqqs
z8+jLD#6E=cs>u&c#AplE3T%H!Pbn`6ErPOjofJikV<8F)+<djWw}l-`y`&rv)gxH`
z{RR<qaz~Cyy<`YfXxE0`0uhPYbWz1VKFy5%^1QZ+I~mrL)|VeyNb>Nk9J6>l5bgWl
zllU06kwGv+u~ByTa(~{LWZFcihWr&MCe8fT-kU(7EekO#cPF=TGCK2^Zqvj(Kk}hw
zwtmJ9u7D3rf^%hHj@+XBXJp++!Aa*r4Q`<i72R|4mYN10QcB*J{u8{io4syQ@2-0)
zuh+cDeZ?dz;7&18bmqMprLf2t#L=(W^`!mM-2B-FjhNcTUchmPyysp@6eL^&*}zP3
z(g<41mXmA6|LYzi*l2k>2o+GV8dPH@`mqzfQaVk+?^GGhE+|>*fQfQyO^JY{bxeMJ
z-={0!vl{XXkI68d9|Thoi8|LY3!GhM<LLVHT=%q`HQ1P(r@Dm!#J|y^wA!qfrGa?g
z#@*TXUcf7hu*+{^L;&?5$+Iv?BNqO997n?)#C8A6pLg^hRiET8{}Kd_J6!Mo)9zq0
zvk_D(l!K1(^aVkv%(sXXp>#{cd)H%QjCwWSG(Re4m65+K(*1EsM=XYP2r8nE85OM1
z{~6;z>vz%Z7=OXHkumZ;W}dahPza?padAL|iPA6u$g7y5Nj}SCrir?)H+X-w%Hl2s
zfxot+1$ihRNA;uh0m)=5pf_Z-+D0<W-In)#zlhONawfwc)quCnTy8+KLhQ+~6?<Lg
zdeB(2(FWJr_jSkk7GM7f*05gwVJZeofCMTk_^66iP-)PJ=&kF9(}DsAP;D#UF}^ZI
zRXeO2IRK8o_67s+B7RP@t3T(`prxV56U20v(96}SLbHnyh}p6?0*!U&c}Bd_bHqC`
zkFZWK-0^7!!aJ}Iu?<xWLILGJ{lnqQd|9FsUuz7E^oHF<P`<iyiU7(oD#5bAUL5q3
za6J4K!D&$b@Ry$@4@0Q+Evrj5Q?ZjY<U6Z<V=&W}0tzCKtN5>T+f<l{;x^HMi|~1{
zq}OZ90x0^P^_J)c;7JDjN2Wff=-@ASq1zg57e}WUa$nGu4;YGFtnht{n5>kbBYzb4
zl<(}7xzxV_O?}a?SQ1$)HN7-=<CpyLc!&ptXa%^UKq$b?dhQs)X=-?rK$b}5@95n)
zVPNpEh|Sp!>qsl{PMIIz9>6v|=BNHkvov_ln}W@L*H4x7&-Hli#Qf*g0si0cIe6F9
zYn?271(?RaUcGCt|G%i+|IV@jUb%)x7?%0l|7<1>hUM@5K#=W!O&M1~V0Sc)UJ^~#
zKi4_8@wp+WwbN>)q>>u!Rdx@*{HCnYI+(3nbI-H66;!OCMK|p+Gmb4YsK8r@_YCTH
zE|lai$HPt9Gp$zp&xzdXg;6i%I7222Wfg{Vcfup3BnII#TkU9m9a@~)^Cp@_nfqQ(
zG8-Ty|M`{&&zpvz2g`?bY1m?7T0p+*m_stw7U8@&u|2~kFU6dzRn7g{`Xs+~2~I0T
z?Mdwd?Gp;{U^h29jrZkz;mmKN&iI^y8NUJK5g@_`e>(r2E>C*KMWC^Kg4lkxA0f3y
z{HruC%%d^9)pK?k>AskytNV>>-MV0-zXC}^PQEiZ-|#!T3+n9b94F4vb|i-Q4(79u
z`}M-($H~gr%(*ml6GJ8Zu=_yLC6J2s66Y!Rr_MXhpGwK{7;Rt1-n=(Dj-#X!ZyN7w
zo}aEYZ&5MZ_DRt=ZX;cnt>|VTwJX!T$J)%=ADS(s+aMt8>E=G?wOuR+$1L62!Qf9?
z-;GmoM1iQLx9u@sp6)w^25uv1rm*)6sIb9%zzf!2%oG=dBT<v_XP_y+E`PPAa`!%=
z7@=tb;>OVKZs~G;+`t5qYj)0ON2~NJ;}=&uJ9d6#|LLI$qSj=%gK6wR<m{MVz(-<l
zS)|jgk{qj>D>g<<_@y0VDh3uhA1N-5jK*PbDp_yw*X#!5!?U%Pi~xB7sH)UZSSCeV
z;N|Q_wu?t&SXrH2xp~UsLkuoNS_2&wxm{8+Q2`#|IID1r$wgkGsG5fTG`f}ZcN}@s
zQd6~aAqVwtEIN9|yUzke=c!y=OU)ifC=1p$zIw-#E+=_YuB-{{WjSv<^-hfRHk#IT
z(C9SCq&hK?bSBodP;$x9S|&b75qY!v&=&$R=uEm<{RGnNF)uY8TpR-edwA#;tmxu0
zfl!@!@5<R9A7?xxoABpFG5U_NI?S>)m&Go*6G7u;tcQuF1irDdvRcI#hfN4_^QQmq
z>Z4IpRqYkpUJ=3<^e`oiZKIC<7Ax-}k*mC3-uaAf(Rk52$lT>7uvgFGhh&lN2lN@G
z|I!_ytI}&*9~@X-ZwGVbrbK7L8wWUo$Yh^_Xj^^<Bx=RMN*yZ}5!7LUkNvoBL)^UQ
zdQc6KGEZ08KA0hg%x7*xHtDQW1ZvZ{Ae&bE>tZ5Ykno%HO{~IS7*Uh?vXviuE%u14
zAKkco0#WGtL)vE~=<)O_47sQG9uK$T(V&e$F*77<k4f_dV(kUOhaR<zTpU)GHG<S_
znSMgUres_MkS1_iZU`)_UStF*xzH|sdny?2?@U4=XekD(Wb|R-YjGzCP<!}8eRSSw
zwI|4GxZmj=(biP2IG991Kcd~17#7Ma(aUkaD`(IW2R)1u%xhlAX{~=^+}r82stf-)
zzzz$g6gor+eS38r20z7Za80{S%)cXqFOKe6a6*q$eUZ9wt!EATDB!c!J;S3myl@*b
z69X4NoOrb9WWI&|(T}!#TU)G%$avsbLy?@s!1SQgzqjMbkDlc+c~XJ(PR#>j*50(W
z5xFX(UkJ0tL}xtXNtIyp+j>dXp`PIQ4Zq1Wc(^ssxwxoGL8%mYVk4DicS}6wu|6Mk
zC{Byl4QDIGsGDe?4N|f&IF>X2eXn}o|HeizZ|~=?VsTg{+y1XNV^4CYm5cS3SBIJ$
ze$v*B-TjbIx7~UCJT>JdM#M>qv~Ru{_f!-w7ZqxdSxll=ho)kEUZEvew_qI6>4O)T
zZRxAP)`cI~R5#o7aL43`P>bJ}cb7qHXjSm*;yXdKULYqbKHxsThaj;4d2d?Mv!7~S
zr)9*_r>j&AYWAC$jgUZzs+6L~k9ei@o`Qsoz^fyE(Wf4E3J)FZ&}3!?Zhnl0tySwk
zrk~YvhI5@8I0G{nQSri9W`-X9IoBYm&r|Wcmn_^=2zsNxe58NQO2g#%)dCt`_`!(b
zgOd$u>9L#+mQ4v;v_*s2(D>6I_ABIP#M9`9e;RJx&R7=a98qWbm`)ea^%mX>eShFg
zO6apvhiz-~2wvjmMBIVQZ~*H*IL7M93v)BCAZ8n8nBwwceOgpJENqr7;jn>gB=2`t
z1FRLbK$hmT`m4|2xGU#9nolQHuSB=<BSq{zPgy=n2E)WOM&G@hqxvVuLVovzex4Vv
z>l6`s53mSEVcsffJCnqx{bU#0h=s*D>H@erba_e;W>oktu<;-M;$TMf2vbn^0zn=K
zmy9TRg;44_#zAIO4zWAC)sxxf*y1|U-azXaDaC;=_x}9xHl>l>vx6z!wZUUR+4^px
zZnkwul94yR`SN{4S{aeO;ElfjUb>g+CS-=Po-#S}#%Fl&Hm22haZ`;Q#mPBtW=Mea
zk?Bp7B<^H$r9{(ycY2g{=@^>w^qXO;S~onOS!`SAJr(mV_a2=AS<O0NP_<y83@G&n
zl9X;}3&f?MwuDQN137!B%^`6-m`&KJtg0=H{0Z{KgKMl?4E7Dz+BQZ{ee3IdKqS$t
zv_e);1x|M1*Pj$g<0D^Br<T%hss%<Up{HwXc5hkj-RhK-N=kY(ag(&~{5v+kmm;aY
zb=>6<bXvxCbUaCeK0Fo%Thig@baK9YOtB_~?xPwJ`uq<EErU2A8aTTvGjVor1QYbX
zGI~_%3YBWG;G)|JkqR)uGJsgu{uO!v$9xT0Mn>MbF1$_TvfTm(@HQ3qAXl}=n2U4l
zUu^V`o7YwSaL4B6=KS%9KbF#W?jId_0MG0*T%igMIi>7c9~=@rJNke<?a5k7ZeBbs
zqdq(Durb2~&$PAVPp`vV6ZMx`l-WhAR8ITn^{?fU8NK`J$%TFvB?W|zhGuUUpl5L^
z135ZMc)jBB1cRfaqpN1<Z8>}A4|vTFb{CxdKv*iYG$&`Pn^kJ759$|Ti|6kQdervL
zQlD-Jd=Ylo>7zpM?r+1%@z~2tsj*|8Xu5c!i`g2R;NW0n@GJs>SXht{5owR||N5Q*
zgzIn*N@Dv+(v1>t6(7w4x9&|MU}jlnDUb%;K&8fkEq*bOalWa1yWN;>gf1w1;7Q_r
zbulurbamo(4r85flgcL7xVk_AQTcozDj%|z#X{G&M4$DEy3txkv>+^8aXo>FG(+^f
z5-)5b$-xQpd@i{1R<htbbKai@h54~wUYQ(RkIsL6<5uPv%C!*)|2XkSAwr(%?q_~)
zx7At$;PuU_V}eaQJ7A9yBtmRuqMgJ{_<<i%Q&m;P3y@$z{CjU#0z`Bg<ofLktaM&l
z()&jv8Y5?*Xm#!iDKj%OS>$=!c0yk$NudV|NNv-E2@+n3eS{02$%Ol!uZ@^}yxJ+u
zx<V{224=Yo(w#E-BBOT>9!Bd&!E;SfTPGhRTJd(HaCv`Yzob2Fr0E)ozB0Y(t-(SJ
zT56&CQI+crEm1TVHx!x<oipdSTjy5Bl@d{cnKF>Q7h=@<Ip7B9PAAcO%^Agxx38k=
z`x8JZ-J)ehbFY#g1l!t^{1n(`0Nm5fzbV5;O_Eg+JhF)2E~{V3si@{D)2?6(u5rS<
zdAF7N3_v(C`{5-cU@Z2*ovY0J;GQ0tKULBZJp4m2gL)d=$1|NS>a;}uda{%I^q^IK
z9FW{crzn7Wy7J|32?66^Rz$s}It%KE3FH*ayj%9_0d}|Ywh*2_Bc(4tgeL%gF-9*0
z{IH<Du!3UVcO@x5@VsRyTO=O5&$t+cic%k8iSJukF?TZ`z7vO~E)!Nq{Njxlj>mTP
z8a?1|hkcNv|Iv0wKKyn*8^mAi&i94YM~}ZRCaEF_7(gdFoYKj&KYvdD)YEce>^;Be
z3&v=WW3eQp@HXFzvn@st`KJPUsv!E5yPcj7$qSqAvmZa8c$r{uw>KV5nsy?iTYr}>
zjMDOB=_830B}5+6xbTgHWeE|3$?33&D2L&adoi{3p0D*%ESN#mlC$DDLNdZz^s)w}
z)WZ||;rq6&GLqYUIfmoen(5#B1-~Sw&lc6sXHPd5iA)^Yf9^|*>`SviI668~*<7A<
zy2fGCUOJ6ar7r<zD4Uedy4*_U0^X*pBSH)Wq8}P2-R9(pr7z*BRjnJovuPERk}E+r
z=*_N#KzeJneNqp2t3@g%Pt{p+cgX4wEKYb8IwwX!)X1mRXGG#X;aT@nlxy6+Z$%j|
zrXlZ_De_+bZWJX3G5%+48h3iO6FGGKD+U6dLp@O#WbMAnU8rwkW4?WSVIc?=tzjb0
z>BEb<+4Hi=X*9%-Y4Y7e3Pz9H%1VLk%sO<xpL`H0&Jl{0F{|5C-0X&btz&?P$(1sa
z4f*!mS81frCPgMY#K7E?ELP6{XdAjUmmPM>A>R0d>%K-6Q-_spI$2u*v`pyoNO*3Q
zx6D+><qr7=MrRap;hNTzHr~OlGtmqw$F|}Qk~wTk#)jSU)Q+W?kGkyg?}{t9k}Ve8
z<SuY5miv^}p7jFDIAjLa=ol%Qm=betd*96*`%H8q2IJ<g*IejAKA2fBfq?1^dVTLZ
zG)jrmmUR1g{G=24?eeH}U3^#!bfzcs2^C(l)6>KHc0UbCCUu5*w)OLFQ7lY8OTayB
zLB4Ok%jU_H5W`Q}CT;~pqePc{l3NVeD`uMM<M8jLe4$gVK=_c~toBPzHpZPrd_Q`u
zbpL5H1A0S5_*!MFi_}U-&g0(vj>APp65RSwe*UIWprBVhQC@c_{<L>DCFT_kPH(QP
z))Z`RMRy_9e>f%%92MR0++~ULcbi0&K{_Zxvm_48Hw}6v@bOc;ZeR2EM_pzVI==DO
zYfChl(y4~n1p|)o6Y4?WH11ru%<U1axdJcz45^wYHS&nVJP&C){77*N#BCRw5;eu3
z*F5IsBt@<T5p%Z__gUOiFVFj$^X9%&Bk3qKN(gQ}S|+~9PH$)6F69vmt4mWwT>pm8
znm2|aC2vt|(xX^nbIP;*J>?{EJbUZx+(o&i^fqgPI)7-EJq0Pd76kuDL3cF|B8i0M
zR%SA|8z`L~L4bhEqmm+_hj#l{v?zeg%`aZU(kO)Zu@(PfUQw|Qn_ygyI=X<0nMRxw
zwyXA_1OFx0Q?;`k{BLUJ5#b_gR~JYp{lcG~Z{7+0N@hZ+9{Y^989t~a!#)PT@#;0&
zsEvgQNhbaFK&c`esi-l-nFr8w*<xuK-JlN%&gA+B_!+o@;<B;QOoh(n+-!V#tTlu<
zmM4lrI}aZkm;8ExSM4WP87Fb5GD*PxXU|>Ikdgpm^D|c7^v>3kZmq+(b7RY|3~toi
zY&nE9E3Auqeji+JySHZV20GqmUBQv2#Cum1IO0hx{wTU~TY}Xt_DAs@sZ|lS;zv{v
zhuhW}pagcik798fwhkoh6Dz9U^u3}ZWa`!Nop1~8qri2;t9t_<=Hw9>+>&PA?0Hlh
zwRuGBWvDIi(ziyw;xd67?r0(Vl0)cQhLW$kOXf;eto|K1rYIsA=dUgzA!|=25or<1
zm~CcCuf4bVNGJ~jD+{QeXa>U6xEh}*rE^DK^LghohjDlOBcmFN*w4jxD{+YoY}sZA
zy_<UHUph`Jv~tBMh|AgeyPEDZ#M-K8C}zCAm(x+S%VNOA#;M3g7du8C%9-9r#Z{bm
zOR+btoZ`2sW+h3_H-VHxIqKX^ZFUCxOy)b~z#4d8bG7LIEO2tlZ<a}{_hab8?eo{=
zHoY00DHh!E-y=0yo=$#h72Qa54B2vXN7t)~hF^>zW_RjiWz8o+H6vAlneyvWvi;jc
zjzTYJ+e21=v=_{EPFYWUyLXcu|E)d&C!vM^<DK=G^nn4DVcSC+yFAS2ZpF+MV^?`}
zN=Y>GOt^iNRj!5q61u!BouDSX8R@Br@G@=lx9u4)V(g_tOA(>>nHlQ1nw45LZQ8;P
z5p)~A_3!Nn@-DwXy=!<%)6F=LWw!JKEu_;ct<>gXm8z^%0|A``p|3W})@B_>%^u~I
zD8rcbib8E-J|Z7{V}*0l;S12R=cqmW<&X{Xf8gd=4OR}Id6!kxQ{xi@OMeLlg(z4!
z8(}Ow3AX2oxr#k4wsnL<O)*^|jl5^Bh~rR2Nw6-8!z9}0PtiqZZv4>t3rkE*dq34z
zufoKvjDw|Hc&w<<Gx%6}ulR}5eeu#!Dh(HXS;XUBXu!N>GF-*K!y3sY+UA;-xNqNg
zPsQ^&=Ivu8EUBt-R}?Q&@&{8hG5UVtFi-!?c$D^y3OHR*pZMh3@%xoP#Ax%Kd&b*B
z1~Z#2u0qj5!kp4H4VLgsZfkM$v^2UmOBpRh_t_M!ULQZ$Qo{@(miV0jK0l%Q3ZE$c
zD_D&1%e&};7YHW#H|30|Ur5^^cpc{ZsQpn^3(nA|;11QTY<MsJ9c45bw;6@!9TJ5G
zHRZz38JZv(Sl<H()gveH36`$TH|>J!eno*q9i8=0r$^{q=gPOc_C7y4#y(i-z1a||
zYDj{q%#-$K3JCi*sG$dH=bXlcv(@-cPX-nh5NGW-V4>;5sb9|)S<adc8`Uz;ZI0Mc
z#|OeMAZjK5rVk5Q6Oy?rgNVV#Zov8d6^J3hbYB9;aX-d_t}1+MZZVf2xeBL`o%gu6
zGDeKXGH>VF#NQRit8gOkTiV%xmmqFIbk1#S^w`n@mN(pZJGHUdwC1AEz@~oRr0r6y
z%l-7pvMJx{*R9+3Kp2GtkB8mAR>>w`a3p6oD;L*%8u<JuJ3=<3iXB^TeC8GIJ<=Pg
zPxXUxlcsHF1d^8BeoGX^d4%9^)r+o7AdX_O;P0$<9U#r%0iPQRznEfjmJ(lU!@Dm9
z>&sJk!x%sh>P-{m6i&a4uI|BKX4^?J;Utkw`HsaA1qD1n5<z4U2~LGk1t12Lk_2;g
z&^m!i1(9^iY^npvYph_6ZF(x7_eBt$H=4xV9eF{J8d9($^cl_`BfNgtPZ0;c-J6++
z)JTL2iZyq8o!u80fK(@l{cV*;8PRoL5#WVS@e&n=h02d_b1hbjLY7)6vB@_eOxH`x
zWq6)B!1z5?R41fQ#T1QBFb&$n3_)1K)YJ)w)>DLK%O((2cHuR!_dZ8S4r>f1b(!x#
zW*))4)kxQS5QQ=Z9@65+9^_#Ix;uAP2AEg#>(SXcJ|$m0b(9QGE~fGgUr7paz5eOE
zfJpV&wb~pg;gIp3|9lrMA0vECS3f+tnPCq8LcH&?z-ybdfAn+lhGqEn$L7Vmqtv51
zKLsia@C?jqq$OT|*eMaBSm&Ndf0iIfGoMP@AMDif6I!Yu_vAy<_r(W!)Nj7!NpF_*
ziT{|G_4u>>4)09oyD)JpwWJ^XAyN(C#gD=AA^~!j8cWX?=-^<ywIN%~)V=TGPt|(M
zWptKxwH&QRI3$1ayEYyNe0PEwz1!OFc)^@!5jX!z<Za%2(qDylO!^ejLY^553FCq?
zl8*GfR2kwBrho^O-*i0Ep6YQAO>~Px8Bv`<S`4U&Y*GkSksylD@TbL)E)^CRnIZg?
zKLM|y$LZ$vyfXxh8pLDWssn3JL9)U78fyzIY4Nc7Si%@sgHEO!EHoooPHjrtEp5Rh
z44b?0Xf_Dm{RC6Gz;c#-XC5CJNe}4F%T09zzGULcD<aQ9+`9!GA*Xi-BKyuoh0~uT
z%*@*rttOf;aMDVe)(k>+F4i@yn5$Cy`b?<IAvWSVl#EQAx?qC_g&1LAeqP?qxC6<(
zus?(c|9vn3%WN-|6Sp`k;q~N20<5!Wd2yZY5`TKst?kvqEMc}7;p^hRro=S5QFsmH
zCIToNFd0Cx9~_&A34%u_z`ukO<afJ{Y^DwcTi8xVy%ojawL-DZ^&=;nHAL@J>^Ev4
zH7<!oVo74l>p2G*HPrKAt-}j1!>ws~WXr5)ZqEeKEZ&VQvnL<gK6?O&#NZCR%zU)z
zJs0U~W=;&B)oyV-4nqhwp=-aqvrRqvIZU%3;;C^UHoc%0>`pW@b~dab(B>)YsgBsg
zXuu!TuUwAxnxx9cf-k?L8NUz$#zpvL47RFKEl6iM20IoHQ>hp>eXRY=z0Qd+o*qPQ
zS)@Q>lXfR-WPSZZ!vYfoOsd>&9lXYhQXaai76xoft}ZuwqQkK$U!RLJm@ufkqT=f8
zaJwg(&R8&DI0{}O3hIS60VFGIW1S3_@i+~blq$y8U<d0xZnbV%?a`?hghSre>BLrq
zjpB?la5&08g=^@W)ja5gr0%?kM92yU|MD3k`FN5btE-&S`msm>eFoSf#gvRnO2{tc
zHM>?LVeNhjH{-WIIXmduH1X+{#@$s;CE+*kyd<f7kc)2F1Izge9NQT8&*N&OncoII
zv<g)souEva7u{K`50Nch?X5m;wHN2X#AdDD5HBw;Z|^^UPBBA6L-Q~Y3WaKP0W7dX
zjIdi8H5FvXvFb&f6}eUXgMeSuBR<Wf3-R&$$q{w+k9ks)pOklhbqG1IB~S}1jE3XM
z7;M7V(k>qaj+sMGrJ*)hDml_SE}3<cPeQaTKJag+`S5CS%HvZxsD66zPL=+J(yREX
z@4v0^i$X&~iPz~qk<-q7eQ{D$|Lw)WEk}m>F*X9S*Uze0-m#yBJ>A(G9v*DWs;OP9
zpTD?xsW>}0ywD<R<BJ^>wQ;Q?Z>rUG>p=Ie@xE#%<#=F@sPeMsrxy^*z?^g=xB7Zn
zZTP-~;~AK~Jz4DuO=t!&Sps;@P(fUt5j(rx6kbrH^1}hz1M}RBC(ve8Gaf)~K#XaH
zU<$^anU`RftrvUU*{zoqZ6esnGjs3N;jOKrd!Lz>aE`1HmT8<P$zai*7Zr^WgHxl2
zeOWa^6P-WmFL5mp`5!9n-bV2@3>wkNGVpIWL2Yu@>LKLHZkA=#c}DZR`g@66TzwyN
zeCM({MVHxZX}rc>pS~=A42@DR30W7<>6CY0U|9Nyxu3D+9+|EC7~uR2_&pJ*N7*@Z
zIkE0E^#h(wHe|${!nQ|CMRmU2uef<Ik~KemIZBW=nMG=Z{peMU`gLUH+x%WuuJx)J
z96f>e0tl9t4@rQuv}{sgCHKe85gkJTEsc)j{6X7ku*`ImZxAYkfh0y<+t_jg#zfQ2
zRT2J70EPZ|k2RNH5W-SBxu-3!uzcySQ!TlX@jhoj+9CeIbJSCLZs`gE5R@=km=gy>
z`-ECze(7qa>|l6JlDOW{_Dv0R7OFt&AiYrOwb{iXOeZ=e{C+bl6JeT&*=x(xXq26#
zzU^gcYLKcTwCFRu{AJBp-C9cDpsVVnTFI#Jj1T0MHt7x`Nhyj+1#kP=8ao?Lr&Srm
zJ%}stZLpN=OJ!^0FsoOxsaFCrx>U$8o-^-FfB9%HIs6PQ2}JmO>y_H!;d=ZXeS|UY
z(7+4NFAx<DBAc|wYxjnK8m~WG46=vAsQG4Q2s5c3caU)D-9=vojld^{zQ3kYI{u*_
zE7=kvJedwDiBnG0c3oK=tw}?ez@0~aV0?Gk7EFCTYfnd`!}UQRpPeq1F6jv4<^tE&
zMSZlLdq|xA+OyCCfRQ@+h{sP<0L8AcK^UdbwtC8AtGmS&4#7O78HDN~joQGV(vw@$
zR0vKbLd~1Wm^AQMqRCgTv!i<hsu=DtWN>Y#c9O{krra_9rC~4Y&2dj<|BQq<JH!uc
z%GeX5nbEf~raan{uB}HoT{(3(V?SG(@xgSbikUOcb95+J=XAv=iYry4bmvT(-o&LG
z>fskShO2`}isUd-F2BD%`}VqVk!S>De0*88_oWAWfkth7t|C>a;D&6DuJN?J-zXs<
zAt8CT^8L6X#n5Ru8=|qYHFav0b!Ms84et^@c#aZ_0HTl*U9PSC8r-VJbT$NM5ZSUc
z>@6;;%%9N1DYrHl(PiWQ;1+){K|h?%$!F09A+?hB$As<ZkCNZxv;J8}MoVsZ8OzJL
zJ8IEVuPj2aUr7_7<nu{uzXCTdHw+J&BUs8@e|sGV9(~~R<qK^)?9J|E{O+bLe>+ax
zL%t}--9s!TJlX;5dyj5dDqv73791MC)-N7unKzjWnE>LsnIyy|rZ5yGO`o5s&B4^o
zI(vjteIJ?&N;!jqHet}=Jqk&_uKC;T*hmL(+2TPJ&-~L-hJHxbs9}aZm|*XIWwvJd
zAU~OsS7?9m90g=ZJhxHL6_1A^nO~gOn0hrl^n_(1yR#$chCNj?lD*6s?BVN5%iUOD
z7u}+wt;vZIs`&ga<`uL3IJ^%ClRK~sOGXyc0C<AU%FgPYR~lVmk&!!dbhADmwuj4q
z2sS5`+lwF1+L;Afv2D<#O@B0~wvp=~`L+mpIyV~{qP-*c$~a1<_MDJRw|TI+y4=7{
zDcXm=nQ_T3eVDN295_KaWJ$vd{c;%=o0qkyFX&7-@}bE9q7R%9qth#C+!Ss@y!&^=
z>Jvmf*5ppJ`eC^@#-F)lZZc~cCapbp;r6xUYvJ9I=b&avgfpY%p)s0h%Gn0Vhbr}y
zPa>ck5&IpS!@-Ao<LiNc93kz-=My?J_K10IelQhQ^`>YPz9%fdLy^lt{$GGvb7sRt
zAS;i*ls4DxYyflXOAvon-rCNC#D>(dAH`dCjCodRC+D-XdlBips0dH_X{H~$``Y8;
zdtL`F^-8?M?y$&-v8Zo;eYJ%H4|bHR)e0ODq}FLaS;Y)-pA6aXg02JVI5<UM47d8)
z_QB`L*w<|9xaBM_tJC5aUn#;~lx4(D!1?DWwlCmyvLema>lpc8;pR=A?;><cGuB4Z
zReRh+W%{LR!oT}Rnvf>x2!K#UoZA}ewcdf>RsL_TH0@ZIh={)VsgNS|$N<N1nQJo&
z(PA{RIiP>?B#1UQ=|DCkMY!d!FoRUqJ@EL_xF(iAoV0^!jwAqt0YGFWM?nTUd%Rfs
zCCrbsx;E76ukkd05A*zs<pY=PFaI~7zbL9_oYz1F0L1myJmo*+7tVjA{Qrkc_zRV~
zrvJaD!3W?9*9b99E==Zcf5@$WmD^QQ!ESDtc;?j9R6|3<dZ+p6u`wB-2TW#5!Dk|k
zmcxDrqbZJG0EJC+8iK9l`TaFY5|Xv3$oFy)VU$aLuikw9gl4=eqs#`nDW??pXf!F{
zj(FQmx@>|+N^d+hq}xlIcjbFIS?uYDI2BOab{ZO+DM{*k;%&a=0wd|05;m#vamFo;
zBLc*&Et{_*b|t)oTD&jTWV5Ix;%Oy(ATH+!y73Rj#&A!j$Q~vLI+KLFKQ>Bmjb=iT
zvl}k=%F=02ybtW_d)40F-U7waN__Zza$vE@!Z-+x929T8e}C~l^uGS^hRHC#%Kh;&
z<iyJC`-98N)+hL@v!h#YfE-GEC&-=IVhahbxKc@HW*&VE*~3^tA=J|)Fbd&w^4q*j
zZ(@_H6FxHuS6MOr4zGEkurB^uT;uNMFiXaeI9Fzc3P#F(qu-j-gCF!TmdgU6)JiAm
zH95921eZ(3Qcl5j=oDw1<EuAXfH?J&5hqrfcP7(t3)g1>;AF7ne7VJYVR`iJ4K7AT
zhqnmzH(}3FM<~pFjQXR6x{bxL&6Wnp=8uDgKPG}G#V6i_eNN8?jb6Q)Zio96f4z$_
z-An~n@1X<MUoNt+kFA*O3E{^N3!+^1lQpGu1yP4@djzgq25zaZhHMg3;ggz%LBQ#i
z5!10>*8;2z3wQ7b(!DL?A>kpt&({0mStaejwHXpVXOpd=&r!MpD8*#(VN8M#V%vEN
zKCu~({1LbCZTx*F-=stY9AF=#Azo46<KR_*g@%Nbnr2Eu$yhEn<4EGOq<x*2E`3c;
zX*ePry)a32!l=}ckY1GsIq=n!>|cU|X^^XfnWZZnoXT~EevT-*VpDSjP<RVa(qv%_
z8KANN6cI6KbPd``n}IupNLnH~0VL7e$m19Y0RYAMBseDv?S-cZ|98E?b-j|NZHa*r
zYs4ip4$d2<U50-xIn)OKYpHaM)(^rD0$P6&J^jHfjMIuZIREZ-N5H)sL+}*XwZQ-c
z07|ZfX}@mY`d`P_C4W1<ZUCry-SKl2mmMO~x<qKYHQ7;sb%GRQO20;OboO23Z^!LF
z1W|LAYfH1WsgYJHPNfr$s@x{uFlj<84m<)VE=|mR{>=H!Z({!{4_G0x2g>x^N<TF2
zj=NTDNS@1E4Cy&!3or6*&=@Y*t3{IWu>Mf^C!;AX#@Ps@>(pZ(uk}aWYWsD}F!Qh3
zGxzfjh!wiZP=QFCEG0!V*+&@DD($peSACXA)an3Jy0o5)PHd9a+c`6(YKJQn8kTVv
zNQz|&I~7aC{`jR+=GB7WP1aNN=l3#^NYnc_@}KP+EuV^6?1tqthZ-CnHXUx1KcX(t
zby%571sh>)==vP=hQzry;PA2JkKP;KPH@TWj14p}v@|>f2osXdjN;|@yc`Q|t%&IZ
ziW1r~7>eu}UAP9e{5i-RFh`Ec7;dW8fy`Y+zU69hK&Kj)TQtu<G+LWJhq_(j7H_mv
zo`EZtKrWcfB8_#Q-i-_@tyQlxJ_+dMnp_9;%$IZyoB}4Mplx*98hl~weR^@~WJZ1d
z3mM(j#YE%gNxcPK_XqibTcx^zXNH4Q0=S^+_${4Z=1VP_Bf{yXOUoO91esTtqmJ%n
zrJ&!=@tzp$uGRpsUV%&j#S)l(2D~%wU~MxB`02pVe1(tu^KuwUQdELZqZLfo7BdK)
zsdD?PES1WvoZ@iNQsK4;BZk)XfQH$+`KRPH^Bk(`t)uWS^G<wjFvsXwPFBt}huJsP
zl@KsWs4r8Jm$w5B9e|$C9qrQKsrMXhDxAfeqfpJp!=hft_LR~RCNwtJ`q>WGKi0Vu
zKdHwt-6;BW;9!Bb$GT?ir&SOBKzSC`8$py+dS&T!ukb+Oy`;{JIk^I|63B?Sxu_e=
zRV*HYjmcQbAj<!E)CIx|cHXSU8Z}3MaT~sJmrTJnmdyOs=Jut^K|vJr$0w^|sjxQl
z#?P+XbED1Y>fJN3;$U^-Kc_<@Q32*{2iq&I!=q(Oage2kBMxAB;C#B8YX-m?tIs34
zG?$C3=j!Z9ALCka5&GRE6^qpjO;A#@TO|mSS)yy&`MkY!aA!PpvXR?)RV0%8KKDn$
zHEJD%uSW-v)eg1fiEUeVMmZ2GB+kr6D&$tV{c5mDV*~N?^RMqstR-TVDj>d#naQcB
z)aE23O(3J75I?^TqTdLD-R<jC-p4o(h{L`B3HY3>tqZR6=<P3^O*<PQ@H8|L{quu^
zs@IwG7KwrEdqabRz}-N8JR?Y2N=ilzS_riwz1Yo(%4oSLjhb=zTSZl{SRR#)-fx4?
z7ZO>|6e|3yZT~tFA-lfl3#oA4t-VU*0r~;Nm@1-d2?i=~TuVE(CHXh;AJFzUc?|6{
zRBk_Xca4kZ4~cpLEF~qy{*d+==${y`bFrg;MX|OPnzXN-7~x60mg|4gmcd6XuSFy>
zf7ysV%@^w!21DAe;EjK*bN~a@L(<<e!lRqjmSxi>!n2rRVlZ!Lu+-!YDwmWJz38!d
zqkcxHf}<&9XaLOaM6!u-Msn&1I!7|IWLcjMzEv$g(|w)mu%8M@ruY@E1*}Il5Rk0#
z6Ivc<9LPlYf1h3X&uf@%u6%;nf_+ZyA!Sfa>`)I+p#o}d4V>BL)Q0V^up#iItB7~|
zB?p}=O9|W$zRuH#YY1@WLGjnW9}IQ|mset}O!K<4T27OLAxl|C#cPm^cnp`v#-DNf
z^BYM{kj+7_>kN#V2<iMXfcPH*ErqM(G|n|eZ8Cye^PAsfI?M+rfm=Cj^m4EBK_+0a
zx53roUtrBt>OcCMo%#COJm3z8>FEUX9>B>E$c#q$@^!99!WQ`a^8U-yQMBowTCJX)
z{RHonc(;z`OYA6mSk$8cNJ#m1YdwSD=OUesb)z(Lv{~&(6l;UqCiuQy6rC>Os0H5(
zn4tF20r4YaU&&dMtNn7Pnb@X2aacm_x{0s70XCi54AJ<)lvw(D4hdlZlby^Qw3TFa
zPv;IsIAM`VdCp;Fd)tew|6qMF<0~-6C(e*u;7@|^b-GGG6Rt;nJz;<<-~vf1|9_u}
cOnk(N!&AD!{-S>VI=zCDocgQsmv8<49}|IU0RR91


From 92f1fd9a3f86322c4af2a06822e62d82e632b8d7 Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Tue, 7 Jun 2016 08:09:04 -0700
Subject: [PATCH 02/69] Add new images

---
 .../images/intune-add-classic-apps.png        | Bin 0 -> 36710 bytes
 .../images/intune-add-uwp-apps.png            | Bin 0 -> 33779 bytes
 windows/keep-secure/images/intune-add-uwp.png | Bin 0 -> 11425 bytes
 windows/keep-secure/images/intune-addapps.png | Bin 40662 -> 8839 bytes
 .../images/intune-createnewpolicy.png         | Bin 51547 -> 52194 bytes
 .../images/intune-empty-addapps.png           | Bin 0 -> 20140 bytes
 .../keep-secure/images/intune-generalinfo.png | Bin 0 -> 17398 bytes
 7 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/keep-secure/images/intune-add-classic-apps.png
 create mode 100644 windows/keep-secure/images/intune-add-uwp-apps.png
 create mode 100644 windows/keep-secure/images/intune-add-uwp.png
 create mode 100644 windows/keep-secure/images/intune-empty-addapps.png
 create mode 100644 windows/keep-secure/images/intune-generalinfo.png

diff --git a/windows/keep-secure/images/intune-add-classic-apps.png b/windows/keep-secure/images/intune-add-classic-apps.png
new file mode 100644
index 0000000000000000000000000000000000000000..bf4e5792c1fabc4b869979629809051686ccdee8
GIT binary patch
literal 36710
zcmd43c~sKf_djY+gH2}h;6&Dw4NgsJPLP>dnOT{$h(%^9NX{mLm6lJM(xjFXsW~e+
z;($tKYB}UA2%;$&DI%#13IZ3a=kxvC;g7r4UBBPDYvJ;6-kf0%XYYN^dF}U;E0--5
z)+?=-lao`paQ^HyIk}YtIk~^yuU#Xn$>q=dl>J-fX=ZIECs&HuuykX!?EAXA=bZxN
z<Tf=f|E;Kg?!%T<?hdqY475eu4h*^B?;&^hhL>-kj;}}H-jg~<bqrxA(3j=p;=f%u
zYj!=<jZOEdIO%{IUGyyeTk|vWppORUduNfJ?rjf^rw(=FpDCLR-+YcyFQ5LHM7e$X
zt#aIEeY5A?t2ghS+~OUzdF{F<vCkfzHaRc<&nmOO+IK6oxR1X!Jkxl7@5-%fA8fo=
zz1FlVKVOQgFO-NN#DYSbpb)#D2#{Mu+Enc{wX(3b5FKa*Ol&_CllkZ49dlrg)LQlu
z1hlxi{ol{aBM-IzEpOMG+()_gKaX_&*FI7Lmxvn`Bf=I$4l1A}WQ3FhxQLCv63wjV
zhA09gQwE!)G)%hTC3fV$6vR-|Uud05cGooH79)_Nt1F8ONAHcyD<X*EmC;f$XhA+Y
zLco#Go65V=w)h_YmvTb&-y7mJC>O=LQWoe)Bzwb`(4HGf>seN)slEvRg%c4RPQtw8
z%jlx<DwluT<Z0`CMrW-f%*C-sg)R|=8?*C+uI(6163#%RN7vVG^|z&6`46XPS6_(F
zZG&Z>*=y>ZO?~&cP_t_!fH@(S)}Yh|@IdJUgX&|ZtcA4C6a7=HBF}cuFK+zB)$_mQ
zlE+Ij*?`fYv>6b3F~9@xsEcgq)kpWQ;MpigZM7B_Z@PT+nQO$G<TE93Bc|>8Cn;+Q
z*5oIz8tjut%`Nn>0^QqPmy2|RDj3c|NWU$x-(<Jg&OJ4dacYN}Np@}2b*G%F3&nl;
zlKHfTxPJ3|lf8<f66dH!9=Fl-DM;jc0u=QSEm9Fxm8%yGNiLk)PiaYLxIDE(=szLf
z;ON4aFqpL-ot*NI(zjbjQdIe><N{i3>}IQ9dZd^Bf=TRI<)VBIa}E6AZt+s&%<ISw
zBS5C|%2+@WaCA7{kn;GM-e7nACF=u}odaA@^2t>_b@9RBg}%D~>R5m1#dP*E58nY$
zM+R;q7o(@sM@Nc?Yt|8NIAO%HE^zZMKds3X58-Z~r9JNq|50P3YNz<)|7vVp?zbWT
zla2g5kmevwOBBbx+ECf|AaBVl``&3B+J91WQH~A3Sx+|fQ)fK@gG9D282%vp@KUxg
zVg2!ZciPTi^FzG{ZWP0n533&kP+Q!11fK)-Dd;~&Hh;O^cI+TNqks1<adDfP!}d*Z
zV{KOMLpbUZW@n4N5^TNz6XCL%-5@Q9A9Slm2WI1pQJs~Y8wR-PUbNdgR;2#YU+-NP
z(~FlW{IGKLs^-9L7j0$VcOUdQ<OgP^p^xPmQ#VenqJ)Cx-ugtIN6|8=YG~pNK0jIQ
zXG&tWaO;Ps3S06SUZ8U)K#D=f&%qnDSCLAzDoBSM6CU7g?>sxE#~7L`&VpA_$>}aQ
z%>JO^iO}yXTIpp~NZ&%#(QLAHd_eR?@P_>LD5sN>41^shrqoKlhu~pd2}4ST-#|Bt
zE1)T1fOp>$*cu}zj-Sg9ct@T*p7>kGiEeWpCzIWMNTsG1wFPl-p;_?N9gX`G4=tJ(
zDagku=4*uO*&o-^Gd+rTkGQ9|Ch@GYb;k80yv^y(AU(XAKTHo>*i6%RpxArYbYH(N
zc0BV>zTjYy3(e+cYLjEmmzr0mo;SqTm3cmIe=y2gX`yMar<7WzSbBm&pA<iBvRfbW
z(vhIJ>_MAO%`eDWu!92UUj8H6A6td{cF+4{qy0tUmIABu2_9i7{YITZ74l1)uUyM0
zWsi|uj-D6fPi7FM5~V>aAWT;YFPsbeY1PRJR!ja1MrOcpH>JIV>r-|5cJ($5#b+Zv
z)bj4ygCyUtIKQGJyv2kofv?_Qca5CvWxn%STZ~U?*t9dwB0#%mBvYz>sI+c3CUm3E
z{LV_2CJNXq&i%ctrw(+v%It^!J2lz*8!L$Ce|^2)2j|>y@45H-ZDVG}N47n^rr2Xi
z#}?<jzZrQU>HZDT8>K>OUA&_7GjFNRLcPFtk>FanYN9_>d%fp1>qe7GYg2BsM-sWq
zy61ME-$_As&9Gm{0$}q_p6PXz=_vE8c3)RPZ54S5WE53^@tiXCVydFF3hr4N2mi8a
zdGsUqe3h(A5?-LW`PWn61H2nx2dI00V_xZ0hD||OsI~lyesgY_$fv+=%}!%|@IyE`
zI^r;myziM7u*Ks@RO+GBg3`fx)`PrL5i-&?c)#hcXk(o%0IGFDLn@|5+~#ZY+tebK
z2M+S8$_s<gMemwIZGWrKerbz-W&CxT0kItgP1)oY+xEDsEPTOfp%d!XsVD_Ldo53u
zjecC@Qz#pqHdqi@tgya}G_X3OVA{}EDXSY>!0EhEVEC=S%ITy=@V!uYB>PC~?F90Z
z>-F_^f*K?;cIBOVZL&0BwF|OyhlnK_$@wJ-YQhUooXk8Op0vbXtQ>L%s_4ugrSFD0
z%<TnN+*o;bN<Hk2xYCaNzAUt8N<6t0mSikHurgxp74Vs+vV`?}@+HN_6#do8NQIn1
zPPm(~J(*v-ipDkiP4h_R>}4_Le7@jaT2%=cj0POnXs*0D%K1(7b=%JY{dXS1X$GZW
zpCJS+dur@meR3q+=u>vV;crok`lnB_%UKet_Zzu>0_nQrh2qg5H`|(^dC6l^eo$?H
zLTk!O8xsxd75T3LfPjG4Mi)!00g!p2(P?cYShpZyHSO$qnS`g~?b|Dp))!=4W9n3*
z$@i=eur5Y4jrJS;nMM6KC%DWs9`b0q>z$^v<Ds4K#x=EPh4Otj={fQP<2RhCWh>4R
zG?|OhNY(9aN1@-X^rBzIi+m0XzS7l8w(sEY0z@2fyzt0xKzzQ_$0R;H6_yf~dTli7
z5r5a}+I@H5wRV27soX=rFn6^+uZ@r24$ICAC?8&k22x9(HE1aTT)_C3-AUI)H&kqy
z#c<hltq4h>HW&5k1u>;@UFP0yL%!pw*<Y+meZ!Xic*Vfa^L<|%`Cl{eDv~}aV^^Y(
zz&Gp?lcN>I6Ap@4ahD*I9X}Tbw^Kj)t|07?w%V7@ro#N6a`;02eK7Fn;}`lUz}6LK
zs=R1Z6{N>gN{)fqd<R9?Kv@1W3ZVffT!{`!r&51x-FW6_Y{3mJ*y!J>1LiirSey_X
zMDa`b0kJJfD1eW4w`5+7w{sd0sdEq5vB|gQDXPUXJ1;)f$KhT7$GS5%so9RWQ|Zjn
z-(l2%+uTOI&=RnI|3%dI@`&Jt2nj@5MgSL}ylLJ8EAE63@QV*tHcv#th05^X(MCc3
zw>{oJ-9-kHmQhC|3R?7;1CVrdEnTXhk1nM|lrItZcSb4KZ1cctQLAY5qVEXaZzrEe
zc;T7X7|8~Sa|;(+?5XPgz7aLpRe-VF3fqFX)ii3?7)y_UXn6@L*4G=5nw>`D>N-hh
z-~M8;v%}{TUu7JYih3bxlcS~L-XwtG(j&-Hb`wclB_)V7*_*wqh`|#nml{gx_2V?>
z-&Q0m$;47Y4R+Z3>Lg+^Sbcg6EF_m3@#^W7-_bx&#S72F{~b6E{p+EZgN2v>`uk<g
z{NEdH#yn&<DS|HjSLj=Ch?4U{*P=KJD4w)QS`PW;P@7@-W-;y?WJPzowS@k?7A4E|
zB}Z1dct6`m`Ab%I-0@Ib@B9|n3R$^mePg21yS1{dgq)oHBX=u>YpYzA%Y|o3ve(GC
zAS>RtQ>R>u+}^lTR(@ab|F7=bS|Zs_p4gPsh`DyfTf5vsZ(J8d7?zIYToeW@<#3M|
zg#011t>qzGgu$kmilz;!-H{VR$RVdzj#iQ>H=j7S7ioe#U#vTSIehB*9IqwTojCZ1
zQwedaUGlpkzAE@eJD|VDdQ0{XC1~`=XRamqX#Zi(kb8;vCV$#<7swpQl6A`zhcDjd
zw<&Y3v9d3IK!^{v39!|NiDMsE4k@&X%MSfRfWPFNz%uzh=)b^dt4k$dpMU4LCK6tI
z=F|Y5@yx5C$L_(2BIPrMtA>4PC&SH)nzR~&i~p5nq&zJL0XuNN_SumYee(2z829A$
z%`?2MwDW1zv!QU)hwLyJ5r!fINCG%$z9C{+17O(3NcfgBtkJjU8VTy|gf+By+WEX<
zw?ahNI)YDe{wkMsk7NwA<L5=x8)9xdSV)^LT{YlDwCHl;m(}S$+#tN9)9OQx!gG%j
zo)iZ=1|HSf152Xh2p7v1@h7&y$j&d<5-?~DlG@yr(1Axo5>I_qc&xiJo6PfEylb_r
zhwll>79|P(WBL(ybgiN<3W|LzwUz>F3@O2*Icv*rq@^sh1e@zUau>Z3r-1jqBJFYu
zD#sEJKXFglfO1~*O9g4ZCmR!~#j?#rea%u1VeK2f747&>A>x{O^Nou2dCgtP;;;>o
z{zeq)GiP4u&B)Lrl-i&(kgcNU!94%+-7-$>{-ytMrWBy?jo75yPU;KyIdxsVjB;7N
zdEeWX`S80ig({xAGIdaW{!rtfj$)%p#Y^YW>E*TapSIMyo{_ji58+~v)((Wrs(vbI
z7pv)3fP2wjeutEcn&%n`cgQmi`2BFT3DC7={%`!Xx)_@X`9B?`YbyDjxx2dX2!}h#
zfRF90(N((=Hxa&j_SJqcx&digBEOX_&ifNvWNX>Gqmi(nK~P(A&3|A0*<JIR$k@4r
zz0<MKZ|_&xjNFHp7rEYdcN*8$Rm7>*Urh@Y1>Uz7R~RNzaj$bliBpBEhFaWd-Pqgh
zIK^c}P+MN|=agZ)mWX(x^N$fH3%eaV3kkXpZ+NGV;B-_Ey&Q91{cX<kV_f5)JY-uz
zc3SuMP6JlS<zEt9_%*4b#z8dAYjW>o&U}#hYlR)2?>BD**{*TT=U>rGUYQ-`L$?$-
zS1Jp4P~0_R?xxIOd~IT`ENfBeewi`pcZ_5ohuy!#P_~gx$esTG)=m-Be;Kgd^8afM
zSc1$WDYWW#=+qs>GYk$SS@I_2V}f)|(oJ7EH#8dgF=nS9Z&Um`>1u53A49uFk#I0#
z>3pz9>)RtY=04`CUC?m}S+*@@nut2hny1bU|1q(&(zS%be~rf;a7hAIV^o^|^Ce?L
zJ63ctPhtMd`#R}I>j@L_{I|_#=v}E32fxg1`@V#zX%G#SPaF7l%^X}Zai(fACxWC&
zEOp}2g&;RV{kFx~cl^rse=S7TM#2OM!IGrOBC|~|b>2PZ&H0b@t-8AIt#6GqB!KZu
zg{u9RZw>B9JxCN+?52Sllr|J=xdcOq_J16}@izCuNG!Uz>D?vT{oR9=>L<gY%5GMN
z2F*@VJr@CaM~)PcRbcayLIOBnJPFKo<9PqarRd}R0XqHms2<i9n1jo|9S*q@f8>6$
zTt}#lI~w6v5=Y+9{=w%Vy!H=kJbt=sW^{|E$?_LfZ?Rd|&ljQfT^}*B*3gcEB^wvd
z)u*red9$HNS&;3lF|hr<Ek303e_C3xZ~tfX|Gf^4r~(r(PY7C!2?q1B!!|iNu9?hr
z=7Tp8<V6937FtTDSY^2yb+*wyS|Nsdo&7ixrW=9zTvcI2d5l1K&Z9^pCGQYMce^~1
zxCmQG@Q|7<WWr#kl|NT*q*GoG9g<{TR-NX2!>=}q>%96YH2$YE<&_<YbkWxp<1t^E
zS`ic8Qk*3Xa~;$_XZqQ5$Z^KBU2`Vir@`c$8IU+A2LABrBVX$i6|(C!+6V7(`k+TY
zBCYs_EnRP{Uy2?}T`tL`lmy5k)wiKPd5S(6MiD>Xu-^@$vuH2m`2)b~@uC~v@G-bH
z;ag(`OLS`^CwB+e?BQ1pHOh2TT^#}YAOpbjm_1f2PfeWgzf>qO0kfHxiE|P6xdXf_
z8arS<<e45IXi(L6r&G1`Bl49y?J|i>9SLCp1<*|dcsn63e2tK_$_4i2%WB$tdPTek
z64@MizDhCqqk;*-lMYBW2gwy(q{aDqX|7$vI$NT8n(T9PBl*jEVTsH$2&cV})m81o
z{Kd*0--r0$)OEcfEgsF-AWiYG*Hux=P#VM6?9M;Yoc)Dh;wsv)J#)^zoJxX#UfWf#
z7OCE1&L0Y#md(QYQ~4s~p|-xKK_uL7f1)6HIO|(vPT$H;52Jg=S8D2x22bTUc3?>A
z!GO65eG6<s%9#O&e8^$~B;WMxNzm68+LZDI7f3d?Jlu(bTQsk}Lvl4hjE;10qeH!&
zDA8;eL(+{pp5tSEUT_%5H@tuL-Q{v$8%{Yq6-E^9epi22jiFo}wzgk!RzgjlfIsG6
zTcQ362(%K~LAp{k-|)##-A3KygTXW#FOW)>8z|6JkADMpwy!20V}MfF-l2yZjKdUC
zJp*y#1<QG7epLtWE1%g?*x*~BI9qEM@kli{R=2^iUI({BB#CLc0*)kL!`@5`>S48e
z1vy=9{bhGi6t7l@P1pvntc-hAmjtF^fRj%v)shB}wXwb!bBac=Zr&Tcx3;Rsu(Bx-
zTIK%s7*t-DJpP{aJJo?v+Y#hlrO7-PZ`qHhfA8A4r5HlkBQQ0>JOK2WR*EGLMs#K%
z{Q|1qPQp4UF;vQ9xZV}N(JvI3nLsdcsj){vhHE}xA|)NgxTJ>-=dQJ16LrsL&0f2e
zc2{K<S#?Uosh=w;<LDLN(F9f9klCxZebul123p^?zJ;5#Ego<2MjCdFReOjE6s?&Q
zz)R=E>8hHYO_D6Q@|WiApJx|->6p$MTBH~i^0FIXGG{ipw8FUu5W`<_87Rl=v>#M}
zw^c~)CWvb~#q!`g7lB{jfl;=HeE*tMWQTi6%u>*DrGWsdPzhr(YvzloyrR|Dnk~}i
zT4(efTTBV1q!cBM1ffikCK-_9^&OpO1U1XDoylnBl$(%l8z})$CwOGD-OM}T9eSA}
z&moWA)=cXFT;{B1;v@beHP8*b1Ilze6d=&$%4F;3@+2Vb^=M#SSO+`U8D-MPdSbyS
ztb!BO=2R^>X?)=8fW7VF+U5m&)<wWAQ)GOmpFg{m`7R%O{PCn9B%HnGxD9nM8!vKp
znR3iJ_G!}Rz%xlDFW1N*EIg&v8DmA;{rUKioA7#EVFfL`coo0;FH=wuJ4*ZmrRE|1
zKp^vs5{?DY-uPS-rkg0-uFu5KN1}UmQ99S4_Q#p6YA+iGVJ-u^ccL^g=2R{#h!zp9
zlF!nuP=$yF?)5P(I+)G;Fs-N}2RMGgue-f~p-BnA=h}+$Fk};>FQ*Y4T*}?L+bTRm
zYik!@sW;36lu@4p)a}(@6XpyE3Hs7s!(|j>jHgMHD$(!{`;Z%*;X_+#m*Z5Dq*f)(
z-=}YufaAs^uZ-ZW4Yr`>pDCVoa&V|_d<XnEt#Bq{_bxzGv;0)1qL~v;FjR>bp36k+
zE?sERnV$V2{^3D@Tx%}#b`2uxd2fuW$d%10w??|73SF$rX569;u-bO#_+Ia!v>l6@
z_l~#J^-;F9628Nj7yQUFb(qR=br}q=9~8dngO29~U4ug6tc9+$fU%2Jklxm3R&h59
z;&Px@So(3C<K#%1O+P~KORR9Jz)?qZ2}}x(5E}LL#Z$5L%Wf<IF$d4sTl+Zf+wn>c
zwZ=M?Y$5JxZ-aX6VdePc$6b9Zr19PQhW!r2TXa>yC+C&Y7zg;e?Yz(_J~y})z+ZA;
z<&0wV3L;hqfsJQHy=+>Q<__V&$=e6Y0mw_jQ`4tjiTvOn=d*nLo`^Rf#daKw_jKUr
zvTg%<h`P9n#hSl%k!w!vXHiSn_Qi<~wI1-TIyV>qeFcC>3@WstyZGvT!ql9cVk)H&
zI&Gq3h#YAO3)?sy`eXiJ`x!vf@izveqq_L9A-COG-veM6yDFa{k4nFbshs>5v$GNF
z2o#lvaFB4N5%0l{L_O1ugTQ_hQ%KdeD8;d<7H1~G7VxYrPEx|5I@E(ZfZZR(JHtR>
zPBi(5z2awGP5spqaTcu_>`CAh!)u1bM9keVs71hk38;nH4Em9vxGo(HN8I*yqP=#e
zcO`Ia4OOwNIjqXTu2i*cmc=ipY^IV2n6-m$`%xQf@(|6(9zp-1UWyB9TC7T}QFA5s
z_~rRs=9|^q-@@hxcnfmz+f3Pce0K1h(LG#%HM0PYB3{B=4OCOon!>o*t68->8pK(_
zpT6pj?w>uVmkL7FQ+zD34#;@o^k`f*)zfgNAyL<KCd~8(c}LkO4qLytaegslB*~ZV
z{bnR-#`eV!hV4n4O;q|4>liHk;1)5kSPH%3kctm?RsLe0br$q3l+DX*-FHcM#Igs0
ziq~2fEV?%eHttQTllJ=VmN(QvUAFDBhffb23sz0KX;SFtrL@vmO}I44I!ArUJM%1v
z^(6?D(p73|Pse#A4YcG>B&R9W;FgvhTeLe3%wBmY7xZpgK5>}Kl`oL&O(G1-zY}dP
z1ZsISg#VmEeGUxVwi#_q19bZ4iuwl0Kfc3-y9y(^bNTt0{YE)=Xpu`ATcx^<nX?+6
zz@=DzuR%?V{$G8GMF3&Vk5qg1PUw~v>%l(8KK7^Csgwd5Vz*{rG{K`b!oCz+opuw;
zcm2#NaTA-g0lD{H&1xqf6L-{<I<TfB&Cu&>p?#q^I&i#nJ!rI?Td4$DIeV<e&r8{d
z7uK^7OjJ7?Zhe+<UAgrp{f^1fvDQ{Qu32)0=q0bMVewdh>uBKRZ$W|JBRptK>u_0n
zOoM~?pO&{~)xc|+{46L;&Bs&+4*k0wMiaWWJN_Ws!)p-xE4=Wk_f%W#ZH%9YU4pfE
zm3IW$NzKd(B?B)TfqKx4D!EEnsr(oh%1%lN;_V)ikYB^u$0j8;giC;L=zS3`qYhTn
z5DLo$Qg~byJ37v+A22{04&<oV^rIUtRe>*Z_p8M&?B-SWS17(gVD{H=QlFNqxi~pg
z9cJWpd3jUIpm=;Nj&YOr46PSuc2ezjN*UbX%j|qi-6mR0PJk=Sh35po96<e(xF~+?
z+n;Fj`j7G33`?>N&vV!j@#(X?f7qLUs^SnEgBuzSQxt#h6<+auD>y7&{bS*AZeo4|
z6$%@PM!h}!gFOMN$iQU5>te*);feDpY9<|VXMgayXzt1@FYnF=)4nsd6A;P=>*HS4
zuQ<ne@dKZ-E51vI-0t5~nlH(wpm&H%m>1m~M1@rR_h#|~EcR6Vg0RzyXROB`pq#||
z&~7sp1H^|14@)*M^PzL?mq^3MLHNlfmsni1GssRlT|ET+$ZCOGimZ!tIjYM+NVf`c
zCb!Nv3`5lKCwxEy&p+Z%wQnWIc<JtI?JpZ90C>b3MZD^Y_~(;_(^gfwjCWPmhr9B1
z>86I!{M5&OeSHt;5ix3tHNHW}T0j_yfEhp=qxs+4^oNbuSnaR~e*F$1R>dI%SQtFL
zaDf=sF?}ovN}g-*rbp-izX%PVlV|-LMC)iL`I??xkDRX`V_fMLwY8eXJ*rQ9A-c0?
zTYG~ieKwD5&CwOP^^FU_ZUv@2UatOdazxT>_q;_oI`&xnXyjyo7WbYnG5Ux82T9iK
zQRp!be-jDkXQTaPoatC$rtaDNg-ow~yB?yT&>gb<-+llLZtzdS3uRl3;(J0v3t)y=
z3{U;GW{4NiJK`#GyiH2^>f7cLc*3{5N3d`nHaCA7$0nfQMY^US2-1bY6j6X6Iauy9
z&w0{HdD_y-%7w0v_=D%$;_~ZsYor5t?dY`x)|nD;nl+HiN4@u9X*LqdUdVs^f(_{W
zmKr5Jb{D4p!ksuV%p*#=R^0<>E77b``U>Jb)nB?o9%|pWUVBepY78q$P&~VM8q6i7
zswITGvu?9lCm*tFH~&65Y?Iv!EbOAQIgBQsb#=X#`Ny9Lv7P4+ZE8<G<G1~mI9T#%
z9bQ=J^j*5^TV}yxEn-Rc1^rLkm|MrBA=U26(L<*$)nZd7P#YfT2^ZfeCVRXN#0Q-(
zK3|d$1hxP{Si50aN40cO*v{}k^FJq<>RsO>qBjuu%vNELO4x>pD*TfxLtNYMQ_3#u
z3Wc7Z=nvs*DOYPyyVyg(Ow~W<mQf}tQq?1rosA_MV;jy~aYdC>!h;nF@G-qr5OmD2
z!k?d=-#H%<y^b*X-Z2WiF4Mxj=wU8W^+S<pvQ)?)s2^0X%#194Mpl<&O@>As`9?)$
z|NT(EcP)YP_oCqEA|P$hQmPnJsN~}nK>qSZtu@EXYLpc3-4oHt|HQ5ueo6FZr95LK
zAp>YeG#uG5IgeYuKbV>fLY$HO<NxU|Bjk@sw-0`NQ@1py<eWH<c+{a^w5}sq13n#x
zsCmaI;+M{}iw>fmUd{w8-G#pNuDvt8dg5|CqVV-51Ir-?iscd<=VsGp8d$TzXI8Rh
zKV@HC>oL`_6W!?sVncL=yNej}rV$4Lgk9oQ91sv1GHw?%4uUcJBR)|Nq+-_1b(Ofx
zg0{lG&bMf{3!voZ>{}{q&k5?oVkCA#&}mmc+NR%GaqN+xI#pg8^4gtv{+@bv#YSLD
zoO>)-QOEY%nJ;x{Xx~`0J5gzQh|2ax0(_4?#@*PonHeNWrO%^`*8526p7ZHtKOOwA
zO~>P(ERHb(JQ@ibD^}6AKh$1hRsxO>-`j?)$XkeX0sg~kk9oWKd(sNCkrUo%o_dPg
zDC(d5MQcFYY?z%iCgrT#?Kf}(lT!wjj5C)<E;|M@(?V+Xd36iBJ;dWug`{xwb_34l
z7fLNH9f+{kA*c>e$Opr9G*-a%N++&q2N~-itefmQrTq6h`cG<nWD5MtWM*jvboB1)
zb;p4g#{4zKA{9(fn%Y5>s~t85MS;eFSju1Q#)n;IMHX0QW~UDMx;K%k|J-{z%2=P|
zR-GR8OYAKH2>g^oU`HHB@EVCN(C6}Q3et=sE>9V889B59H-prs)cSKTyX2mTFNoM2
zOo485H76hVt({w|-L<pXFN!_x2M>#ACW8kQP1A+cp7}zC4a7&NGIXq@HG`JWi^9B~
zRbV}0*;UzU#fo+cRWO!8!!yb4qCJG?604M24!^qHV^NY#w_xn!)?9S6`~b=22kbZU
z^j1mv;t^PM8%4|gX{5Kwy0!0QqJ^}O$3uE;*%ROdhL~qAnvg}XE+0qGRMz)aq^`FM
zAYi_9GGI4E7dcaN8sU;E`e~%rM=dSzh$COvHkoBST83G8-LydUq5(_^6P4qwhhh6@
zA*NMn)Wf1QpJe?Q)|m+3Dd^M!+U3Mh)vxG%GYo^P&fm^?GQP4#`2K~*oH_&evt8Ls
z^8V|fF7SN2qB>8~W8kbVZHIb`zeN{RWC`DnmN#4DoO1+F!O&p5sO0Gg%VKm~(Rb7V
zR4gh0ed}xWMkw)=uU~n3Pu%2Mwa3@p7d*fbheOKVm?DB*14n~M$t@YKAW$&*GQ%<0
zBzK)K{H#G|>P$H}=W|#_T(xcv#1L5&rlQm(6L3{bOa2e@p^(u;pSFs^E-d$i(uN3A
zCp&DcI0{-$zD=?0t2n^67wJ+5MTZSuLjS>~#mFS>Q3eu^^oj2nM|c3{Q8mE)*|;ij
z_@<_PlPM#Y%iC`O;2cFU`cl1oA-t1P*$t;Qv>zX;q9<`(2A`v*d@NheekaGbLu`Xl
zrV#9Y(=}nK9!|m~r`vC8gJYoiiIWZIpz8gLx^DWT%2C__KK=*tSTP1%HE>cVpSAy~
z#Ye0`eTQ0Xg$LeCowWn}w5xt3q^3AmL_4`@Kq!&Wk0<i$PdbRa55NoN3tHP$Nrveq
zICj82uwGnT!fwraaJb2_daVXGe{bn*r5hkCD}3bSbNGkFGV<$bgSv{o2}65vFheaa
z;78R|fP5PDx%jb9ofq{GF17%GgI5AfgX1_=dM}~8h}J!@(zLaN_H_ntu8cLAN4&LH
z0?LWyLtUH0#v;4WZ`-5s9SG6gGE~68PqSQ6Az~)8Se5AO_jJJe%qs((pqFd8=)P9x
z3Qqyn2!?7}`{C4Nfp8x_MYKOKC0`jD3RaGOtbB#$7;Kn(xE9dtXV>~p1jAUr)aUvZ
zGV-xD$f5zD^YTh153!qs?XI>1wUexTou{#>%8SY^XW})dZ86ZkiXCZ5sYR@o;yV7d
zR;8B>lM(|kCXR_8Gup_|H(*E4mWy8!JVyB^vb<pIvNDiaF+{evZ9Ozi2zK2c3_}?c
zIA*5=iPQVN59$u(vQoSao(11(php8O`KP#L3rhod!L{~EXsb0Kz}u-<m1Gj+ri`CB
z3*n(@EzL8aAho%cIgeT7{)+s<JEYp+6d@x|pS?(C<^ebLqQxkxe&X1vm#u?m1p8GS
zPH7-@*t0)?vOQmGPRr9OxbBRD*kp?31kuf)2cbsZRbo=mU3PuE09RG3N*Ez&RQZf_
z4(ieX*+6|hyB-Bk)~Dh&Ak*I^)@wMJ@mbQXuu{WSv;)<O@l#D#BYw68iX*cm8IyU6
zZ#8Djt$@!uqMd1R<$SYTN=noWzW!ciC6ufkU#hh2>d5Y`t#6ca7aUn^y$ihZ;K<^`
zR7GYF-?Hj(YXPknPHxE<Thp(fXht(Eo+ZE4rsI#MHE3)Yh^xP%YJ*y0m)eW&7&@rp
z{3gwZd@Cf!$=6Zzg|LgCXwL)>Ria@IPi-Y78Pov=<s^K_$7V37m3%|%ugO?6R)1MK
zHv9x5Uvjj`=4z~A6$Y|bM8NJ5R^CoZ5U=wV7w~;X_XoQe;}SCCN-kAFMQSJO4<-x7
z7H7+uJ#5?W2fsWw-BhmyjOb*(r67dVQbrEOu<{aV@EWsn*7-8mj$?3Fbb|3hNs#<;
zmH-ZUz;)msMB#Xrm0n$>83z=|zlc|gP;Ng>_2*Qr7VB(>I=e#b9-#;Lp7EBP{R0N3
z`g*tP;K<<cK$=jglx)>ABLpI@4VQ{a`*!dTpo(nBU8TUCh7z%O^Xb^214SXVi3yL`
zpF$s%{t{5^m*oXCEBL*6W^e76kA9|z`Pt|ap4Vcqb`kbU@$=M54awm$$=7`J<3ivq
zv1FLkS^)g24EjkI&MM?g=DN=rO_TWQl-|qYl_wgmS}@#OtbT}d;_ckpUpJ$)(fY6f
zASIv|WNI_`yx}vNHyf3bWQq_jWJ2|zy(c$K0Oxr0xt!7tra_vmm+?JxK-kh>hHL8K
z6bEnm-jQfv^z7nxz9SE))Rka_wdSro8?IIhvGspC7H$Bx39=AP1dVq+2W~<=weCv<
zrgz_-Eu%nAK9-1YO|nj(Pq|@C!w}|kMPmd9Mn>zUK-1`1Ae1m#<{Qp#7W*^%1!guI
zi13rREvVt|)tR%pe0BIovQueX(SA`s>KX6DQupH#NMEG}ixsdvZ9c~%2VZ&<d(~JX
zlcWZ|$*`pT1CV=4pRW8d)5l3*$Eosi9j>{`&}k2ZT=Y(PuWD7%HGZ(+_-H&Hsme0|
zHY_+YO5sY;-T-0lr~J|m+6m_V)RiGi!tg_3OBc%&Ne#Z1pZsz#xl;%R#c^4%VZ?sQ
zqhopXmUcuw#RFWAk=e+1pM?D67pQ1SJG$wnF*x4(rU|zu5%rOL(_jPbDwF6(bqoZb
z<z&^V8tbR*ZT%rti~X?10$xz!xN!Q#3#s05$$cGQoofQ%RI|d~4qcGzu>2i8kmPg$
zUKh|X5YBtxQLSiPi4x{quZstD#PXUX$<*fz-Kv0b#>*IBk+sa8q{LSa-fmUo?=`en
zU}y(|xJ!3Z!a=>hKcFZT|J#7EyU8tOlc`h6uMW^&HC=x(dxVe#HwR<|q`nnE;_B5f
z1=jTV5zA6eLE2pS-(TvpTMtMe{9Rz%FsDk)cUJxvwU<vV`i|*ayUZ@06d`IPCy^V&
zOo^PFc~8N_&NuU0__naYC3K&-6dRIU<SB9{@-xwPs8SA;SghjN_nIb|43_Plnu0P1
zF<p>SbRW{ddq2J#ge*P@w(WV{Uj02nc~j3*mmq73-%GMkC5rK6(1HB}TFR_kbk-5d
z9K3*bQs+!OMAu3UUvoJ!kl0Cv2Nrpw>#Wh}e#47#k#x&b={cn^qjO|w9w1?%Ht&<+
zv!P%}t*Wt(oiwFY<Hdq&H*_<kX_oRi;_eYHk*@}xXIiIKIFWo^LE)ksChQ6}2DlNa
z(p+<X+Vi;uI}fdYSs6}#^n<$`w&0~mE#pOo?e@y&`zV>%@tmU{qcsS2?Rp++o9};C
z9@7JFII{cchNB8&Eo-j2U;2HeX#ra0Ql!+llh%o*9VcwQP@<~%P&?-$khXjvQ(5!>
z36Bw6PnE<zzDbj?UUo`J<2f0V(p>kHEZ7MpA{Vm9t+A9Kb~xWuc36^hu}Mm5TaY3q
z=D0{Vk}h>*KXD22HNo$>X9EHG@zke?e3QBmE;mqR0)4U>x%=qO-&heGIn$li`hg(7
zRvU`m?AW=In<yq3?4#&-TrEksa){Huc@rIZ{h`%$b4-X>X;Y(Z{0%$x0CFVzgY*IP
z8mHbb+6hQ|F#BATCX4v8^&M8xc>5^v@`|8!t7zF3j}kWD@o5YW9BmoEk8QrQj!;;B
zh!Q_fy>q5yb&1OF3*Mytig)JJf+heLzpbzUz5gMfJU-^pML*gU+#FY4{iKaG_1LvD
zmMIGEFEi%Uop3hb$sI5d`KSDpn^2o+TKX=Z@UuIc)@=}Ox=ENDTZVSDv7td<!o3yI
z+KuLXgOtuTHkjB`sx^`XCaYx?c>><^X00Gu^Bj?P)dh@o&q372u;I*LB5*pHL53a{
z4~k;&n9y)4ZY63dte(I!kGJ5s0Bpk5l=v)sWPKi-?pX<D9-{<s_SD0VeIE-l(SUR6
zL$zp+{0ipDk@dhORw&jEOGj!*O%5kbz*#{=*Ofh$Ijv=JPs@!qc^N-_js~=cqg11U
zxD^LzKcF!!RkNmUxfsogtFDOIg-LQ5rzFmFSFKHNNWJe5ONQt@*M&shFw4_uhr2ZE
z&xQ@mhH$d%Qt@?5VSJ@-_;uzb{;t8kKEr^bvbfX@sE$rf<jn{n>IhpOEX_ylU{)j_
z1QS|!x8#_pglrtp?<Mz(_KoDgVccU;0S^CA;k#G5D}UDG$U=qu&K->eV`RVxwyQm*
z1if3+x1gCdz6MNxO}BQeR5xh58`<C2+}Vp@BEH{vUU8T;B<Zha_nSZPDW_V}_!gu>
z)D&9R=y6G08qSx$X#Q9kyRhN{bwF`dGV;_vLT44LJEN+F5MMyS_r-f#XBP%BS3ePM
zsJ<Cw+NrsEi#jLa$*nmQ+;ozW0pBEw<?SR~xK%ra9A^G-?Z-X8?GKv`0$1i^Xz7Li
z5w{_|=P1DO!4vR8HrLO&6Z*_ngioX8SqFhNgj*|XPVdgG{!n_IX(8+jy!<Y%q^qB2
z$8UwnK!T;ZDDA{(+7oIE=E5Bp8SbsC8<&pH)gH=`oh@-~`GxV|a;60b?|QrCpwhhS
zKnPuaNULFx7Yye_T99LC_No}T)mi8^9tjE1CR?7^By_b$4Kj55!bT_2=K*wdXU&V?
z_MoQ=MxAfw|8Cux*j{UAeD6NLb$1sYkd^lZzlR)NJcYgvkp8Si!FrjW(-~Q4!b;n}
zu@@w|GTe*n7Fg0(Uq@kM#al$(8BjMxIi+FpiEJ4RtHkmPUsw>tZwCn;{0TQp78&u)
z%!R}@j{&-geqOoMjvha@;a&0ggSR!hna*9BU5{`#0nO%d_Z-{opy2aySfD;iD<KTT
z)9-{rt8Agy)U3juQa?$!yMHvW&?nP3AmeuXKD{mi<9v{~>D}jz3w(ldY=pwC1ThY}
znVOcu4<rSC&hbwT1JjZ$u8|!-Vv+P5)c}VE1)_9eH^ZkxEke(CHVpik-<!_8(LjQ@
zS(evNx!RGPDjU)WN}|bD4IH=f2#peCOa5o(;WXLTR(5;}KyKn0-a!JiYVD^9JRb|;
z763xeo-VpG<PqkAlAOJ#li85xWjK=8l~9KFzI1JRF+_Zo`7vSC@)Slmyq<P$YM~HX
zi1ATZv(0EVw}}mfagUz>&g@Rc04VnUY?16v&^y4Q#5897oCe3P=FR6g$I-Jy;KDyL
zo|5v{{N^X%khh{bTLhb`8tzU}+t;i3*VH-0B2Z5idd2i?D4()*_}Hg=bFEk7g4FfU
zLdtaHr3~Qhu$1qmrL^ppca8^L9b(VZYNf)3=~DglSb|?*dqG2BJ&s+|OIzIw@NyB9
z-V)xbBC~Z*tQiZ9!6K%hIBeg0x1@Zi*UQ?LeGN8YX$1JRgaLhuX<FuDXDjWT@Bl4(
zFAK-JH|#LvdB=gYi(4^3u?bME$dA{yPNcDlgHf->XG@vp*hp&4HI!RmF$K<I((4=o
z?65>ZPgy&cAY6JPy8?ssSEwNRnK2cbqUYkuG-agP6ywT4c&(rewCVrMzAO}sTXtR4
zY}D&XUsKZgEldy*tw=CXAst<Yw|(~TKrKF){=hKEP7*IXpKjZL@l^a=QM4-uUa8G;
zQbbMRre(0Wi#kLZyk!xst5q<&yEbXsX9s)Z)m5~aZ@1rs9W67s`3B%y5d3C%BTvDg
zVoMIMY|hh4GG;LCOufXe%Hg{^4!br<s00M73YmAbwGgAu?Yr!tXfT!wdGxb;&!Ba_
z+P;V5j@-JbgRN7q2X_BJ$Mny(qdyo`22?)8?sK4hW@SRG$q6NFud<>kNVqS%w2k%i
znr;B}S@@^+H!MqxC5<P$^Ky+wf7b6=j2X1;Kr<Lmt6Xkx3?v4-E{A&y^+{@xIx+>%
zuGPpay(@YuQp3TGcg`NOXFs{~22mcm2Ty*3*gs9GmIXX-r%zO9wr=O+bBis+PjP!d
zn-Yz&LZdIVb?`*!cWQiBHqgM|B#dO2G#-%G^#GiMS485ph{Y)FTd;A~KJKy^AztE`
z3qT{$msqG)aW}KeO|j?Rg@3+~ev<E}JERK2Aqor++Idw{(Kh>@RxLJeJonQ;@LcVw
z+mq2V4g*~`Q+`xG(B991N<+T7r$l$k5J~y#bF2sSD8b1jq4#=%epDMvL{h=qY9fn@
zTY<$g58pU?*L)~C@+jo5D~{iN8@yBcBdvl0G<}2fgBZaD@{dX&$Zd+lO)0*bMvuSC
z$6JVXXr1lAPf<-heS8X6few6?Ewdcx)W`Gcird1_lq8_Wn*=I;+ESoxghxy5M9m9B
z@Lp)&($Bs?m3<9BEz_Ju^CV}o@2<2Bl_X(R(lL})nQs!y8L{7^b#JBhM;?CaCF*<v
zzYk8pm=%DBaE{qE2w_++wA%un>dN+jERFA?OQ!vz$ic*;qwyBuPc4+kvbFl)KT1o;
zcO7I1rC?rA&giZ%syEBi?@NIP9E!jjd*z(EjQmnao^5Da3RPh<qk!@<JKi1Nf&UWF
zOz?s1D$svdkTE%8S!g7%7~*kXe`GpiFtxrNh6O^(2xf0X&iY{2riJV;rQNLdx_&gT
z(n-a9;4&pbPrrG#nN|@O2d80d7(5pk6r)Vh@b46nn%1~1>d(s%VxKP$hYpLaiy7XT
zjrQ?~v8o=zT7qNj?8tDhq7$o!-%X_Tuk8I)0S5R3Z58JzMc3Wmd&B1f{OxL^I_*ju
zH@~0RZCz477P`g6w(-gb--UIYC);KXutH|N!MFA{IhV($*HucGB;Pa>*W~-V#b+Jm
z-AU<gY7HJiqwf=GALn0!ED{NGyxt7cnJk}nJYY%;IJKodF__zM=58W3fEbi1S40D)
zV{Ysy<CPu|)#vP^Y|2`Kpe==0D)QwChk?6&I~pY|YNwMdN>o7)*}^Tb6!`JeD|cgM
z%lXvCmQh^o*X%RN8)_s$TXZ^WE8SfXwz}nPqJEPPKqqMJrAHvTbiom3x1wCQ$3I|n
z9GXWO6s=#OSE0GWAnM1$C|E~$rA}Wo;{Go@_Rzy(@nR`jyU%WIM|)K7g7TFe{h6C7
zDr!D#<^i*krNN2=j)|l37Z(@Vje|)Q+s@=+<28de^2quW`!PEbF500UXS}8!qp;)8
zVgJ*;l%1n{sdsn%<+A5^lkmv!(CIoE!jkn$WIu1bnpW3#*GrI5=pnt9_7I+lBH~;u
z;}$jk#a7E8f0KKcZwZpNe&G7A%QQMW)vdw8E#-dlcH-4eVLQn1ldD~vEamSQ#_x08
z32$COcVI|j$+EtHs*moHNQWqi^9)2V+38<=Txdyg1k1UT+^7})(nrd;s`EqWF)0nb
zUYG7ue#7bNq#O)FJgUq`GREDN|MH+{I9pQTjyvN`WkDldkJ7?s$$mSWd#l>b_Fs;D
zl|>BUdScAF6s`Y2xo4bf5C{XoONLCIf6(CUP1l!fedYlSrM$HSy0{7;IYbm-KuPt?
zNI=$~Y=#~(3M&ccX91)iL7l#9ext_e^!d-ASz9^6fB|XI8nn7-6M4sdb-Jh(E3i#j
zhQS?v2oI@3|AeB~zbEXw@2*;nliN61FA@mzJNNzql@o{|*o8doUnRwB_d3esH05MS
zk`r2gdaq}#T;<|U+j6>OldFT=<BCa7$KU$`B9bgWvpnvO6{}e9gI2qrPeDIE@Nb7B
zW+kf$s{i*V#t*ei#QzQ>!}J?3yPXlgR{DR>&a1Dh<oEU`IAmV5j_{ta|IfVt>j{~k
zad&a`E)UYuQo+b<G)8zpTTOC_-@dD^i6nP)4SdBdmr<s_D<FbGdhcAcR7<_DD;<j-
z^k+9fC69Yl7`IK5(_Ui9rKDCMnr2+qju1VKcmy{u$qtqw%jtA(1K-_cq~e<ye-ZJi
zVH%<@lT=puq5H6Ll+J_k)WztfLLO@??A{M{?tIWd&sD;nSe?e;AFN`;Li+gPm}vu@
zntp@);1`;oHsc#M8o{*<;%f{}=A0{8ea`cZTp3Pa*cdF@4AWdi^Be!a{C;Fak8)12
zY;N1%;^O!)xLPQ^tKmaekCIwcYzo_RxGVXVsraX6`!yP|VS*Or(c9%sUr;_+Q~HRf
zzv!;;wE5a71viFL)9%uowjq(4nmpIOzwrjy)h6i(%K!l!;4FDZl<RTT!FAXb!hj56
z$20xHpmsmAUKwN>{pC#e#k8y(*2O_oE4=ym(8!26x7PO!!~uu7i+Ym7H>RKH*E>wx
zi8>T-0U>A5`+12CYZRnzeXPW>eqBv|?nsJ9%0O*Cu$k2&A~VgYd06bie8!|{`jl+f
z<AIOMWc!mcy4<G14*w98q>4^asEiL4m8MO&mH%pVC=ywsU~qpSXX|KpCRw7P!Ce{k
zOcrG~uIjNK8hv%m04V<YRhYxiLR>3zqhRQ{zAGs^V*mQ2F~STs6}i1ae-e!}V0p;;
z(9IZ-W`RDVE518Do7sxeYb}i5;+2LkoU8lD>`3#`YY`4tfE~)x>k|Wy_6g*wF0sw4
zQfklD(oe)N4l#+W<EpQ?d~1$EPjyEXSf`J(f(Vh;8s#jQZc&Xbq8-%<TdD}HD-c-C
zrt5K3`&zrxRdRtL2@BL`JZ|Zy2J=x5XMv5tz|FoQKPg*?ne;|J2LAz06N$5Y%tC(c
zl*Z;!6_&v&o-<vmDei*9)Z^O#6>kGbC2DSshi|uVg&DP%#?rqJ?qR1?@*29}SDuTh
z>~AOpITi#6#KNTGf(FUcLuz#l@!I+Zana!;zJSs!G&H3y$3HBEz-lAFIqE`TMLX<%
zIkURYbU$L$jnRYdsN7D#;0!F|NzPq_$vo(~Hq;vre;5HDhONc$O~=|Q?IIwnXR94p
zpMjaPU3$D@K_-tvNuAi0i($c{vQA;y)Iv5YpzhuP{_3R*v=h@tzq3+kbOjE3D~xTe
z(Xhe-KVV&m-ewc4w${H#;VRp*Y8TzTGp=m%+@|RQ+=^RioB+{V@1_ggOQ$uLDe1*-
z=}nh}ce5=}2H5?MFnS|lvbGFP1~La~D%z)cc3kzST3^A_FlBFIqR2k{QZu^A?;SO8
zE7_w$xAGFT1eznr$H3o+m*>sA%)ilEl#l6Tw~`;SAp?SNQzGiliJst~B|i~m6TGX0
zb^4EW1TWtwkA2V1omjJ7JpF0ZF>_Iy+i4#~_C*H0e1Uqb9N2FVaH3psEB~DQbh5`^
zpK3>#W$CCZ)~1fRgM~l<w<-UUgLnhJsWgi5qU(M^eW<e7=_*1ow&(<f0Cph2k=mbG
z*I#er3)gdbWee$BAU-qVuXt55=ds8>u)YRf!0-tJMG+XNMRvcayOfoTJ_o((Qk5wx
zYG$~l5veuK{jJ{?TF7T;%=>ICaI~z*Xta5j<&n?$5GYFpNR#D2gdmWdXz_J$__kPt
zTXW#7ZF<1>#YkwAb%*KS3%qySmFL_6CesR9Fyy@k04nl`D3Ov|KRF3}=lkuwzKh2F
zA{I(b?YPH13Kku~Lg|}!w<waDxf4_3Vu6dQLnUM=x(I?h*qXry*XtbFbMlIFAb7G=
z3;2?^xNVkoSM`w}q82x;$9iauMm^>w<FO0EUX&|8J!4dP&aGSYglZ?yM%GV?KZSi}
zb&|+|DIO6WqAO>`ZS88r6i!ts%O3i6^n{)A?BWG1@k$)(61Qe^Rc_bIf4ZQ<q&vfH
z#}eDBK8pqdT_@4*7ysL`;z;mvz<N1-y!QP|4oiEVb}F|Ac{H)?y*56S(-&`)9eVw8
zfHEH@+5#)xw2G#%m-1Jf>}2rr_C^A+N@6yiYa>Tk-?&qz4RpDO+TC~l$N5;weAsC4
z8kdc6to84o{in@l*n?tAxkjVA;1#=jbFeqo{mSrS&uCX|g*|}(KRu~+5s0_nhg<wV
zH0tCGbpb`W5f}fYl)XHB?=k)FKQ5NWjb089x_8N9h$s6f!69tq%$%*P=KV>Sa8KeN
z=Yp$$^eZ{YYv{k+_LE;#PyVY4JU?SB-Y#o=RN;R-wag#OYH}XCTd~h>ff14We}!e+
z%KyvFGl;(+{;w0QK~1tFC|P0~jlKj1aBbh8`YitaRt4`Lb6p31Z{pcAQz2Vn$9(;z
zp$lWtzcUP%li2heW!)2nX$P0KAHA$jK?{&JzbS@S$Qb+9qJ%x8u*&7BN@L=3o_k(K
zjEp$v<=Eioria=xXv43(!2T;1GI?stwB2C~?3n+b7cD%Ny?sLOj;woQ^t}9X_rL3@
zGhyFOV87r%g5l{85uy}jyt3Qzb~SN%*Fn*NfBTUQsrq|J0ug6A-!c6qA_C1XHb%5J
zh@t^>M^k>IOSzyPmPkLEa^QcOImk%-Gdy*s_Q$B?96!yZA9#<ZFtiO(r-i(U{w!oA
zJ9yYMaB`+oI1vuPlXxld7D<-n_nX$Xl$oD01}bcWk)EY34l{2f>RB6}c-YZ-gI49t
z^dK+)p<w$ezl>#Gcw9tpU8+Z3zBSq~4*C|<*fRB`P^T?@2@_H+&K3TL6o<{SITfxY
zAnLhA(=}bDnxgQVPPK!ZVIUILlxf)YS?3-L9k!@sB|Iz|tQ-!F`khi)sJlxGwA3(7
zOOpCR#S;gZ9-{JH15+8XT><S<ABjQbQlrDp_LPf!*-|>^B9n-lG*~8);*gR~S&mWl
zi7sc2XT?Cu#cJSuk%_zFPX$B)wmlm4JA1QI=-)W^kywrZ3&#h;SbKCo;le&I4%LUG
z-sMRQNO~z)zjJ(tU09Z+fg?K+Xvd)^IUa~FOw;r`mPyk|?pATK4H>;&!sZBM+~O$^
zwoZMi;|eDlz~Fl&+EgNIzG+ocAjllct+SAcRK_iPh>qh3+Lm9up$k@wUlQ%QjbAKg
zdPFSlf^cotIq~Dkb^1s)LXs#_HW5ycI^1|1^g-kgf!k}?e~l>9u3%Io`@n=jWvAK9
zd<YmIz9c9PVIN$XT45)7WuO=%^BEO@!3}0K+<tg_*DH^EHH!0b-Zda;`S&Z9>%TU{
z`I{^m(D=&3-T3h!8RlvJ45ap{{Bm~hq>LqrRktvtC8?8RMBog<6Axl^On*~Ee@)*e
z5fVo`N4Rqv+Q?l?+}t5MX5A^#f)goicqH*Z{18jxWP0m@b!YvRz20Yr`CjAt<12+L
z5o=3~-hVcc-4Wufp2dF1P<Z97`UWpmbrl7SZ4ToB%|X-;@FTKl%h0)`SRPFF{ILAe
zmddjiO2X%I?(r9_BFb&WjeAHh>2o3n;lW2*#wcM0wyjL8Jep4bxx_qBWtH%sIn>9y
z$3ACmgTbFwnmHWV<eM@6K9PF)$f9*#@!4nA?DCx_!Oh~kA}j9x9h9I)r;7^toxCj%
ziz{4c2=lwkZ#T%xdEvg8;6Tz6%}4M^K?Pk)g%Q()=U5dVQ0Nq%z9foR#Qyz%8gb^a
zVDYefYP=dOcJoeoEs+A$J53n&S&qrnT~Ek|+tRZCkM_Pi9Lm1$dn!dr+N2WNXt7oo
z$~Kj&6iH<(vRz0qW3tDXnIc>zR0<`uT*y9I#%?SZibPokgGqKXW1q2%nR$QbSgPx~
z@8@~$=YHPfIo{)V|LHg~=Xw6N@AvcFzrPh8>cktkpjqn(U7#z4u182+AeZa_Py)8y
zU2b(a&SMyLZHiOQO*1I!wPXj;I?~ZaxJ$oB=MKxYHgTt1ACu$06T19!VuSv&Zns7&
z8Ebiw+&_{o<P2MxWrYp-8H(Ul#1QncJk{UudW>ffVuc?NMc5OcV!laoh1XDvh=2#(
z>u}bSBaNL5W>kme*kmZ~g}GN>YpWcWCb=&s2cSvIr8f|k5n1_EHh?W{A%fnCLmW?s
zpqIvGb=()mpu#j3mb0=tK2}lpEZ6Pwc_wKtCFekivbf{hMvrV89nRgB5d9s9s97xt
zOKYC2At=nyX<@`scy_Y}aT0Ey&Z(tTbEr6uEBDDmyQ#u{;dZ8E@r*h4d^m=oD{L3R
zsYKav$09h^8RF&{AReaF2E>duzM@6^K#R1NsgbIH&e2S2wTn1H>t(}<U-)_mRwU*~
zaa+9^#r}|fj^u0-`5c2{Yyf-8MCLZ9m+J>d`69RWA2r17D)^%-62kw3M)EDilU}WC
z?l;NoW+QH&Nro=BV<LlU$+@2)Kf|C@56?xwV~Y+7XLuK<c+OGg9GHRkJlsBDfndEJ
z1f)%k#gs98<%5QczVz3qOXl?kuMXcWzc9$fWmXj8L-<PKO9rZasAlP}i`END8CJUq
z<X$4s@kDQ&djZ2?$X=jd`E9`CnOBw-%J-ZPk<Z8t2`}&=(@x<%XCMzwxg6{Bsm|UL
z?38hG0hghW-z$k3R@fVX`<BN=r^<cbnyCyDB;7y(ok7ac<MGK#XQ0j$jlb5cBu5Yx
zS>2Xs=4omJkyDomXB8a*XnzYV0OUW~Xya4o=@4mSK8eEaVbNyl>NL^A#2Sg|Xv@ws
zY+@byJhN4lYs`E$5ffoPhr;b?Re%I1B-!?~{6-TX81ee@yhWxYV?mQ0&$&-1TiiHW
zp}P3yXM_#o83l9EqZ`HbX2u_}cu0%b46G?2TRR{u<0B^t5TJ=FH~Ym--%{q{?sI={
zh^Ok=zj%b1X~4bs{&*2B8#M;NmafCY)BO%Ui?Xuc@;tsGccC}XcJM)-C<8bE)syl{
z@eQH6)P)6$E|l*#u7}>20d(GPiH(k3UU{JX3{W`&AmtnSD^CK0y7smAfW$Y3<ckiz
z;yvU&;i+6!kY*5<zN_UoP-F}0RL=l40}p6)>I<o`6>#UTP(rE}5M_Q)XbcD@UZHfr
zum9}p0)(wRooDMtustbYd!hlg|7EyB6H98sZD+_gb9)z9QYlb*=Fjk78_VM4-##ss
zjtv8Qz|+o_CaK^BykXtIFYuqNq@%u+X@!fS*Y<Iqx<90glWVxEVZZ^iuoCE?lLZN^
zi7U=FZBaAF?%Zwo7GNY(FkFh&wB)}6X?kRNb<yb?^I>lf6?BslR&Z;=%{_y<#a>Sd
z&xsfYwb3^n1b<;x{qHBVZb^Jt3_2FH+Cd^G_tB1EuClUl@>1EP#V!#9L;sOIniF-E
za!sx!|EpPQrv5kZh4C^>hyJF8m?bzE`Svp*Jzrl6L`&anJ1!<GNI0dYM`_uzD}QZf
zh7&o52o85+*@R!Lbjziv1;Q}TeKh&akKWm7F_zQS|GvmKb#>jTL3cnJoBdh&OHXFj
zbPj;?5>$EoW&*DLNw-)}2(A^g54*1&-m=kl8LUNlynTI)_V_}ai9TEb)^ZiBrKyyI
zRgR*cqI{_)%0$gJ6HM^#4P$jL`X^>Jfs&mCOxne>C#kf^+gRgkYbPGkoNhX4h$CG4
z`rjvxt_9k&R6B_c6~u$UU;%n8ZhoTxjjx5=KRlB5IY8NO{WAeWAo~-Q&oj~wB-fD#
zzO(~U$d`EI@6?O_&;-tKA9T1&B+cV^&_Y5HvLhh9dmcW1;2zI)rCas@^X5Myxc;l-
zt02^s_N9wTdLKoPaEe;x_G$7AmBwF(n8F<qm_eD)*@Btbg?;KcCb|iLBWNu)qB-`C
zHac2Q1m=su&Z%Luk=a~aw&nuwLQ6;PZt1+m(w+kbN#tX__Huyr5UWF*K>ih9#32Z?
z4uBO%Mdbzp8iG!tqgB+h7aVgN_<6V)0|%3jx7{>#^M^GmZ$PAbO+{lthrV+kq=&nH
z9?ydPY13bS@?^@aCTz{o<0H$U^2_yK)gneN6L4QG!O+XU4-GMY&OIwuTTaJtf*?O@
zVqDq-f$Hm5Cdbxg6t%V!+t!k*2*u(wld6|V`ifEjI4UbU%SpT1wU!7&jrz0-lJZ@r
zGtMgzzpa8BUD>+h>DVfA5#s5wC%{_U8r7)b(*#iUhkelCj^|7#-WLk#%D!80)6aER
zozD@~C{eEa=^X4aqG04HfloCGQT@SZqB4CfF2e;s#Itu_mUu!YH4B^i(tQY`;!(g?
zpReFubhM=sv%jCk{`5z!4|X7m9B7#{g!+6s51y?6gXN#;C^wO7C(bQWF+?zB!M4#B
zv(Kq>hEm%Q6UBF73B<TmjE&>TI7Bij`;Ni#H$rIDlGCp~PkmsfSMq(k@Jde9YGS<;
z`Q0m$zmsIMJHBZm2s2|d&U#uR(K7Z3v$+O?7ovkcD1Sf;Ez@ZH3pz9p7DAYA^tiOS
z&`FTsWRBY;TZ1xNQ+jOmJyn75Wrw$&4}#rb8N4aKwxTuEd>>!u@u?g^!p1Yyu6A*)
z--xs1whI-S=Wg=Dtj;E)r<45A5lawZZ~iNgUH)PpRHLVc9NC6(o_M4{bPYe*?Wnmq
zKG?4}-xoP+24UpOSZH=V7TbOVjE_NSki84NUn^fwsc$sPN8a6DVePJox~xLliolFE
zyi&|+P-zLk-yq-9y8ez^pOa)+;g%QEY4RJ<<>Ti<pXk?m-@hIs@x#|4nqQ;x*xh?9
z4mD}8Qj|HTCwsS;00IopQzXkQ8Uvmaui|TG9`4XV$xvIpq%zI--vEHqa<_G~O)r^|
z{LpbWF63C2*~jzz4rHfyngB8CLyH2_wQ@aY7O@^;Io|5gH+F9wemgA&;Gq)vH}0v+
z>v4du1oO1gQFa#IH!oESjws}p0a2TE&kD_yNrxN|fBAVYkj{YjX43suz!deq^G!z(
z0IWPcJ~QlNVc@esev>%=T`qS>`^t^108D)2`!u@mNI;ARh6%M#(3hMw0YeG)bh00t
zj9H$FC*(rL;6NFP1<U|2-Uz2>Me8w9%cn(OMbdde5{KPN1+*brF~4U2NFNnA^A}YN
zXfPP;_@)K0KzHGG{#B#+8IZG+OPMX)GZ$+}KcRHo+hHXSC|I<Jtp}3O!2lkXFxm|M
z#!u8@l!X;6=-E%IzVM^cGP_Ou#R+`JS?xUI07%F#>MhN6179DkvFK00>xQ_bf+i(m
zJ8aRQ^#Crd6o~Fmjt=PM>zMtmorqz}U=jc*WeTM!lMhx7^#l?r1#jQBDu{yKv^!F2
zeA33b;Y+sSuL#|pv|Bqi!b0h_bIH~zuZ0bSeg_lZdis|9Xv4g(hH*r7XUlN>o2xQf
zt5qH|4*Jr+JiB96;LK+RHVd(RUai2M<_GPf+@3hv?f2t1lbpSlSu|d`rOcl%STSAD
zY%GUpxBd|Qy}spCf94#@qIcFP_eDRocHHh&bir`GjHQBwMEKy#eqYN-%64OVPGeL4
zXXmFA-HdX5&jxC9ws>;ZMe*d=k;<C1s9~)_Cm#v=(X((`{^4sN71Uc?gAx-)xGh(e
zm19CjD^o&eU$1a*`*beqBDdDVn-+(Gm3ZH+GllE%Qrmc2&j|$7L3_Nori@+b`$c#A
zTo=5vd$zJZu<4+~X6rYCl3$#5G`cAsSZ<hIbT@MSA6H-AJ9)k-oZak#(==hdZOgo)
z=W2cU?yEnY`A+SWYs0g$C-aTT@AB7gMVh<_ZHy$bE~J<Vd0}O-dE^9B&zQhVSL8Ic
zPepw`^c)-DoYDU$;Z0Ljj;YG_eMH$`-bA!=sO&-P>MPClBCzB7<HzKB6M(quyKhCc
zcN=Y^b`CBayj1&{=9;^EY6CPyUO3eFsCBK{TAgiXM&f(%VjWUBcQcYj$861@i@f?s
zvt0S+zJqRLajVDcdiyp<Q<8&Pv+40h8=7H%LUW*tteZ&HZktHK7!TZ+_;q34?F<g>
z*bN8EUs-2@(@_Q^<cricrhC+3WN1O60_--ntUqM|DpO-WmwFaY8G7`RJHsHpit~6o
znf=&QGajf{3{xbY-gtiaeJR0^reAr6nV5sJZ~KCAZD=|)pxNApx<WEV;j_ChwJ@#7
zStwYE!-pby_0S%WM?Jq>m{7c1>Rqu9-f|nxxDV*uJ-B*@>f2w~=PtM4_mKm>Hf}-K
z71(}tX8pdRPMw0gzwWgBb^qdLSRMFDN%x(urp?)HAx2Yi7hZ(E#T^tljTxn$zSAI?
zNi#?<xF5S)oAtr6ik<c=OR;;ixF6i!+DPO4SY(CGZdP-ZG*a1ZC9FQo=X_xQqq&7F
zF811&rBBkH-rRE~efKYS#Y_ODoZIi5{s!N}?bhs7Z!q3$WvF&cw6HN>b-H!EQ5H34
z%6fmc`G${4cFtn=9o|fb?x?Unuh2l(wQ`+c7ZTjF2{x(x<g0EE#z2*2R<L#>9BvtU
z(fNKiO3&RAX(l5~00p{<GrM;rBZ&5uiKfP~`cr(cdXwoC#u7{3US*JP3}mlZ1?4?5
z$6VDIR^qY9=&<eQ22FRhIDrrn%nCBVfU3Ya!h3^o46;_npw2!JBrH7nU7G}?HklDo
z^q{TG;Z6F}Q0(NJH=v8!ccl?~T08N=uX@C`0Y@nj=_<n?F^>Hp<kG9(pJTH>lXMQA
z3rYM7rp2Aypu~p0Y8bhL7xrE>+yK7l`0sX@Z8~i!lc;!%7wld%sK9)l2%c)3Ob#wK
zzGUrkE*qdeJ)3lCb9V1anD)HM2x#%*!Oa&N(v@dT&-#Bj)D#b@BIy<A9mgf-H9G*P
zaVI}3le+f_XY!8_rQXrPX+2%m9$YyO&M%8!K80UdFFNAP>&gc7$oYZ8Qp|=ut6ay&
z_#0|48xY+~i^hye@YnM%LLb<ZUn=ssrB#_#l0J&U3Hvh5Hr8nUC(l1FIrwU_v`W9(
zH~C}3q)Y4hJuM-?FAJOfrm^lN$UTNsa^99+cX6*_w|0G~>X?+9f^TK-xKjK<sOFDJ
z6~e|_$?h|i9uNNE+zn(_zYT@oBI3mP4Ov2I>j+(DosAv_i@OAD$>WxVRm*riaAbVv
zH&HM7{&5HYm%8}WhNUz7`+RilaNaZ>_Aghk_YpX!6x{u**aj*$xf(>MoA&$CON*&h
zoI5!B4%^Ju!pOE*`-xk-Zf^knpa!&JmX%GM;Q)s%GEIQMqorTsGAQo@zECQwvyQ5(
zKZ`b`v<#up!uowRpud=#h|^wb*1#)IoMsJ^$;{A@v|R&2G+`FpS(1I7cXOtLd!5GA
zw9<26A^o(DABbVAFI`qRn}3E&7Y`$z0Bsf-_r+csMp|ZFjI3j3wE9r=Y6#Zbk7pVr
zoVV+bK|5`BNGEc<iCI8eAD8Tk8UBvJKM^7{v&PwaG~N<xAalo%zr_$AO*gVOCTR4P
z-^@mC@Nti_3xk=m2ejeUSUL$?>)*CUKDVUK{DIY)pHBA&h6z|l7(ddp-cYK<7_JS%
z6RR`OM^qF9O0(y#DO+lD0#G*@DtWLiXxh7~jEOop96dXjz<yBy(F~NL!ISa(Mee^H
zG!et3{!!Kw>Cj>&#!bn6yZ+aRHH5TOpJ#k_UUbf|31!ua%aVXeG|P_M{toCrF_BU3
zqZES%E!3P4^2G8RV<UgcPZ`+mqI{~x-PN%uAWRIpn8O@FneR_b@B=Vtts+lT5*gJf
zJ24K(kNId!86B$az?tW*t**!^?J>1tL(>+Ra{Dfo-x%(H9dC&QVni^^CJDgpJ_+wT
z^vWOk__*Hza~Xg+Ke6AcdMh0g2+jRW&dYv@{E`jSr=OXcCs{yY^W;zP@XtS64Y1_Y
zMY1{UCV)D~qcppX_b@PCf#t6E6ShKsT68=uJoXbj^27*eX!iq}E>8WsUU+}V0yqJ`
zD}CXw^Z!HDlI{SakDpuo=p3K$+CCPi=~k^hy48nU0@>8&^IoYnh|pR-vLB+3l6BHu
zC|O$&^t+nTWR4d(ozJl{d$3|g6n0zZmhz&$x00X@4nIQ3tz(4*P+4!&PxBOHIlM-|
zYQhy|vYPR#6Ji!pdjm*`c3rD-RiapVhi<5)xI(7x7L33|&H5p&(U`Vt+~etHD{TjB
zI%U)UJS>i|E2<ASj7(=)Aj$Q>nDqEHmw$G_?pRLV1L-t;W*{~~vNGeVIrwo%aobrR
zn`A$?&yvLUR5M1ZKwJ|+`8HWmY_=g);o1(DVD@sDmG*ng(eH`_SSKW;r_IiasTQm<
zduEw^@kwWz;TnPm_f($xGl5oRb(NJ=KepFQ@J-+j4<W50hhvw)@O#SGbqhx3mKF(M
zd0VK~i!`V{l;4D4cn5FyMIKg6+tpH?gSUg55#J#PMPV>CU!Kp#%nFUrY`Om}n{y8(
zvNgyq(MqP_qE)R{_qSN?mc59f3;FO^(Hb<LnYa}aFVrAEr@T0%!+ba~<PtSv`r4P3
z)$7*=^`63w@4QiF8@XlUPIrnyp79f^(p=S>>KWZtWEWN;&D%MWL8YCAe`5yOIkyN=
zP1wMFrg9hkGRlL?2aMUS)4mmm0YExz$YE5(bLcFG;k^M79!D)wBJ8Eg0tEu|Pi(;=
zSpypgh62IB)wmKix#(eB4)fl#;M?SVZr;@jyWI)-Pl}kJMJu5Y_7&uzL4OiKEJG-C
zc0))s|K32*)Y03TydS|oi$a7q{O#gfp(_Ubz=+VWFaH~_AzQ4_59u>eSKa~uS1>Cp
z#S#D+it04XS=`sGn-ZRLgh42A*B+)q=d6a6Jchg!roct`QD5{Lx++}wjo4bi1QUgI
z=+;9GD664=B2mC@C=;xxeZ3e#%illQd;LDCQmBZ+Y0C8Hq0SrKe){#mM0#G|bC+lv
zV22rZoK#Y9LKVm6YzWW3Ydjc=*tbj_p>WNsrDKW}E=W<=#o3xRD}>J!!}hoiH73&9
zUF(8R(itSnkq83V>481%Y8_dueK43VP@>&U<v}jwJAoIwR?WIgy=X(8#AnwSesw4J
zS8adpx~wJLjIa0L&1y~q{9f9u40*u)8|ry7#{Z=_Q-+*6Yi4U@1e7;PJ0jDO*msh?
zQuONAetB@R0I$KplOz3*3_1I^yM3CmX|l_Vu@VTPkWpzf`)&)L&P=#bbLa{;Z}Sbs
z7>2^@_2O-UJzM{%y)I^5uA+E2RD*fhgEP}_uMcNu#b$2hiAl|o_zw6o*yT$AI2v3^
zjf?3i%TubO9*yc<pFS}DPW|!_$~IbrpX^<q#smhm{QPPSepu}g2-n4q2JGD5r6{84
zcleh8n9Qq-ILBmP<aIT^i=q$M#q>Hqsgj|W)V<3S*Oh!$PLlM7zn-!GR02|4AmI-k
z)h#?jCG&#vg(1}0<k9VYGwYLAq*zL{9Uz$OYH*5j<rdRYW`!@s`6iepC|lwRUhp@o
zX9Xy`-EKxwVM2&CJc+3BMXvw{*yaxaB?<4~lWnoPCH>h4T)z6sQR;uISsLs#9{BHo
zPPi~Ow6zQB<2<u0N|<@xTM$_DJhv#Qz?2DzAnMrYAqv|8WxCdrm;4X^6MVWTkp2z!
zm*@a;1&SmXAvDP~eJuX$L21zEa1Ci0%t~wlW-3k)`cX-*^6!33D<yzUgjt#Rqtll_
zDT939%B-*252GR<<RT3T6wU%Fl<|?T3OomFxW8~nks3b*TJes*vq5|5`d7y8X4UUF
z_%VWAdo9xiyCbq2^`u<+OO6ftNKWd<*xIQMA5wViDwq|mj9t5QUaiPlN{c*j^~tVS
zjkmsHfDa}<(|F%^@PRSw9?K@Dbz)iDO0y1BC;*<wjbNSt3R8b4Zg?ta?cAk8aJVwP
z$_V5EKMQ9fM<0|sj^*FFGGaCm+bId0(;~x2r#AK`*lj7`9&<WEX*rm@j&O%XP@&kj
zU@zj4LlBfIx-UTOXAO0ouLwaxhOEz~sC9%Htf5&xz0XQ)#DG@U@1<K?YCN@q*I$(f
zmG}FsWcKb4h)SE|k8#5bO~koPBW5d&;~C1Tg`h`lJ<&x?^4e;EvdHzrsHItekWR_^
zMR?`u9skBL&l`Y0qr3p&3bP_m;!|e<4&_mEFO(O%>!p5o==TDLKJS%GTE{-kaB&F<
z$Pst^ebHERf#$GfsxU;+Vx`J8PKE3}kVpM`RIc{M#aCv@nzRJaWtMOcy?61!v;udE
zK4_;4JdS7P&j%U4n2%Ji>>RpxUbb9oZ5mPU`rFHegX<t~f0kbR9%#2Zp#|_<@xOss
zmsjS~=OdESQXM;JbsZj=UUMV+YMJ9q<~1kN5gU}U=Y$}CYfP-<K^g^_-d9By>B}s-
zE>3nYP@mj)U5$D3>cw6%8EcdsA*uJAu1(z<sYwVaFU4k^J1F5tAW&^kb*}_$Hdjg?
zlP|_HOmIpL22*i0m#H?c6CW@C;?iBO&Pm;9^OkjuMX#Qc$v%gQQn7dtcq{}TZP66s
z=q3;R7HWNwR8nt7_h-8I_1&af$aVy-_UL9z+SC#EVE=eKIKk382Al5hWsR7;RZ}>9
zRjRU{k)tU;=JJ`TNiF6oGY(zpo73UaW>3Y|$jjc6r1{39dk*@)b8i@qg~4P&IMt)I
zCOx-Q-^f8YmSb)IjK6L7ZQ3c}^M_Fiu?ggGOx$ww!gQY)N~Pv>D`^}SCFo@xJ<G9;
zy3$&8s>))A$=vPjhe}`HL)R<Q-xt1)s?cOO=V22)%&JN!U)`D(N*B#GmrdV7CaugN
zdSNwdFAIwAKgjUN56Pw_t7fh2PIp%qJ?mjMq3SNal3@p$KupY0=ZY>w2l~XIiIFx+
z?1*>!$zz!3z1<yd!*uscS=;IyZE_;8pSFjnRfJTW3ptct{~I#p5AMv&Q^);n=^B#9
zj)mjT4?WMEpgA5RT;X(vvJyg7iX~Q%b0(FpfZ&5Gso<CjorMzp6lY=H*UC{2)2y`F
zK5L$pm{2sQ?uNpt{W1I~S-Ss_dg!R(a@f(wH}|yK^;>ebz(w{-Tyq%=%(-Tb@rrB^
zj@=mGrp7EKFkd>h@Dm5DmBvP8+@hFW%7p0_(GV>y$=z$3Z){(Iq16OyxnB(;r-h!N
zTbs3c+U%q@hwjm+By<eh$l<hNMMH?qy;py^u}$l<M|6C|Ae}wQ!Ma^NG9xM2sOiux
z??x<h^U`cA{AQF9JZuxGsjd4N6UH3BF?H;#SX0Bv%JXUBm`@e2H51Z~snr#)v)O~w
z5}mx29c?4mlv6R1S;4ZjedgZKGuJj1sM_CW+GfN+_Y5t7bS5n>J@1pgm!9yE&vW0p
z_O(B7_vcR?w^mSZ>BIG&sMF+Y<1cAkk+cQ=u|l|0Pnh`G$8$$9(W7Hs)o`02nRQ=6
zKC11)^Vw~`1mB6FD6b<3pNb741(BUlx_3u+*{ZQ_Mt4?y^AJ~S#=a;k=e~Xyl=WiG
zjk*}^#0*N}Aw$;FLvN8I5en;+nl6LvSJYwQMxUbd=W0zbvUPrgo<7mH<hp+w>_(_2
zeBL_!h1J-9zD)qf$av{3hpfUpv3rF<pK+P<=Du=^rMqvdJUzSVlS$;hFC=I4q34J;
z<2uVMu7@5;JMPB0B*#q6N`iR@h<qVq+caE+%C;8Vm;$}4!#6waEuis2M_?0*bk*0c
zVdF(5LVEJvYw}4*wFCs-uD|xsyJWN8L~@`9?y7i5QDW+)Kxfm&(+yh(W{}+%CQm4&
z&t~Q##f)k1{uC}wv^hIcuKv5ivF5{aqz`3dB-Ix|r#;rzYDSeMUzTpk@BWa$Xc4us
ztxW!-kJ=q}WAM$fKHCeb-*WFdrVZvsy=UyiJal%(e8w1cJJcZ?vP~z61G+~Ejrkri
znAED%@phN$bW>4NGM7lU1{B8JDHe+4hLP23!;?<1-1k+*sHP!}3$)Wt<fgSRDUIeH
zoyqA8gA=o*(%4(c;4U2hz>Mn{2Fy`%Ia1*Inzdz`Yfn>^)$yJv*RgjA62I*c!u&3K
z+1^=Ewe9Hd6-er#{qYRH6g4a^&3*8YF1(Ta&K#R!E?KMJYL@-LFYBplNCw5*OvOAn
z=Xyc>mztsO?a#xCf2k$0+(0*v5dF%I;Lzt04mMp%?b2=bpDon_JW_0Nhb1a<zN~!K
zIW@6j5SN-7jvaD7Z|=%lW&DthQhE*R!XK5HHH080@%?M}u<mCjP3ev33w=iYABNoN
z=M32rdEQ;^x!+F_;nAvuP1-GNH&(7Y1~U|vseLYSn>IJQ!pgyNMx7Xpi3}q#yObR2
z?ryw7<m@!5HFKk_k))k#x&BQ;RZs13`hfO3eawqAOSwBz+XI_5WgXNcgbRu%FQQ~@
z(dc#GCiWo;YC^No(F&xAA>@AXx>Juknk}_oaWg1}H#dL=%Fh0zYg=8%=DywP=G1t}
zlbr_M#Mq~YDF!s9fWC<@RKLV*Bm0wZ_Z_u4Z!R`@49|u#W!P_HlSi@Hq{w>G6&`3&
z8_{n&6Q(Cl?XAjEmS#A+lN@UDZnP0Cw3B0Nev6@_#MGo`*?U1(l|p(x#W)e&lk~ys
ziOUag9;ASI6MJ7o*t(+DIBBpe>1@Lad`$Y(Bf;g~T<a;OwPH$gPDEgKBVo7tT4gy=
zWL2lzRVguL(-v%{@E_OKe$+IpvbL6NYm*PJ&=b9rIE^ERT_^GFWZ@B031kb8l#X)Z
za}!DaiYc`;r+#UrfG*HOs1;i<&eoCBjZXH?p-#{l+k+inhgK*V)vmElO#1WCvqQ}^
zr8a_-7$|5&A5FWNGOj8TX)7B<|ELrd;gpW8t(cf}zU#$o``mAmX>*;`svZzucP$za
zw^PnW!i_d<(Xp`#Qq^l4%1XVd_eO%<)Fs1$mf@<<QN%BTShITFnBUQGgO%D3g!-@T
z_)#x77IBrHaQoh|w;W3E*Xun|=O$K4o%VG-vhGLCgJxpU`&Z@RQ~p41Eby4LNe@4o
zSK`RBY7?(zpiJnWG>;(pLJ;KqQAJ6eV`)`oHY5nMWni$KJ)P6MDC8>GIT%oVhW{3O
ztR~Sik~3Kn(=Ui-X$vaSd|dEfw8H;w?LNu@&kh0#9_MRXsQt)niAMAgfsM}OCypx-
zm4K59QsrOfB(5SyjpXiAb02zw%Wlz+^^yh^UGP53Wk7-D+4|r!P@=`u6q*9}nx^lI
zRrUE+pl_F$PiIbvYmUs+!3(Kr1=UF9UXYX|PL7%ZO5#o^6@37iRO-P=6V4}w;`-5n
z3Fo6#KicJ=k5TtJ8dbXv$F#>WNB@kLRBa?Tirb<&@!K7WabF|E%_&v|@K`%^W*)dK
zqr^jS%Hq3??~s-|xNd4{Y+rFyv?gY@zFEZNs`GS;y@pHyYq&taMs+vB05rD%`Q5Yv
z=fNl>&=X;@kiTP6xygzJ0x+I9;#lg4ZQTo1%v<V2EH|@ZqXQ^deTJ5!{*Kp+UQNhr
zwHQl93M7o1Ryrt0#2%@ljGkWB68J6SB>w3PXfs$(wMeFSPR6U8N)KXJA}D_#jta-E
z$VegP<e12Z5&AQS+$WLQH?$QVBLzBPw~Na(Dwph+XU``Th@aS)$tX%ScD%tLFyCVG
z^^p$!hmy17Cg-`+g9d>aAp+z^C7g}e@`QD68`svn9Bl5WF}ta7Rc+VS(_PteElF$<
zh5oeQQ<Rpr;_OsOU+>5emZe+}`OJeL)m4yfCeow1w|9xD&eeLQ7dNwu*dfB#M6cfZ
z+~pcG(O#a8Wsf!BCQD*-QH~1v(~rxEoGyKH3?1AEB1CSipp@wND~hhXpxrEVf^Z?A
z@>Ey0^|Nyc%YRF-as&;EsVM6>V8=A1Sq|NDz!;N7MI_ZgQ+<E*gC(2ruu^7CnllbX
z?EY1n@<}IBgX?LDoi004=R#@bL?~$Z%-)ln>$x!GNV(OXDn>{=LOFL(S$zvN1m03j
z09R;L63}?5_se0;(5(&-9WmQ=gJ4rl>F{vOfKBXCwkv$fRlZ%P=v!HkFma|awC1t<
zuPyOT&wz8WoDjP^(Bt*Z8z*10l$A`k;B;k6Gg0_dg4}Gj8=gTP#1TC;(`U=|A1#9=
zA77viG_wMA6DK({YZDl%IaA&snKxpP!2M9iEo2dx`o!so1ny7)T=mIp+opYh%)F!W
zdwr3Y;qAXOJe)9a3Y-6VBVjh7H1o<_a8l=|RdzYWf)RJ<QH2C+<*XdfCn$u!aK|gR
zhfqq8@ve58?-D)n81=PG2L+`u)7Z5K$Iwfp#c<tF9%FG4c8ATIYy$N)8SDmcF_38>
z!NV;BAws`}ixIQIK4vU^3+qFJzP$p5AqHU+)GP+rh~NoNZr2L=_88|<s%n$2g}XcR
z9>|2q0oRk-%==NAz^=jwE9T9z|0X#7KWID}fi^QxrddG(T_O+M!UP%AWLY$w>@;Oi
zdV&xUS_5(`e1WIEukr@BL;<)Tv>QhrB}49d;54nxh_H0_i@h%n49w||eREZD;7f^v
z5_vj{UsB_xY28Kv6L|gKRr98?5pen*SI8PJ;5Mjv`_-e<vGcE1GVum+*7UE2u5tlw
z`(OXY{H9A8_?w_BavT2J-+1XfKU>Zo3n@Iu$$x4*hL|kaD$35@+^zj*;fD;5_WJzv
zZ^r#8QH#IW=f)iNtM1mphCq%847T0{<?|tVI(_#FnDlM%T~FNj9omba^lFRI`y^hy
zPp_j#Yf~#m*yj^PjubdQ{(s#;{cnrLAN<~WN-dlUEn$1yO;S~+C+2I+d3Q2MarCpC
zc~035gFRRYaS7Sbk6!E99u}?YUQINmCDf^h6;b^pC(?nF<}%Mq0zPBmNiAlvibi79
z=a^yo;+kU}2^oeR9xT?n*r~aG$xe5Yd9QL!8^{%Gox4s3E*U6;h{vxJo|t+zW=@Tw
zrtUt}Xf5C1KHl@8ycOXw4f4k`1NRNj)xYYDAKpoxP-)6wUc+t!H-{zM9Qkhg$M@Zj
z8V2}<`&IzXAVC;u?pz@f2t`mc3Py@qSt)zUl-*C^JK&=VuE4$Lqq_!HvTAYO#owmM
z0D*j{YOO~S&Pxu>&h>L?S$Eq+iMRSJcp^0d1edcxpSyD-wd3O|U63<8bq$pN*e7eW
zvimjrN^!IqL8S)xRQ4Y&K#CPhdF)a{M3DeDMcAfAD_S0$%)5?K8165{W~a4A(Duj%
zEia;+4iy5In{6J3FS)!vG`_&ixDSuKq0AXG!(wAp8yT-fqX)6RbM+BKm)R=)Sk)&G
z%*&4%*os_6;+tv^$5RLJG;q7)gM(Lf)FuKZ_rJ;%%w(*W7`S=$E-g2<iStdFc4**&
zK49S#v)rltB_qSY6<AX4kc9GUT`6keHvOVseQGq>5;r#~sWG~5nA{d5U)(dAj+-_x
zv1FazfGAgXXW-xZS+m8!<st?}=LS%karc!QtPPvpt(*O;4&F8G^|m;8D?H9Gb@eAg
z>?=L8ePaAWA#hKdKRWckEf{rI);U;^tYo?lv1=VvTXd$MFpx(H;MT{_PM3{Yl^!5l
z{^3gKLaQId<jj92CetL;-4(A&w}f{cnq7@j1@SHNmp+tZ#cM0EEoUu5HX`hvS(p&y
zJgXoP>A0vq{p%uf_s#$@$BRZSwCxBj0k>Xmxn3eHsg-%@xnHVqCN>s5qZzsp;a@1v
zO7l|&T!z2a#p(V*bGagFKFGmRKP0S^oJmIM*iFqPpfiIMie$qElO)u9#uG<ko5>IE
ztxJT#XuB76SyzR;gRH?Lb<-w6?4H4d%!uOIU{2Ffw;2L(Oe1+v4pc$(l%(d@GWs^r
zLQn$KV`O3<d+Vz!*6~Lf3Szx#3;xfgz}UZpJ5hF)J_B7e&|=|Q&Wq{&P_4<uVkd4r
zrZu8?{Oxz+K)I$9^UbE!D|T7|s-8IYET54U$}0H5`&vnce{<@D!Cvm3I-RGT2Dzen
ze%CZ2y&OOYY;B%OwT270x@$qGbfmKQ$g8eO!tez>o%^TWyF+m2y(ibURcWL+%!+)Q
zx&r1A(Jt02k>@loyCP(vnoI$LP_8D-%JW0f#o<R(-npN?`2pOUm0u2pmq%JGICV-#
zTk1kUE@9AE_blvoht!WVlB%&_5y&c2!E#`RiW^)|PtZO2^Zu!;8MI!L_TzYD31b<o
zKzBIUCG;v3s01#0-SBAKjM+K768u!S;t(qT63gjMimPl?Z8=Wv5|P=Ec_mLTFJ?6q
z&Pzh7!EqYo2C^tUfYE<S`|)d!@^{nS`*V(@8<5}s0-~k!Q{OVIu>dL?z`(#UmIm&M
zw$AwY@S<XBIEbGM?J}|0vg}Lts~pmVD{vlz;9|kx`olHszP&xh*2YtxZ_<rx{z$D)
zv)GbN!V8i3VKn*qJ?^pCG_2C@4uff*y!ipup6=!9if42kkr&y|9zT3kReEiI_4)%;
zmX+Ab^RLR{))0n3<zGBKs8f6WNoT{PRD7Y}w_5UhOIV51WAvN$JtVny&jnp@cW#f$
zu!&{C&X%N|j{aYx1YS`E2#Gr#n{tBv*C$VPWX(@Q6fprdHIMa{NVy4uG&@$8N(o0t
zm^bV|U|u#-oIdsMT5oK9gkb<KEDPG1=<6czP;+x2!vTIu`Gi5)yLE3^Uhp}fC$k4#
z8JTuX_98J<_^C8h`46X(N4m=r@)U=aJX#MnuOg!Oom5Mo&%hd^ySiex7}VcPQ3idd
zZs@LT9;GMBs1cb$NjFU7LVc0)4k`*c9|KG#RI`KUR>Ek~^E+0CshT%{_ChC(9&G0$
z7vF~^70<np1$W@JnE!=JUg)Mtw<v%82ekDG+iN7VjzISN2h^)Zeck;}NdB3q`B{Me
zB@cP~4TZsZs*Xbbs34#}Sip~LU^e3kqLjONw+xGrbS)}yBHLh!%Yc$tzzP$#?Z4_{
z#Pl^O41p^B_FDoI=hHCyt1HJT50o_gk4I<blTH2$pM}gL1qtt?EWZNH7|^I?$}Ne^
z9I2I<t0v7ggRjW)fFXW60#)1{Lu*Vl;57XP$Mij;nM=+^0vj7v>ANUCK!th-Wdy_R
z>B@=q85+GeqWLsVCmj4=Sf7ei9=3u*SF3^Kj@yeuK@CUZ@1Rr>CyL5Jf|Yn*h9Rh)
zJ_5|x&dTRd`c->CC%9rwGK#%|yAfP*x};2rsC0C3G&z5I0>_HJB;hHfpfs0q3YozU
z4iZ4S(OATDlO4DM7AqKq*@y0H94sgB?7TD%9Wg1FHut23;ucrt&Ew#jn!4EjHMSPn
z!xo(`pE#S3In<?hUlX<VCWwYtU|f)!2+Lq*((MyJnqJ&-YCA=nIFm}-2iI`FPOZ{6
zk%IgHI&-eJ;%<5aM!T{F-We&%EqB}j6uFC_)HrNC%_0#M(2><<vf)L4MG#b%g9m*C
z0P=zju0u1jhet@oW2rQL`0U`T#wk5ELpTVUv-DYi{ne3nFCP?}3mM%t5mTRdT7yE>
z?38uG2cJxP>zlbQZ}$*C3}$w)-ST_bJn@;iM=*<(jZ%-n^z*}yH8SoVxT1X*`TV{9
zZ7HkjoSZJPrrj+`D7&ZL_|&_xn+iN25%mjHvgQr^HX2i3c8`K;u28#B4Mw+?8O4yd
zyiKc<GQA|E-|RHw(`Q@i#q?7J#1K-ypQif9s%Tq#l<GeMncwhJt6+#di^q_ufc0as
z-jgKNd?r6g#&D8HI0K4CmgsLiH?C--8s1~n&?y|bL=a$;MX?TKB(Fb7&&j%o9wUZ9
zmyOb%-_&<oa%{%;r39t9;fRbLgTT<aCY87hHw};J9s>$IH3xX!x)*I!^stnP9U#<g
zT!(kD>TEaW7Zc)VDD7#<iv1rJ<G0_;mWdW0zu360aY1Y$mhEVgmbkTSE#!xY<nu*_
zW5!+uW=;)LqB>l@z1f@{=FSQnt|^{;s?An=4JryjS0g|RXLq(-Yc0_Ckwt&Iw=ZMF
zr(X>`DMjL@dScp%d-8!eCi8;S&<8s}`O{-z*5+(osS!WB4Tw8*NJ%-j95@#t`Tl_)
zbH6R_@l<Js0HK5l33BN>z@j2`<j4BdC%iR3=p`u&CWnB7ld{?fLZTkE1taG)2MikJ
zpB4&-gUnHaBqWVNqgS4ce=I!v4~Hro4C(PJZrlbcL0{-!BpZ)wUT!Yq??n0RimK~x
z6)o<vRM<md#;Xl86o!h&{LvExRJB{f;gJyZYI4azNXUmB2PQJ9nC>z0kUK~dop7G1
zI3n*^%G8L6?W!Eqh;61`X!L;Qls#}~YRy#VqYk$Qz0_sdpM9;+BjR2KUS!qxpmRo6
z9hRBdnwryTnyfA1^=JBLkWe|l^+j{{#lZAqv30#pKA&>uG(Plh&enr=P0ssk(H`L#
z%6smJG`luQIK{L57f(vxrzVw(iX42!oZ9evEoU2iE%^z(N6b32h>x5>9}qJi)Q*JL
z4ZB<Ji7NK@u+y3H$3M8Irmp^R7}!kv8#yzv+&s%RsF0L*@{pGDQA-nCo?T!9cE^~y
zB7L^fsMuW2*Y<qbb%`zIH4axcsF(XpAyHcRCdx;h-&3E<mt9X1x}q?wwc)xurP{-Y
z;-9ifd1d_2Gy9kin&Xc`b1$&8ag*BE;opD&DcQRo!3*Qb&%9KqAlm5Cbw04Ht{{aA
zHy(7ilJ$GNIymE8b5Qe!YZ`j|dae2bd3K6IdrPE?TSe@|9N^Y5S=)+Jg^U7zvnm5l
z)@PXUu-K2l=i1xP^MLXw>Jz#)Dr|`Yl;ES4aF$#(w<iaMfBMjYYz&vQP;Kce(~ln+
zWi?oDYk?9TplMB5v4$Lfcu`}t`J_YI+909QW`BLgNI~^%qE(b&^u|kCN1K-!_XWB~
zVeiXcjq?1HqFBYn%HyHlA@f{8%W(Wof=U{r0WY^*q{K-3A<r+rHob)~2$zWCMz`(c
zyD=j}_E&yQH;+s$?hS5JJYh0Wyx!$q&C-WJaKvW(MC@yi#2ySjMNfTn`PMCqgswLA
z#cSy|&~NPrt^^T;=zqdEz$2pbj~NG2Fa8N5+FQ8U{ga_UC}H=^OZ|%lhJakc)ki^6
zJ3D(p;f6GgP<sl8x#>e7U~vD(RIXIIDTjD}?SfAd@;4R0XO4S(sxYxrxK%;j@33#l
zXF}Wqv&w{a0^~sam(_%SB?IvPfA)WGZ=>4JIAKXFNX5MW8tRz?jHJ9rK1-c)c=y6X
z37@<N0-$z+P|hdMzSM$P0N94}-E(&FyyuHea~=X&0QoVY_9*)u-t%;X#fp8~g)9PI
zqn_<R)bN(iGe?E4Ea<lX;c##DNHrGB!wzd?+|$Shn^q~Yb)u=D7t6wk4h>Jex5md?
zCc1VQCn|#k_Mxi^pk2?x#G}$0%N2QV5OlIn=n*gVdtY3dP@7wvL_i|+MvhUEki+a#
zRZ<Yt_z`IFAhRxBhM{;4dLuve67oVrdSjjiRI@U_J<8^Zf!4e?kWU@_o@3)aF<vh%
zJ9|(^W32)7hEuYkm|^}fZgh+`#y_GjFJ|`l2lb2g-nuT_iPO!ag|j3-uG80)NacR*
z-sd<GZ!y29N>k>X(`-95@5{Frr>5TfxPAkFv{^=2V4&Ulcc3hf{-H`z))J)~_sQKX
zu5GJL-URyA;ev{f4czXEeCWJNmP02CO}%T-c*Ad?oFyi`JS8Ulc1G|k<Ac22t(-oH
z!PeyWVsR>R1Fo#;59PG6DsXvx_k=~3*ppXHS)!mz56B%}22lmHxudo+!n>Jdbu~C2
z8M!X|()^51o9OlDyxRLQ0OewruS#(~?(r&TZBkCpvdhg!c9}9$Is6;I5y9l3mJ!JO
zOTy)0sUfAtFVwxhu#t02)HiSvU|((Ann3QfevOhif>HOh*WGzosw6&rn+z@LuZx*Y
zNYaC!8s7LM-gIHhOa>>!be7wDIZb4M#6B@ZRGJVp;+pk{1NV97o^VyU{jTC>-!q#L
zo6>XQ=8yToyY?BSI|hAcuRkS%OLc?%kcT=Z4Q$1&Bz^GL|1xS~1fQ@T|8v8Kdj4^V
z^E4FvE?k4C{88{&>^`GN<Qjsv+Ql?`Y{(8Kbg9|*J^NoK$i_*)Nus=@QHY)2>X{5#
zM?xeFk<CkplZxguvzJbX_r^cqz5ff`4iMz+zX~q?V&5|w%WCiPOlXJq)fuuZ?y?nM
YuRpmO^>P4|T)@trI{$0hNh{y~15R=A6aWAK

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/images/intune-add-uwp-apps.png b/windows/keep-secure/images/intune-add-uwp-apps.png
new file mode 100644
index 0000000000000000000000000000000000000000..933cd9addf285b444cdd81517e3318b9f74fd7b5
GIT binary patch
literal 33779
zcmc$`d0dj|_do1Ri|sViROUuaQ&v`H=DslIOtz^_mP_Uqsi`ckxB``>GgE3!sU<2o
zrDiVR1}X}prj(|X8^|q^l9D2#BA_7fqh&td@9+8jp4anwUax2QLws>@-{(Hpd0%I{
zu5<1`&bc~oT&KHEOG|6xsgu8)*V0-+($f0&pEavBBPG(AS<SzdA&xGNT3S_^>z4yp
zX}+(GIO!d&rM0Q`)898+_np438PtjS)hosw85|QA7!{-y5g3YyIgAL3*?H{nk;B$7
zGmNX2R!ZclUmP#Q`w5kBqTP@$I39INNK}p#u=3*+!Mi8gJEk)%TE7!W676zrDO)V!
z+dw*R+OGc$>i+elMauB;?-|=T$G2}je*E~i{jZMO)edZjt^7tu7EpT>I#l2#^uM;U
zwJ_bh+CCu39`0o~OQ?A8xMV)>fsuHk+54h*tcdTl98)tt`r-8h@2n-^3q%2ny|3uu
z`P2I~AAGMCsb~vsJC-l|I&!+S=0J<br{6Re^n2$7lzshSs{9P`;^&)A?~fha!#ePl
zhK=BRSk@P6r}JailD=M2)YG`q=ikSK_};AedP!-`;r~XS`Fa(Am5J1CJlYbRVW;A$
z-(eT57A7}I76<&5Ohc?3uf!Uv88ju$u2SgqFI&ped#l{`vQl@-Gek-%Wi`8)x_E}V
zFsJRX$jekS)pOY8#Z1*Zh<q{2&2Js~U#>HaueLl`ODa^!)M;wib{K6s$bT;0wO!(*
z95Ye2(XrE+>N!pmWZqfz`+w#wt3NKaeH@@itx`H+KZ1nEL*e<CKHV}%Q_8&GZrnvC
zrT;rO#c#V5`Dck6x2~A<EgLMpL@2<F{~GOwS-`t8+`Fcr5S6g|5q0b_=weQpl4<Ox
z>kxg|0!#@k_)Nei`F6;thQCog;BDrft?b_~0(6(HD_V&&qP8%_5r^^|>O4>;;1>7n
zVrAruqu2dGUqga2Pd#6_v;zyOGslcTs0pD#%5!nHm1uI#SLkAGwie8}YJ~MCsGxA-
zRzL9|r<l}JE-wL3v7g&NOx6An3-$nx#6NO42I85Zs~>@#TB^|na&nDnd6shh=viWS
z876;&v2=VAtX>Ql%5)H4t${70J(jc&%r#p>xd}o_bJH!aPgs}smCh!|9c>|PD2*$%
z4vas?NtxNN{n*Ljm(11Kh|Af@(Mg>x7OCa#8#(0C=(Qwxy3*;v{hf^!6ay|5==!?A
zZ1UGJP)1u|PPZ`!OE2O22JEkzEK4We)}1D%cWs-NJxmeqqOF3U@;!+h4+%K;uJ$`h
zvzv_L=l5lm^-o@iC)qs?NMho*mH@+2J%ExNp0oOIj+^lv?GGxW9N&xJCzLe7-@Vig
z?8z6&UU)Js(PdS3)vTw$^U$mQo5BmM^um1=n+J<YYqL`C*3VoevIkjJ=@*5M(hB#l
zb)PdLRQ+X&Pyn6@m%XhH0*}3D+hA$XMDh_5Gk{Vty6Cp*-I78iKnU9fMiuPX9KUFH
z@s;%EkYdu1vzF(l<(Rl;YeB^qRFdN=F5%o`fru>!5aOqy0VfUZcqx(UBl;^~RQ&7{
zpVjwANpKhY<sJ^#E8YHm=Akmlp47)jf9cN%k?Y)90?uvkxOSkv{r&cwb}4e52jw42
z<72l>4|PP3`OvF582|0v^9xpC^kzMVP(JR(%s|4DuRJ=<tjG}Gec`*l?oV_>=rWWm
z$J9bSL4Uh<bxe_jvHVJ_4i+N{7A{I*H~CVsWM_4rvaL@uADd-=Rwht$t6AUcmB744
zw*5kCRR!eL$OSl&wfdpZ3ASU?3Gn$lv*wouh{vS=G^Huw;m3#<*gETr3d2C7b&_y#
z>aLRVx#(CiiMN%!F_!YSe{k08%I`a*MwPZKx1c<p*I-Y=^ZC4XNjQ81;RY#_Y(Mf&
z@a%a*Agq2Qo;E>x%oMWqk}_|<@P&RN#}@k`$))#Y$<Ou3UrdzCZGPz|O+OB~(!I7c
z(7VwEo<G+JtiWv8SNGORG7B-$=~o<+zHLs%?iO4GlaRWE(fPpHvTj_QVaK=A!#sTg
zN?j;CS0}ddXmf~#UzBfQ8l={Y&Sj?ck~)=xgZOp7#;rXoH1{Gb<h|Kg*e01`wzxn|
z{m9ou#n{akyhk#e9a2*gEbD-a%H)0p;j<A<-CEF~!907H<gmHX23agwn|{eFJZub?
za}FB#qr<h3iz}b9ofdp$o`YTi`%_-$UH?s5W8smKU<Ou|31Y>Fb-&fT2rn!B<H=<`
z0<P8jc~yWP5UeAgKac}rxBwHZ$h)$jrd(dZ9B4CQDye)l(HCzVi^E9GY0Y!kkDJ4-
z3hHE6twl4?cMJ+pW&BBH?aS9OT>eYh+|6Zy_7(5`d9?cJJKa?3Ib~b8{k?v}zmXJL
z6+0wgKRwu$n6H=xznBi!JBe`U04{8>_O^2Au*rvP_(iy+F_cM8oV~|{Vw<(*`k8Z8
z6rXM+a(Q^+q9Imj@7;szL-@2&EkqA?@G3rw#C2H@VA~WHQ-_*4mL$phSof?^xTo)8
z!yJwdPlqhW-FO!Nq{99eZZOupj`7cVQk^KkXZ39&O}VO&+8J$UaiR)>=F;2x<6rGS
zME5;<*u@hZWz9sxqzU=AbV+290|P0V(6WJ*O{zz3!V|jd6h871kIyQ&?+YBM>y%#S
z>nx1Q)~AsZ9vN;VB_-TL0Q*+_BHSgnP~cuP+!&vz(v^m|5}P^JAHj>z>$zKW5k7VI
zeiLvDQ-of`{e%{_yoMoolM9UG1^D=fBu~$HhyhAyQ@DC_skGoApTk02;yAQEs%4&D
z!hF{M^U$pYPc>`76}`olj8LS*p9fk!uAB?-0Y%m6uD6cF?AX~MwT{EO$Kte()zL0_
zl~zFFM!d`g2!)<{aPYCa8^p{oe%^G)`jf)t<wqI;_}+vo7dx14EBfIC0WJ*LLi+xD
zKo?A*3<%j}s|LL4qCI`EGfh?N1gWYHT3zgC@%Iy3YuFk+rd-&O8ZLNKs#87%dNBG;
z1NI1<X^?ad4lZ``3A(-(5KhE`WTEF+w;x}@JfFLFG#a~Qz%HJ#<{-RXIZpRq?@>5b
zU#xuIt!JMhw90}P^DZd%9wcGipM<Y)Mh|x`)miYQOUqKLFy_1boABq;!^4PWD7dR?
zjmG#ScjhMLzohoFGkIRNNOx!)xiKgyOLp~nmCVnUw3P6?8>sWK4yhCOR{DS;pF@g^
zgxTfVL?U|OwSUrbiOK{k_uvj<dibg(I(~ToD_ty7kN-;I_)@Ec#;K{7B%mT;Tf*Gz
zr3=Z|-NI+DHz&PM-^!krpIf^*6c^-EBegsqz2eNJI_1U{J~Y2WKe<-m2WP*bLEPNo
zZ`Q6hT?{fmx-E!%+)6LCVD3n4PJkZUrOnknOO?I~IF}-HX4jX#fYz0%l$#aj%O=C4
zKEWRsj*QQf$Py2|9Gn>Mn%BL&e)le~&*6)UXME}<d)A0Wf2#bWiJC{(#47;So>e(W
zZA8|Iv|<v?B^4!&^nq1?+>-s-+J=?4n)Oe$NI}atAQ6H9g$Y)yRxD;Jt038MnYQ{p
zco^-IL`K2}toxnTpl=G>%IA=h&oNp5h1(&|2U3K1xw~Si!=iR~|A;ya^L=s}zPG^L
z;1FvQW)q~`T@l<Q@0<F&M*?1R3vbNj`~UbkKs0#KYW809Shd8MmRN$NOFbPVf=u-S
zRuy8X9)&EY;b?^hg;EUDX=!htB?&}G_W2wv#>&<)ek;@VDMGwh@M%ojEL{ntxldvr
zo_+q=I5+y-4%z=-G2l@4e?qPQS3=DHvj{e872t-I_k9+y=A+;H;x<_LYtK@reiLP{
ziBOXn1gvfGs5pP~kd_wF<YvXCqLn_HG5?i5b*I;Aa)p1WYe->P-^0Gqx{m%1HgI4M
z>su`?#gD8P7f%y4*@E;};>EIu0qeE2rtbuldF*f5rlrN&{{I_6YmK(F8{^A+uygL<
zAv;OGyLa<!X=ft+#an#Hh`WFBww%wrcD=hP)I@k6CW;8l(!DGPW#^r4<ASBPh#@2F
z+!FjAI#~Srs`7}a!GBr85j@QaNP7E41lE^`8zog>wKO=*O}$8eutcLKG_I*L`t7FB
z@yus|jQ`#u<>7LuwaOjy#(s%aOJ0_cWHZGA1@AUkc5w}@4Zn{zJDg-8N}Sn^i?i=L
z)OGV?zXgCs@XZy6FyA&Svb~7**S?5e-;_0IoZ7b#Yk2eyGUmZQJDBN(<|~I2fV;^~
zd8ytl(kEZws7@prC^{@wzTNvQ_4?2%4wW5nX?=UQzz4Qvsv!<y=H*7Thpi>iqm?6M
z*vR~dU}me9)-a?@8?d;wiRRdSQ+V>9ybUBX^4dZYHb1$~m}OYovxk*>Zn57TIh0(S
zgto&EHSJMoo57o9@~52nrB91wh9XH3l8&<uI(<0ILa8fZw)Vr7x-evwi&{KBM(a8F
ziOP>G%*0bb5U96~JKsMce@f3F!HL~cV1X|k_0S0HJ=OM)0KFG$$v~Rax2Ujs$%E{_
z4clmE2;(FBQitk$l9HiG&ur2H6z>EwiyKFl(Nl*+!U@AOdsv8e2TrO6&VSIFSlq+D
z{L@7v9LqZRtAn&!&Z?0aT)$U>j&MboqGkfotd|mHuZc<OL{P$pvAO`De2e1zklQs&
zU%!K^wXQ$-w4$f_Q-mQ7iOm~hlr$gP9h)9(9zx`-Znt<cA#QwcwF8mXVnNDJeM4CZ
zL?vvPsLE%{+Yf7Ly?^#eLu@1gKB<(WA6LVP2CB58c{p(0W>I#9a>UwDNAa_M*@nRu
zVG0~TG;m|`-%j|dc3;%!+qO@NQeprLA4M*1oO+LAxH@3#eZygxhbCammf^-&;vtMh
zzQ<*wnecqI?lBE!1sWwQb>Bo1T2{5aXI}VTCvyiZg{_*|2IH?9#OSZQtfl3O`+5x&
z(tb#7z^n?uA^kzbI=lrx4A8h2>VRDL=JYk9!6c&|s03+g(TzUM{c4JEqk1M>_a~lZ
zF8bOuUjmR@h!!Rs#B;-aWurE0Us3SiWv&JeFK#Qesoer3i<0_?hc(6^LjK8A<cARt
z(S!$!9IGFXRO+?C%I#Kk1T4Pu{b!@OL0HP%&pTRU+4PCnUc|KLh1I~5jbw@Hneg`a
zVc%$3#eOn6uI8+f6FYVal6h;jw9@weUz-=%u1|)j#PR=W^AjWqP*jE#ur;=WRFL2n
zo8W<$pQOyVGhhzhKA4w@GaLqNL^ACBqN~6AKgx%mi^HJB3vZt2wtk4FEeZyL(kk6l
zV`5whSD769xDoxYB{e%k<RHI%$-7M42ywxTZs)mW;MvMy%Uf(Klhtpw7bGzdesb{#
zo#QyXbsF9(4Sxiwo*6`9r20}E*>lE7WoJ`M#*r(wJD6`6qTnwe%V44g;atB|a__4J
z`YA;?!zII2`D~20?q1wIT_)hM#o^9Q-EXheG%4bu#rO09_=*_>=UJ~Zi_0qRI*#wd
zaxD&0gjB;zU%9(VbV>1-+iZLg*tp^MNY2q)9Y`2Yu=&rvow>qj8TfgaaiygpjI4BH
zBMuDtv-xa6+NG~PL`Xs@t{sPSb7JgUP_!>XiXyd0i}62l_pplLFPAK}f#l};gVb#>
z!GC19v5>elgxtQbZ>JBn^7czrNE_OU8cs~_qu_VZY<*2u&Z010mZCGXgZ*AwmCcyv
z|GD!bsOJ9@pOyHkMJk`FPT<)`Mh<m<qotL-S>q5T_fmvU1!WWIaghlFpGRNagzH*7
zwDGXtkZG|Uka;a;TWloF0YF!o0MQ(Kn_6^3F*X19B-a{Cxop^Xo`M|4*Ru)+`l1r%
zUQWo1UF{n&_h{Q5nOnqt*CAd>xD6eWDZ)#3FpVrcwXH*&XLrQ?t}5Y05lt`cOU};k
zZ01YZNmDmWG9PSqplnh)culdGy(~reRP(lMgZYu1j22x{1(D&toM%mn;C@t*wnS_I
z9cDQs_B$-1K;c!v*x9YXZJWjPnF2eaNLDys3ohQYZDi9}f!(7XG(N9Y5eh=Dah%lw
z!N%K?<9#u!J1`q^#_24(x2^|4^jZ<4Pl=g13n*8-s+=(F^j-zD)FqJ_nNDdq+;F|R
zGwA{`Kby)d9*IkHkd^4eO0qeYqh>^fF)PYW!^eqk7r`Ih?Y}B^9u=h&N3GzJqCbMV
z>%dylps5pa;Yn*&r~SmL445&GT*vG&lt<hR@KH=ZPOLY{F$a)@3M&H4#O_0oFfDRO
z9K!K~#O>WcjYRa!HSMhJXp`k{tn_V>J}gf-R3xe^m2nCgXq(mHcb!>$R+ZZ!3i3(;
zN3|7ZU68f|2Ixh`6K*G6SbXwWq7~KFc1>}kuA)-NcB#t8W1WVRUx`Seihk}7a%!r4
zJ$BS&gW-=I;0Q6iPw({we<z3uxoZr?1GmBzlvuJb$FgR@sfl!O=IJzmP`!#Tf$jj#
zlF!Kc?z%<U)%E3(a%Q5#@;Xs{&^5w#@gwd(57Pcw*hQs~4wK;>(y(uKc_bzmy(Nq$
zwl}Qn<Cs6F^!L*qZw!JsDdu$gBv58J6inZ%W6NBc8zkKDh)g#UOwb2JX0}YuVu*OJ
zG!7>y9P&5wYl{s>zhVj%dJlOEsg_N<5;%Uw;|gQFwhy`o6^{=an+vw#4;6}__^i61
zIr+X4J&xod;yboZDAhY#YM%tYdpFkR@B?UV1ql7oNvWuD*Gsw48M#s@>77ANvDbF7
z(Ldoq`E$zcOw7?ra)WD^5G6LIZ`nZL%rUZe`e2#CBeH3`6P!nWKLP%b)8sBijszW%
z-VPsQjWnr8BS#{XTj5esN;1aAV)XLMr2*45jgcoI(F#FPmf!BWpgQz3an0Q6Td`x2
zA4DAKqt?HxWS&cYXX@Z^27DOH^f(rN`Oip~%v}a4rE{!q5Ht@4?uoXWA)>iyRnfx+
z?$zaN(b%QC3I@r*dOLrgzMIUGI390!g@}$pbB2HF1r^LXTByEZpMm_)rCmS!&7%=m
zTVqxCk$g;js?r=62ac&Ko&9Dz+XcB!=<-BW*zDV=d{P0q{;=2Kti&9AN1D=PH|Rk*
zXkS^&bxd@B6nmEAVmEWB+><MbXr7P1LTg=sBesR&OFBwn<b;ot(gs^vdyIv{WOprP
z)0kBV&;9c5Q1$8Y>bG=K_t@ni9`o=Wq4wnBs&PrKA4tgJEAOBQ>F5!U@ynhQnFdIk
ziE&ivX#5~^Jwlfo1C$B^DNm=H%{Xae`nSe8jlxB#Al2cPq%-<qx_ci6<JuwL(Lq$H
zdI+3-Z`Q+0vixKzq`#ou9RbG89)G{3m8ur_dkwgARj%})u)D3*MD#~@NM#{sE_}~{
zOykphW@UaoJ_a8*ggr;Hl-X>AvSFT=9~6oP`p%UzrI90wBMZj%+v`k${XK38XD91C
zNCTOH0GShc%Yq`A5JDgsY{_<@hoDq774i4fH-?ej=s&IzNB|=Z%sCP|^MFPleF1tz
zQ)M;pZm$q0*lUP1&6u>VaLLJ48bS4>TL3+Q*rm8*XTEDD1rqYQVY<WCex_bs6|GPH
z<4z~^<i>2y6(D*`M%fp8V#=CvRygX65TKU#7bd=Q*xc3_+OBt2=v3b1_zc`3)DBeK
zNbE}s@G6*zM)>#Xol0zbHEt<=Vpk9YnXIn%FJuQP>x+e(eu8ekCGB-6rkjnZ{c2QC
zO!{~iNVrP94kGGlXNQHplO3Ub?parHN9_;thlbA2NtxpfrxBeg8UzJT@II4|j{OxI
z2IXeDC@<&m|1Pan<}c`w!k}K^&}p5&V(A?+3#L;IzMT8oirddDW{(Hr>jdOs|HS-f
zed$-R<EYVCImWGs8Trt+?e<jlRc=bOk2S$kV&qG*&HkgxP%o!N=hsu%l9BMziTVTd
zzj{o7(~NLb2C_;`v@>ATHpftE!Q)FJW(5tb{g<llFG1sdnh6daCrtfQsjF9$e+4pb
zT15XXqYVLZ(OX)czSPvNN|~1nxL_r#Xlr&mwFnJ5uI`fbiL2cwov)eslJ)Oc**9i#
z>OTlK-IC;*vJJUXB+T}%@38YDS4Jqj@tBU{gHA|hmq)?~FL6@mA@6<xjd)OMdU(CK
zvXT(ToE`sF|LI)xWy5ebqV%$bPD$sIgJ)oJBkkrP`fk?Y2biCk4#ctQs<f7tv`a?$
zc+!@3(5R}zrXQA*{BtV27o=!FyO6uGK*thjDWAY91*!He>`pcu?0^GaC|F^0ZRX_M
zT^X&9^MQxxrMjfM4<Q;67{5mCW{%TwBed_xo4<nGp_g*8m5mO<VzJl?)x1gGkd<+2
zw|B`Po^6gR5I811?S-;B<%5RqcB$pvY_H5bbuYX!t(Y@y^;cx2bXP+D8bx`2UlevS
z_Agh<zocElR>4%mh_0=tyCA2l*R->z?RT8~!C}Cl>!nv_dRM^R@2fy{Jc6z@c2aWQ
z&vr855MwS+X$gHi9c{VIXPnv_>Bd~&8Jj}nHsG6q9qoMQc`9sBm{X)Ut+;S;x@4N)
zKR0tXFXuf;0qPVGAdqpL4R!o*+sfVizzap-(fBUG9)mkpXt4tuQ^J4#!%dEaByzDW
zGyzm;D4x|V-s%5<!_PQlTcE7Jo9<|BIJtC&fP3rbWwLrGm{V4Z=ke?925ULz8(>FV
zw=kz0)-o@CHkB)ZrPbh{eJ0Z`EZx|ONSxFTlRFx+!yI<vKvk-?qi;aqrb%jR3~I}o
zMq#JwS*Ng9r7?_@gzd_%jgXJwinE!!ZHr-mGk`m(a=V%G4tIHOluPoYy-p{6w-tU{
z0)-%LO3)Oc*UQNDf+F7c?6q{<$OW9Tqw0YCNZmo9e<{ap#FfIBzkHh+**u!CL2;4+
z)!~vJ|Bd(QW*G^Jm0k4bTj{|Imn{{q=m%8Egol1*OXl~$?q-MGq4`bJ&}6<Z$Pwdm
zm3K^sj^e=V8lgRzWkRQG)x-W?NG2Jvp^pc)H5!dY`R+}nKg>)hy*wyw7CBq2-aRJy
z?Li&hfVb#X!aHhyBG7vXl~~#4^^9;PW!zV<s(YTjmcU~b_oa8L&Ww8%Gp{rdV!Sb~
zipcfCBJ}fo#fd)hXq{eKC7N@{WYC5Fd|Lf;6+Gc=s5+PQr^7A9sYTl*YU5|Mb0rKM
z$;Wf0{AQ&k#^)4nG`?C&?&>AQ9Z<fa{|M<=xTFg>Kk_$pj^+9U=Ji!=6coc#BhP+9
z_Cf|a(f5r(PIdZQLY3*Oj;E|(Cd#a5NqjoqfV{DzCz1l^@)zPy7lMYW5wt43l<|;*
z`kr601wtYHicZLfR_!RX_dO(ztJAqO=~B3?m01lM|8CNu4f~A^ZFEo9U({^66*Y7I
zMsXGbta8$uj69p}Nx_r4Im=brnPVrue<mzaoC06(c!`Uv5u)<Or0%?jh%GOgz6s`?
zpG2CO82UHZ`I52>e0piQ)&6iuXY^J-nL+@F_~T4ROInovl7v$6j9XVFq6aTu&VgqX
z(25~K8zFYI33ZlJ{kMO2HDZLdWWtHD-ynayK+q>wgO(Z-fFX>rAWi1Fr0VP-T1jj1
zqY_q9Q|Rs?i+vFA@pfry*8%3~cYb^I`(DmhE6cgNq4^nIA9S{&H!4m8APtK?HMS+b
zMV$3~qFqVkaPQ>vVXTXd;b@}^a7J-|hCB_WaUbKGeJB>WvBeM{O|~SeV5z6-E%-Ia
z5`EfRgiY|csi*@nhBj|dS1enl@qcRS$)s@IhJ$PUea0J3Zj<~Od96sn&Tu-qZM^OR
zhyL=>!%i72+U~XBOC&QcqQLhESJiX`g-^-xW`>i?J0Uco4qwzFx8Bq%wu=Rw0)AI8
zI-cs>iQbk`qM%@i8;!_zql&-$elMKA6MVLQbEl<+Vkc|HZ7~4X=s10`-t^F-R^C*&
zYE(tk*uZ+n9%bG^WaXLRU>g1H@I%qN?)c8%xICk=M|kZ~b^)9DPF_7Lj;&gOq2k$m
z?FdM_9YslrB62WKNb1LnZ7W|#K-rv}Tx{5}5Xeno;Tn=6`c2wM5h&gry%m;}l<;$&
z(%SNH-h)NZ3b#YQtRu-TM=K3gX1kj32web*wy03<h=0Y1YuRR%`Y42qWo{&mt}so0
zGP2<2DmsuHP|}@E5Ud28zWcnzXstPdR{tuSm(9(^u4yXFEJWR?RScb7(;hkGwXf$U
zjO;7>dktYyaK&5Zb`O~1m!QRNKk>iZyVkp0LGdGYx4{he;_x`QV%v&vskr9wwVBqd
zVw;Vn&6_pBol6kJAGZTmb41?{g+4rCmic)<@XVVUfF@W4%=77!0=oqgic9r4KF)G`
ztU$t?yj-xUb|$Qj>-iUJM5N~G%(GiQ^ZG{uN)cBP0IY8F^_o7gx?QOaRCh16pbj*3
zycd+b60iBZeR}KQpwicfHMjz*hjQ8sUjYT%;h3gxEFku-R5aYLWLI6zYG7wm#y3{^
zJ+hoz!%_a`Sx;Q@1G-FaV?kU<j7{DGc;8HTxf2c~%q!wqS@@n7`NzffVY{V0Lbu@u
z{M;#@%^8qkT*+XAXj}eMvx`{N2S?jkzRMf1_ofENT>IY1U&kU3+m9Tpx$CkW5j`FL
zneqGpTj>q`iL|s_X<K+wAzZOt{wV(?VwRVFsGs$#yWhF)*OTn95?;6IwDHVtwS}dx
z$p!J-fy<g49G@3(COI?OVJsvdVWgKaM_C1^z`-X#O8H6pvHZiglYriH(UmQv21B>y
zU4mVa4n5~&8<I>^yIQ_;K;{Mk%7=nm!d9zne3tflQnvz@#2scT;LKoCU#m1(ycLMU
zjlC&!L2W<Z{qlV@d!>(IVuZD`%c}<65mxW)ZcT(|Q#=_nxl0=;4bsO4Bw^SLfiPOy
zDw{lIrJ43Mn)f#K-dx7$k&LXRIbJlf1-1R!DnPd-`{EiBd5b0_OscI|PO(ki49cl<
z+||Qfb!)cZ)PxLNEs<!v+Eo=REsE;LrAhZzRb25NLL^5RhL^0h22f+wpVA-~++@?T
zPMch))~lRddN<MpJ*m3`cSXf&OYWl!`L1?Gk%|R<37mw^6!$U87MhCikwN#?2s@bL
zR>x}YL?`xnWkVrRkG2LTvr(OTF>HQvd0KDe>C7^bJ0)}8OU#hpkG^OvD_U0mRlp~8
zTQe`fDJ>R{G1E6ESdEe~$q&yyErNBtgvfU?W7~;$vZTrc{9gDo=9vZ&dnvrXvJElZ
zOOi8p^CQZdPLwgUvXr-_C0sDtpB+g%DJS}7SK7|O-WfU%9|kiuRtUq9C{NPOno+$=
z$~h*XZb3f_dd|?9jd)%wdVD3BmpGT`0)*y_qwk=5=uaUt6S;uY46#KHW}j8~8Ojht
znj>Tmu4B(h#zl$Ex<*0m^6;x3@1q$|{!!b(E6QrOxmdV<M@9(jAfS>7N<>AtTc)70
z66U!hn1VF)VMh36hyeORPjshTxbTRcdB{F(NfPzWZu>KU#CM?f&|@OXUst~qTs`{{
z8cl6;n1^QYd|Y#sr|77-iWuGxmTLiqJ-LQGBuNT~HNN%RKFJSGJZr{9YHyQrl$zw;
zuthq<#+_CaT!Y+GfXaynlV2SJFH-a-r8f$_Y08}(^qM^){K5&nTiAIoADX;Smwifp
zj~W8tF4GQj+!`3As9aFjbn}Sxkox_Mob6JAc7c2l&@YV~OSOFd+(0~<mcR~fx?wKZ
ztE7(17{fdY$WfPjsU?~~JB=d;ph)%(gRaN?+8^z~LoU(A!sv#BTL<sJKcM%^>n<9G
z+iZHue-Slf6vXS71~O%p6~(20a~76wV}haYeBFwu3?XK$DvKFBOlQUHuLVRjxGjf)
zsEODxRM!_iQu4Z*NLy&mkwT}Ih4OliXJ5(HWHB7+kQVvdN1sOD7niq5O(m+6+{`*z
z01a-6+R|&$MNJC|<c?F1)7oqT@so91I(~Ws*7uBa$r6-^`=TFaINJ0CdMlT+{tS9u
z*Jr5NaubGIY;%lK0XaNb>du9_X@5Y5vay%eR#Zin`hp`59_1vQ$;qOB&ptqy+*!^<
znL=cf)HndutI9}sqG96H1v*{x%`sWi;peZJSraC`%<2C6ZkNf^;+aNWJ>2=A@?POQ
z?{!hvydcPU2#cuz(LWx>TS8kc=906RUMys?x2vcpvR4#5Toak0bd}q+m7`iQJaY#N
z-)n?BRIm&18q-^)ho%{LSq;vJLRb6D7_~@IV=j9=mS;~w&L!;zU*~9RiqjJ3QV7dG
zgTT~4RezfM5V`n-!^d7#v862FMSc`Vs-wXDLZn3QvHW8n2dVS|q@7CUCfnw~Un28*
zrxf4&Wy*|B0_7YXo}k6*?(p^Ej;J2%ic^YrhMw57q4+N7ncEh<94Xz*4nJNcRXnot
z%!-CwK!BOFZu0?x53L||to~N?7F9>p8v0h*;|!h#Qd<+BKu+*5is>ixiY`Qks_B*V
zcVf#ZgN{hb0nKT#r_`j@K<bMLzMBqjfHCpc-V!wFG+pN*kj=~8PbY<!Oeg)oK<}U4
z9UkHnh<D-sg?jqd^^yO~ZhPnP$Y)*iV#}tHxV@G6QNz8^%0qg!eTNA7%y;1pz04Sz
zJMa7q4P{75hv$ro(pkZm;0k4(?I8X{Z*YRDFZ!5%+FR8u+QvM4&Z>-Vu}kP|R~dhH
zyy0M`kuaKuK*Lu5Id>T7QkdIiPD=9pOsY6e=#hSxOdolHpd^i756Q+1jkiljHY>>X
zBtRxeMYYDaQ!`w)7gyeyx4YdaG;aU}(m4Jt*}U&y$ik)fA0hgEpphf?%kOnC*DU@5
zJu&T0^H}`(fJ1*VA}<Bh_)EfrlM0`aregMfCOoqW{2(9>`dmK*o;MFQAXyd<GFmpG
zp1>gm^lC^bZq%!f)JxLl9f?|ztJ`&LDsNK^Gr&8PHWs7Ig-I->9$34!Ig`vfF8yUg
zZe)6z!!)~lP=l2DWlLJY0TTR{?6_41(bv`$NK1dliP5JQpBb;)J_yf1c6j|#XfmmY
znNHNV#|HY>@ep$2#+BWSyb`*}I>lj#Sue9RYN!(O?uow=(<M9E0JpAeCZ*ROgloV$
zCN0q6I+y6t=ItyL8^p%^=XM#I#6i`;aHMeMb?zBHiErwHCIuISO&NY&S=3@hdaiOS
z@4TMuM(3QXZ`^Mmku3j@;wO+(xbY=7h54|X)!-=0Ej{Q5cGw8ga)C0C5t@XSY*m=E
z{3Goq9m3FO=)q5PMAgkv$-Sh$@MleaY!pbA;NGX7WQhuGN8fhXqyfvyK09KW$uzxA
z5~LCx1eaWgS*|(+D-yKtcB$ZsR3ZGQbukXR$|u8_*nIm#%I-B_!?_f)@?1A^^JtA}
z@<}Q9$dcRrK2U)wr2cgpj7*#0LR}o*J40r160zPJmRn1!pkCdQ_Wl>!Hqe{p6Itm_
zrhbl%Ty|9|Gw{tkl?2f{ywQP0KCbRf2+V&=CUO_z$GXexkdt#k^h<YNv#h42RlYQD
z2a9ZA3CcfK>uXQ*nOyvJRHqltqlO7iEIIT>Kf*Jf*bT;jpYjh_<DtFUzc1Upp%u59
zc8Kj!_8aSjqRIy|`bG5nhMzRgzJL|1sOI=vq;eFc5B;<qubCk{KN->@<u#I9$8Lj~
zfEnvIvd6{>gTZb>bCZ9!wNQS~RePK?R3F^SJDg#xr$&Jb)0b_+$!i6-(8cIAg7&4V
z^cXCZdC3c6?>uA;_VHLSXU>>~mrzihk?RRO>wP)xXpIL)A=e-pv->pQ8tCOr4FAM4
z%q~I?og)2_3w<peQoXc%V?rk<<V!3e)MYPmm4RLw20ZC@KOEWsCs={!^pDZ;1)0Ct
zU~B`y9C@g%qg9W5Zb4~afIDwG5|lKFs;jyKJrbX}SC~yV9CVRI<}h%%L`;IqZ8Tk#
zrtD}RUqHYPX!d9X#LVSOdHfF4Ut)V3-}=eMS0l~<s<X;EHR3LZYgA1v?63M0*A9Ai
zZWMoF0{m8(=IKrW<w;j>=8GII=Yrm1Fsd8JE<=(RrQ!#m^5f#b9GE|Ce;q*#5~Gy$
zv?^5VoQM?ufxi8Kf_PY-I}<nUr48>{4#<1~H9tDy$j*$xkh)QjLJo^QY6aV>_&v?c
zB3lD*vtw4P1tpNZmN$R^lhV;|dLn;qRAZ+5<~{;vfm5<~GZbV<oWlV=^<l;tm75gV
zSlk<=bm$<I6wW_t^}1{D31JAnU1d~ByO6M9GI5+r@9}RS1pgN4Fot1wcW{xR*iHuJ
zf)`<0@SfczACMI#gL8mXp1z*A8XIc6q(FSIIW@>&_)}D@B+GE9PZf5&?kLJ72x{07
ztBCus`A(#O@JG~et6)L@CGYj18~apdksX1@i~>Zpgh>p&W6v5o{&1NgGBW>!1VtwR
z(_RmjmMj4AgS@9~tA~o;>7S-bXDvVk&L*_OiKF_rhBP}unuRi{fH+t@?&Kf0S-oVQ
zm+89*a&5<eMxJV`ns%&%ZzAA|!M=(}yROM<$YkI{`n!TVoft%vyX`56bIE#l=C4Nt
zN>qTxuyTzoOjJFh{jm?fhj|w_?=PP#e2q4bblD186Crh-%{5%P)uV6aqx%u=tADfF
z^QHPD`#ac>WlOfAVwp7FfBacMlFdq=o{NhxfodITD*nr<+yA}#51=hqZlb$dCZsu7
ztJKCbc6XKPAM&Dd;I17`a>54Ds8@-~_*vwTwJPT{PfhDwRwKuSMWUqzw5h}};gx#T
z$dSXNkC9V`k-DweQafr~@1!^~NAb>jr0xBMFXbs9L2&@(WjdU&`I76BV*mv7RyM6}
zz8{ceY`F^9ysk}gG_`HQUiao1kMK;{tZqh&nSLAf_=FRPWT{$_QIjajM?I1ZZ7MMu
z7HM`QD{TDMlG66D3O0ctTW<<0&fd<_xu)GB{Xk9E^J_DGyH1k>yA$oZ!=ZNr)(>ZV
zE_{)qT31|(&$Jk@e|Ss#;lek2(N99beus1Qf`==cBT1I;W*cd{Wa9ZHU)$H86N#b5
zI_>8XHC*@>@RQs$g%x($agRex5&W6ua*Td2{&1>9vyU2+01L#mq;P+kU8A5hH4VeL
zwK#*WZp8uSp-j_qPlxLzbg(=(UtLKUw~$nYDjpg-*&w_r(O}dao*Vt>f-T1rgZ{uX
zi#2#g$5&d$qHjS@$?^@|Foq|jfUov;Zy*%^Kp33a@~gPu6d6vp(*)dCr<!vz$7`)z
zoj8(neqfFu8IQ)}WN)P6t7I5}YMjXn-$@zlt;+kp!`eFIElU6C0$P8fgz0$MNR#}*
zd!d~jaSQei4-GwGPn$>P=g#=2q3Q6>==;+B3--R2Qs@Hu+=4BdK%N&II%oofkzX?f
znOF??jBttVLH0}7_zb?lKR9htnd6GwO4lW=<^O0uF(-4R&=%0TYy*laToJ|yg_y)N
z*mYQ0P})K>3b}h1>ZH_H<j1<W1)Z^m@E~Ev-EW4SM{`AA7j2K{NFISuiLxAB2rO?d
zB@qBUjg>|qT2JYXp4frBHyM*uGffg8CL({kW>)Sg4S6zjIAPy4_O#5j4h@Jf_)r?s
zCbizhn!}wYgLZT;egK^;<Sg9SIbf%M6%EhaL*nX(lbe#CH?j*#c7nO1rmF*idRNWX
zczAroj_EjKPH-}eEkr3#_qZe&j>X3MOwQe&q>2*oHPNQ^CpvCJy9fem_d<PFbRFPd
zMR<E+*rBi7vo;@=V;B;eyn*zW64V19436^kkpESekYeSU&<>qsocYLLS+9k^L=RRH
ze6fFOVrZl+%kK`QEq~8YvEBm~Dp8q+?m+b|O~&kp_0jx|<U6D|{iGLmCX*^u*PnB*
zJCe&pN$fPDH>RQlaA^i18a;C14|w~5b=6g`<q%qCQE_Iw)iZvzDB4C9Xv2wX1{Y>_
zW9~$6WpgUrUlIB$#_VoG?{u{_qHO^!jsesG8-Ldki@6iYsT|;Drt-l4Zkj_7yDa`<
zC0-bj(He4Iv-fzBZrmc>maFF>4`820HaW_FcGsl#IKQ{tdjJj!VEhAr8^RpBM!7Iu
zmXKcoX}a(1t~?Ar-^)7$He^o{@yT!ge(Rz5`N&Al6MsUD?e@?*#Wir)pJ_!Em~x-G
zxigw1GJAxGpS0jX-4Qu=U(a|=L67a3HZe%46@@}hFn&!){~_1(G#el7o5O#hpYqnV
zx32JSw@Jy?heC!y3Tx)#J3ls|wzYWFsxP*SI{XZk9@H3(CwXTixclmjtHjVZgsS;P
zMPwHfXAA?g*Q4tjsUyD5Iop*DQ-m6fGOF<yn}LAMzwj>$#6@w~=6|7fO_PU<h0YER
z<JM;xE&Yo3#o<N6sQ8Lom=AOyb70vayEAB#G`X}M#s5)o=BPo2r63x~WL`ZR)+y#L
z7+D*+#43L0o7$5dhfW9=6;Qp5aAR=aPJ_%Cn^*L`z8-hoqBrp9Alb!wDdnpLi+eZn
zsx`@c_)TlNRr4P`=-IV$z4_T<-7KMV3hB)FiuU)rt|sE4%1xFFRcXJ=Q+|$mY7&dq
zwe5J0{r%%Zy2m?xCo4Bj<N}oQBHcd`HlA`e+$#8sP(Ae?pz`B=IX~6rOCk2uc`s*1
zd%u-Mmz?^hxw0!d3$gvS>K3WbVde+)0kRuF>(+V63&m0&8;WQ1PK?KT+h*^t3qRN=
z+3y<?hKo`!nNHAuGsHp=Ji6_k1&v5kV9^!+<C=ZiyTW48?U+yE9J6`U3-<B#^7BKc
z2%tt_{Cx5=en3R!Uk==uiif}^M$()gXG&qGS+h~zjqpU(P0Zy!>Q8;6@ih*z<CH*1
zAl98<YzJzK)L93&5RK1Rby|ecxnLmTvd_|^)syjOGhG_X2Qd`akJ0Sa!y%)IB2^_A
z#+AHr*VO6B?oU<wqNjG_N;FkL=poUvd}6YsU?}<M*)+*mjJJE&w!u%OgWY{147G9k
zHh-jsBXWnQ8@4U4Q?Q+F!yg9N`qz688s6>Hi+lt|z8J5LFguH^uS&PdKMW{grAdqF
zluhtKsqK;YBQRuTB-R~plTZ?#@5`{XPu27&G-B)jfGES-(|YO=F6zzS)oBj>1lXuN
z{ph2sLm?^bxisa=*wy?n5aibx@_GV*N%!@19P&GGP@u@c1M^;Og2ki0gLfSzyO3q|
znBKWZjSj6biIq@VtHsb#=ir$i6y2F-+!+h#J(5pGxR)izSv69Y*`i+;Ue5I2GURnk
z@kU`t5JnxGhfV|QtAl)T!mi}zp+<`_6%cNO1*K}tOq*%DvZSvFCx7f~#<6;sD}L-p
z2T)gV6w`2a4<jfM(K`1`A*4LSw=L*D?CKRfweu{B0_I~kckHDdzM|&KsxBNpBfBq!
za5ZO&vV7TYd+fO6UVhG>)63c%^Lstv3<b)6H}4|pH(M3a_3|G3iMKNjm_LV++x^IN
zeffQ9nJ9$ff*Ous+>%Ag;>H6g8*y$lg+2O+L0Ll!YH(S}^dcT|x)!f&Et!v9ebG?x
zp$hN0mPCHbiGXH-v?DQVevb5x7Q2v2?dumT$<km?A4_Bj_T2A^L&&k;#IxC&BaF7i
z6?7NnNFAkO-f^#?tBtRrPok3vxHGI()vG*qqQ^P@(MdiXT}1yOctENreIPw#OW>#!
zQee)QT$<Uv*v4Q*u3VD*cA6fec$-!3gUHFha~0c$G>M+9x)sa6%$&3+>@<B2e-J8X
z%1V<@ZWJ<sJj0Yrlt2n9YmQpPbhlX@y`iJD^iDS&qM8fFjz_*^j-w(m*4vg$N${6B
zf!^#BHrvL{?L6VwP|9R%Hr1qeviAZ6h#oY-=_=+M*LT;_y$i&uSgObh0;bPL|7fr6
zE=pm!KH}o}enW_*#sTtoFTlA==z|hIwIZrH=InfQeui5V=Li0C5ibVv_i}Dn7EhN>
zKxL%FD31_G+yyo)vk+-CLj&Wai}Uc}j$#-^5C2X;<`ml@>fKt+xk_J4Rw~jAuW0w@
z+R0`@ay7O2xi)<PdKsb)<kPP2Vb;I*H8%`^t2aTX3T1(34DY$V>6d)h6C!jh;JsM2
zS}J&if1o&O1e-atW5bO!-qo8zN<nB!$RV9nq8_$YF&w>QiJxR7aqE0Z>xq=jI>+HM
zF*i6LUVrf0E7C2a$F$-EMO{2{dAB8z0-s+R!2g&=A_)eZl1Avo6$qslM9yOb5u9u%
zsaGO4LHLNl*WX64Rc3(cv=b^3Hh=*?UkSuct6q!#aQMMMa6_mM-jF%*PV&z1XXF{8
zy`~&}bS;UOvE#{&zUc2;EI=ts<T97p)5kAuiJ~wyObi;V1OjoI5(8y%_hRGvoX|Dp
zw`sNNrK*Pm+HX`LuXyOL%)mt(j^~EwRh-Qc(BFI1oN*FJD7eCPKKQw+I_JR}(l{ft
zj~Unqx&a(G9;(`S?fd@f%~pnn+Crr9$`%f}cuPx^OnB`%LKQ<49;n^obj>o~Q>c?l
z=n4SRm<y64O~nEW`n?(6$*)y;-?osHtE)D|nG%J^gD*qY#s%$k2qtb6OiT0M;J3oa
zb?bA+9eQ(F*yr9Yq+Uz|qQ>>;1byEZeg;zD_G?Iimbbb#xAu<j`n`D9(T(sxPP6(4
zYwtnYjAHvl3H<IVfat3Gq%E>`v>I*<`skZJLqppevk)aUn@5Bu>q(TQB}+=$*BNR`
z_-B2X7>w?lG0TQ=tlf*Xjht#Z*6x5mAvF4`w~s{YG8NGZ8x~QJn@FbTI^fl@$0@tJ
z#;WM1r~MflNePNc&BY>j^UE5vK9{k3fJjq|=2Fm>4DWxd6P?N?0D!0b5MTbaY7o#q
zx8zoFN3Fv=y@%B!gQykUk>z2?qB9OG2Ov+sbdbDeGSt0v3!2haO`8doT79XH7o!)q
zs{$=o4STAW@oG)yl9V31s(g~KYN0ol@;;RZexj(NDa|-PMEI}Wsee<j&Z`gPufA*<
ztN%IO0+vQ(!)|fz|Dg9=k62S_9N<F7q;CCsV+!Ojs}*hZzxzQoida`qSh;yq%clpj
z7{ssCFz@Lred<O3>kpby_1Do;#EYQ6H7EO2H68N;_w9`FH@BQ3e7^~|k(!l%&Sg+k
znd*7KdRe|!>#q9B>*fZE9Uh+xZEd;zX|0yD83_&|D?+2yT=iM<)z%V7<5Dz1p_*A0
zv99>rS7<aojVB*+i!-tMz1iQ>dA5|M-lE-rqN%3<w+Wq0o*B*)&JdK+=osk=E^TQ7
zlw6zCj^53Bp{*&SPZllRpA4W-LT_sinJA^*C5<^xSNd34TdukXZDKe*i60nniy>@6
zx)LRCDQ~6)VZ{_!^nr<$KplZxG^)^NWXcwm7LpA~YyOq5csG`e(>;K^QiBM)c_=Rr
zSb5K>nXw8`I1`0yNhPn7mNB@*RQr{myB37WTuVz<FsORe=;S2X=Cxq#26<`7bJ?2x
zDkUPRMtMzKQ%v-e&+26lkdSf`XYb+l%4uddEpnYDseZ&1Tt0eXcuEgg(Zr}32mVx?
z;d19j%~rp!FHc~kDz^&SRm-qmlw1pE==mr^@RD(TA-YigW(`~_nCZCv0?-CVt?xLN
zp)xuu%ZM{F>=WN@BoooD$wtljHzxx9QednTjvch$-LSWf1P8OBrw9TTLYP?QpK^Pq
zIlGdwzJyba!oE(5W(Ly`6>dw7OR7Gxrl79?zbp=%w)YcYmFSCpdT@ZE>~M$+W1cZa
zgVLh$+Q59h71EtSOxyXn@;YC{0q1QZ&8@!2y)dtLN!m#HW7Xt}Up6CPlN<MTB04!P
zr6}GRuzoIekKz>ad|-1uJ_;YIH+ydQho3X%988$T+&hKfQM5l5-zQ5{>@2`~EWju5
z235`HZ6KoX$fnn(=PebD?EIYNJafLy4&K7>Szph<=J`vfQ@j&F*RuC0P68FayTvm*
zgptz|mdqggeMLZKv*pcqLB0SbXfo-^FjCeCDPFd}Z*ayd?&{^<xijOu0h&Ks2Adn%
zFV_Lq(;pX5{4nral3wUqMFtww7pm@6O?0s>`hx0I(bVFCK+u=saa%40vKZG`TBzE4
zkE@?%dFw-LRLxz>;@U9F+WD5i2u(OZ7<uxiUX1+uX7*`KFnc}i%7|rn8XBMDxJMJz
zA8rzLN#+@8wQfP`c^O8&<DEl1U$M4V(#6On%}ZZ%BznM<d0iI5EY>#*o+G=rAU~Ls
z^-ZN6y=G<yAngjb1Kc7HwF_$m72jph{0Xp{`}${U0ne&~`aVO<7<?$WOZJPqi%*;E
z;={}&njg#ALgfQRmm9blb482%e^AX)3SV4Xka8|fdWXjuoYfuAJ8R!&c=M|&$0=tu
z?Rq0u=k?A>Z5l#1BFAEfR<wAaoX$!gka9Qycl5?t>H3B*8ov2(Pb8jqtlMDpZgB<t
zp0sq@UupJZZ4SoanJ@@#;^16Aq-g|X#a<-YFXp-R1T~a5QP~bJ&smBJOkul+5M$IV
zusektuU}`OmnAp~cvc^*{Vl`0k+Hx+)X?^UWvb!Z=!Z~?LHe9j99}r>&y@)i$E8)>
zrvc?0Ul<Mf?_4*uSgaxNx{dQUSw5K#apt7&!9jL453QbytwBdUSf{va`LP_?-d&!2
zZyz#d_U-WA>-tk@!$D*4g>cYdokY$^TNpidR;Ii|;8nfkt;2tVPFk{<3~49YBcfgf
z*nWnBc|P8EeY9f&`qxQGl-PbZZ7^5n6em2UG;BZyF@0)Wu*pzS8Vf}wASfTutbNQw
z^2h1z0USRz|ANDevOzDe3@7(8;4WW!B-h`k$SDvJ%OPChTuE0Ly?yC>*g(p@78F&a
z9K}x;r_STNFygQh06*U}6{dJ^6}2VY@cTx|@gk7UZ%glg8~JC9#BJiZC8n??71fOS
z;v8uqYImAq+TxoJ=S1Sgdpok}$|8{{1`h?*F0~<TmEEruwj3n(vJ%tg&?=`$S|fi_
z%=nWpZq%I~j`1ym4q^6|@J(L%(*^r76dKh0YFvmze)!1dIe`(4+UqbPEx1p$Y)#t5
zaT`QLaSss4F_6IKDal|nv)3X{xql?hagYGdqK~{0k@ho%^qpwN0{jEN1T%9bU0T)4
z_Zaa@EV#LBH=*q6fLnGHk^q>(9CcZOiE#bz%4G|Q7zV9+zo>BxOP%0b)>QX~%FfwD
z!rj%5@BhnfefCa1n;ePu-?nT!v6eLDs7aW(wknVD61RVve`H0ixhec^4e7|#|9s0#
z2r&r$$!XrKNZkC%)!N@YG@SJ9nzZ+g-wwu1hj{&K)5VyUZ8Nt2tDhs&)Q$gp4=7R<
z3c5|yGIjHp*B*qpkM58@`s(%#6i%P&|Nn)Utb8lx{Gg?kmj;Ejt^3?B$4>%kK1Ce-
z@&DqO`l&zT{Tu!N@}_ZAk<<V2#!tm1R+j%x$lw!^kct0Bgr~hq6Wa82RpA3yeQwed
z`zqgaXNonQNOu2?v=8=Y;&^SdOdI>GGy?qFrv|`FWjBTXEgl90jqe|kuVBQwN92yB
zuha@S^wm{TeTm~Q+x1?TK$M}MUv!{p^83`@XUipHX#riKXHtYnr2zXmB#Q0V%s%Xs
z%(t~<Z!!A(qKvTaf5+Y=VViI_`+oYLhmBZKQ(s<}QQ@t5WQB&0f^9JC$j>h{h*b-i
z5cwHgoWs(GiBj6~DrZ6*dSHCQOuYylz})_q@<I}({6Casv=Qli4$@(POAQvAI4s=g
zMk<wfhfB&1E=E1!?3dJ#z#I>%^Dorkrs-@Eqj3RUe{A{mB9BsqKSAAvr!C=0g;Gn%
zY-Kl1o<ZO)mz7x>QmJA+3)<3d(a^FOtZeDVsXF~Dq{a_52Gv-j(3V)dMixFMEY*YV
zE{H7JQWUSkU&xk7mTgCBmxeu?N*kv!gH4g2WR7qjHEL1I+Zb@wI9ZtvZ=Sg(A&kt+
zyOAmmI9%#4@Z6_aq8^&C2dSchg~jiW35{7)o(qAMJj1765m$9qCmQTzVWtzs)_Acs
z&XUS&q%L3Is@ccO9~5@%{@hg>rXE<?g<rnkO<SIzSzMyYJ3Nt<CbTQ(@X2juxN$X4
zii9s2Q7e5NJOV#$4ZZ#z#@_<7j!jxi0)F0ce7MU$68AGn9iZ1L>GH4I$TCiD^AYfc
zZ5R!2nwC*j+1hMIGg53avXJ#al97WRnmFVy$?aw+S<x=ak8w0;w4^!*uHqu&tCtkJ
zxe_U-nvD4$?R|GtlUcWSEFcPq6;u=~ql|)}qY^+Nqr8?;0Y{`LB_JvS3897(k~ktT
zBLX@Ir~wfbkY0oY2oMm35u_+3fe=Cw5JG67rGF;@%Q*L2>$~^8f84dc>sqd*@I0sO
zy?^Jo_t|GZ({N_cEV|2Cll^@Cj3zBTS_>>4h3j4!+f0mdP(8+|V@@^DvE-6j2Rd<9
zP}8<NbQ)J}l+1CL7G{z5svguh06#K4`Ic8Go~eT}r$XTQ+*a{m4Ph|2n@<_C(Pd7`
zz-fXABTgEe5mW^i_SS2Nd2v?sUo=NRm{H>*SXkyBnpf}4Y6P>0pMpN}7j}f}cMaBz
zt>I8xAu1gm!ux)z>jq`%O*mT}S+-X~6MF8UmvuS)<V3`<JD$<_$ceH0h97dI`WgQk
zSs)9Y$-vsl6WOJ-IQ_mP;2R`^wRfgCbJ}ybDECb9=v$qRQtnk9X6f9R$c}So9EE3*
zbeYqKa_D6uxTp$GEA6*{7XwNe^s6sF{}oQg#`jN&6=jX_?zyipZT{duUt0S^<{{WJ
z?PFIJ3SGJ*7U?Q_INFyWJKat1*1dAv_+zy1E5Q`AaxY$cvoWfqkrtKaVIxoMpXdZP
zorB$*oqHrw+q-9J9W$u0b>JmjDD!d{RW=e1Z4}j~5}a>!&*H_i<h1$$9)n2=pvK{T
z@g-jh5rX5LAI{_^j7?j?noKHPE^R{8ZMBhQoD1*>k6A|SKqsX$Z^c?H&o9KTym`$$
z0QN{|!TVKy#O2M;@on7%*5Re}rcnpVj!HWKHJdV4Y2n$ba57h2G$Qu2#7;Ge{<uaM
zkM3)s@S$SjL-DIbKForYVL{7r$S}<ZNFeGUmA?d*U7$rHZqrh-?uXtf^bKWMEU|@(
zQygsQM53Lc!yu<-#?Ks9+n-cl$@7yVZaWwEoBq5JxQ94!qY?!-fnKJHGcHaW;%6uw
zrDHbC&LcbSKgRH95nVjIIDQyixPlKHtY2as4g)(*vsr^Mevl!PeGdELuum?Mo;JPh
zf_iS0Dx$8>Z8)-$*yaq7a9Fo>DZNgoQ&0w*pcLof<{C?{aI)aM{&tEvUocxn;;ITp
z#{>-nLva)@&Io=&Bb^@iRqd%b*5Q)fdM0OXvaQd(6DM@&zEEsq;Y<m#^t?ofnM`e7
z;=ZsI!ZTG~g_Jjqfi;UqXnED?NT^=Qu-Wf*6K_HJ1w2r-H2Q_L2+DA{E@eDb9Q~Fz
zp2%e)%O~W^JvcB?vp6ZhNX|%LjL&EnX)yW0jQIM2L}9H46vY#OkuzYNM9XjOB1Z^-
zyBR&`V58`QO+LEs)=Mu&?h!@e{-)%k2W3B|IY6h!%43uKiW<@O9k>y<j%!)ss}V9y
zO}LHO&D4q1YNtxwNN=@t@!Nrj9W|L?e68uriE!agf{G|ZjL7erj1#>YFu_ls(H#>!
z%3-vsifdKeji%t@xAjm&Fv0+qIr|RI3nx(EE*e?6U}H+S0w8)hF}{Q>ODB~7g1l+J
zW{;EJ9SgA-N^b~f-Gb;TZy@X`pWb3gw^s<+b|G|VgNJbpvPP)LClC*3=HaS6>}6Z6
z9dRR8WRt75w~@yfE$Tped$M-X%4h0y#f(AG+xNVXMs74gNyrsnJ_nl~6mza|&G4g%
z+1g@EA|J0-5M%j8C70TmGVFrc`j%>2S%)@0muwpcKwG%_IFzVzux#qZ^cj3VrBl#H
z5rG@X3D@R_Z&0bLBLz-uCRLo=$P`SvmHTk&%tWpAC(Gv=w<L?y;gk9VxTsdAGia(6
zo*z&J7YSS`$CeXa3js7^*rXscs7&fFx%JXgLB8s&z3{2ygfVe1Xsn7NT2H`F^6H+o
zo)mXjA-aUe@mD!^I{f@^TBwK06XSKij>Ak)mdLObLfQD&L$ql-9ZdUxIb}*IUAST=
zExq-0Zh~2Ee~aOBX^DcgX3d2y>E_;4Q)w}*mPZSZjU8eNW&lb>&p&wxj4vZ*-j2=$
zOKV@XYyyu0+K@1oA!B1|TY3)y$(*kdaF}U@j|Lkj;5Ro4!Bjy}fkFN-iZ?24PacwK
zGS4+6M)~bClAQ{Wpj_PrE+-w845V%Tl5oOU>&?9yrhr&|{Q+~1_;0qE0VE#}GJ`*l
ziD`xH^OMje5HfN=er8L<s^BrgH;?^ihd!w)MLeGsl{4?BTL*e4(=ir-1;zfom-!TM
zt^M;#PO`vK(v5=I)2&yVyVk12G2(x`)yx)LieVX*bTya-XM!=z+WGJL^!c<?LbQ4#
zuBg9)<|LI(px|U**-9w5F<lW1qAU{WNaVd&iO3-3(Q_Zk(&yOh{#IX-eTFikIdMDO
z{yuX+xstfNTxdXDqXUUA^Dz5zkm|>sX1)j8!)@rFhcQzx6cdhjYb`<gm;>nC$gd_U
zz9;WfZA;+Is6h1OCjzeU=TG~9548>uy@?a~)+z`cZS4-q4%kWib%^lsPRkN)2sjut
zECV;V()$*)DIEIe)sn;=D9s?kCVXg+1vg=Q(n0gD#TD4Ki6@C53(2=sqCT}y02f66
z9T$7wPfrg_PHyMN>I%sDg(#$o4E>sc_#vmY)k7Up5ino6qG2`$HQ7|}LI){K5vsxL
zwpQIA!f=JG<VtkLoW9rIBTFEIJB^|c;`vO6hWTauh9CoZCwwDsX7qQuCs|f-fw}@D
zElbL0a16QCB=mP`^IaR?>kKAFN>RVs$oKl66WB-c`>sv<X<2~fyTFxrx3%-JL&?x1
z*CSw}w`M5Z9B)v!(P&m$1;ikl*KH;c3|QgV2N(>2$HGV@u<Im4pEaC4K&XjQ_sfCY
z@Ln~_7z0&M$W~zsS~C`d@;?KRX$aKQW2g%b1J}jFG}2Q^<!^m5xxWF27rgIv2U9d3
zgfOa%HTTPO;Lps${mda1`uf#|whNwxCdCx^DO)sYxIw;Ai^(F$;KvQK9$#&J6!et^
z8@GkZK;omFI;$3Zp0Zxn;~_wo!HY)1$Lg#U_rb~DKkBESjlMaZouf_g4D9_QyuQ|M
z(T!(hmZ3oR@6$wayOhx8@1NBlmkS5x#IjVl=N8s(Pj93po}^j@8&PfT><`wgcH>U?
z^u>g*N>R_$>{RHBDuSvobD}qc_rADMK$v!=_cnJ>gXrXvv=@q3Ra8_68FoL>8|dYa
z*SAF`%Y}H~M9LMa#91*ivQi>6{_HCaN0(~r=s@GFCSbk5CO!NmjV=J9MA$Veh&kMW
zv7wZw+V}0?W5*oiBI2y9E?U>&Z+C*c>&@wk{@8A}0l%b|V(z%^5shsxm!~iU=g36z
zc)O+g;wn*}Ag=V|&UVqu@l6r8{%T4r!W}Nlva{jxhDc>XqszZ5;`?}>_MFR_>WMxI
zeWgbC2U*(k3`nQ5WFR4!Ul&g3(dAa9_CPkkAxy$fL(9qtw|VE3t62TV<q!eZXM&Lr
zOetBVh+}Xv4u(IRx;zJKt#EX|VkKFDq?m+!;x<_05r@^ZS=ve{&)Z`2xB+GCmxT`i
zMJ4kKq8xw9G(Y?p5%d9P^$KlGQhJ$`5Tp<J*EcJH;j$7(=LKBOBb1XRowv!p7pT$>
zW)?O(^=QIjpMv3<iZMxLxj7@MwW|dA`yLepJaHg|QVS?Uq{6(=zBM&Zb#uUJXs`p_
z9aK)(vIg>d=<K*qel}?ou+B&;;2nV7M7!(MN_MMc)7W#`_~J%~ngJap;;#yK>jN<g
z#Hv;8r>jOxDs|Zy9asaJFy&0Inke2)OL3BgI7u4&yS?d9M2E>~*R^c>IeZ7Y>1>jY
zc(+%F=~|=ctt9zy`VA}D+8JN^34t<HK8K`8v~k1_;W~7AGpRR`4;qerLetUYNj*9>
ziJ_;XnpnVmvwx{0qg2VN-D`g2;f*`!3y1qsqU66rzaS^5+0V!P{l2@zNv=z-NtNx3
zz;3s~MR|5QiXKU2dK87beVnkQTm<QY=(!%7c_CMEn7%UVfSMCb2gsjcM<AbjoP#m9
zUe?{SsjF&Mr!)L>1{9}EFwJb6$9iMTq)FelRS-S9nxZiIg%AhV94sFj7^np*$n84=
z#fAVJJ8YSY?WdL{6Ba`n-tHgmS=c#&)iCmIW{DFUARdqZfgi%K77)tV(x;}qz$7#u
z2YSz=P8;mwq8l8af8a`O4(1w%PZ1Yk07?XVjET}w<M88_vjvh<4gpFIY!U$65_us}
z2>a<!5~6&>jbb6GQ{{X<4lZu1Z^VC8_x0mcEo>7D;JFA=Ey*qmd{H^`hdApzDaTyn
zE5hzMMEQ0v$Y>E5d_z-^P^VBGJV+Kw@jo@{l?5o!7lOjR_HO*A%9*1jb%puL;3Umj
zQm<uqC6Tbds?L5ki?L4WtzC9ZA-FyCc^hHe*$8S&4QW$rFMY#5+^ZEp4J@BHx2t<^
zB8T4(0K8+1)heE`*w*SV*ayZx@m#$@Ns2N9yEqjyM0U3N@WsW}QJ?z?cHr-0^k2GI
zHv!-&!t5ab46AyTCwy_wyFR%^<9~$LjkX%hybtqM{Qc(M3WHwGUo-O-Bb}I76*amr
zv7NwpaukWA1~8cS%ZcFOym=@iZ#)oGN5?-Q^lmE#GmQnOmv)~(3fpzw+C8D+s}A;-
z8X@|bqS2eD-kZ)1v8G%5XU2$V)@;wDE4iy5eGxIp9ZY0q$LU1XeRx7$O3}mrlo`uB
zKg+sSQ%Fe6QOB3q!2PZdTN|qi^Uxf^#2#wa>^3+Q7S*p8g1gTO-G2suJ3c$QL8tNU
zg^HCmKA!K#_>;p1tTUU=z4W#$csNa=X>Z{-89~BU8##Z@m;oy-O2rFNx@Pz>C8R`4
zjvGEXofFeBX`T*jt@Njlg{`-K*FN~>=X+QuT1cyrYk}i4CG{l6kr&C8&lS%JXSTh5
zy|s1eBdw29$Qb4&d$`?B{wKQT5}Wkp(fbuFB6qkhaiO0mW}Yu`cNw-Ota^Z?K91^m
zpu}&=rYmu0tV{aqjiP;Xh)D-CV-ued>qj<(<ElOPH2%_V>Z(^RENR#Ct-E{x93zW|
zL?3W6j_s$cAl5$ynMx9~C6tJ~abItIc8p}K+cziIHpMMXt<29(Xc{YcgkHu{UgWH)
zh`j3ILLViLy*k%!uUdOss8RVMu3-H-tS0^KG5Gr~T1j%6)0U;LeeS3Vxf`b(p~^0W
zHEXJKm5<a3Lv)+>J&eSZP$uK=6slk0zlcClua%6Q$ainYbzFO(9fir%foQEYa{98K
z3L894si(mX*@X*cXQGLtn-P8;!Vu3D{IjG)%YvAhtcRmf+t__ign#&+2~#BY7Zr?R
za<|Z-5dQkFMDLqf*)08V(8uDKh1_PBa~t^&J<f%e<subK%`0^gR*FaJjV3F+3mJHm
zO?MtWS<kneIxw|kX20T<2++ED&7+y**2htq_+M7N<27XwWEw^vR2en<&Q6$rM8N3O
z01Bqv=(cBVWYS@0&sLxK$^CUTKa3nUBsL95SNSV3L?3W?t#79}al*?Vd0mcwCS&>P
z<3GCCJ3FTFqxd5O>ycL%?Q(I>SZ@Ee#ARI5_yXOXgjERz)t4$W;jyH9r#h~Scbp7(
za3(I99ahoyZfw9Li}1*x%`ulz8@XQ{+-)`QyEmOfNR0dybDM)QX)cdNvJGkOR|mBo
zs=szpq{G+swdlCTQ89}v&i8l|7l<>x{>JJ-pRCuaZ?Q4>9exzU=T0)+xOqrh81YTE
zP{KH}=h+bB&O>{C2Q?jIZT`WnKNZhQH7fzDF9R`6{0tN3d)K9La&`|Do|lhKz3|ly
z12B+s>BsYfaPVfb@-DNqzX8+P!gJ3XC@IgWr}v(HeEu6k40?1;I+cJo`6Vaj(t{((
zps3nsUl8C$>#=(V;zxhlYZmSc07vm($SnH6we*nfzM?}r%Pd_TC+|xt&n<X+08B5)
zAD=BY;`jE|YuNh}^GDk2!=uzu;GgmM$DiLA2743|g&~|Deymbq_XVI@kG;Rx_EP6y
z4X4)`_A9(A#(@BrcJBKQ<n_Y4`YP7U?^y2DU`jrb)2}p)$lMVPqddh_9rwpsT2VV`
z1D_{ZVdNjR<jj0JvUD=<^)2Nxx829}zSLQH)9pdr>9{cV`I~H)7zg>0;90%gTi+~l
zf}J7%)xbn}A~Gcr+q1U4@m>|Q*z@9xDOLI^f4(o)33D4P2*2BKrPem-t~fvOLCbAV
za5HOld~!H9F5!YfJZWw(3Q6|<Mq;^2-%rE7RrbSqg_4`>bAeecuRiYn565F312c5r
z!*%hR+wH~m?wd;ei;M~+i_`NRFqi(rkzDA9=I4DtIaT?L&rO6ARH9LcW)w!9Qe-!v
zN{`m8RHiK(^IWJk_z&#?B|?o#+<9KY7Z`?rL2+rRYif3mt`+xK_boZ%--PguUL~B)
zEh{hSw6(QGXqRlIuR-)Y=n@P-QTCI6#wiR}sf#>F)q0i6*2kot2EG14n)2-yF7^J@
zrL>T@=IQ3kiE;FE{Of$YirFp7dux#PV)%Z_@IpM3_`am1lxAyh2W@tw>nYyhmofQe
z_0eWV4?{Zq$~g&)4=y+N=Kd>4tsN8(YMnTpJ1>l3f!pc%6}6DK1RssZp0PkVx@~t;
z77>*ZIy$_4szmHl`6?k1Ic`GlJhc2QkIe+7vIntUgNKr4d~+~%(AjIC<!=?^8|zC2
z_m>;*I-OHoL=@|Lf%1G?F`n)3!Y_L;um{L?8iELBcM9|4Vkkd?ITumyX3u$4KPDO-
zLwmae$M9Rl{Km=(ak=$)%T7y$rzClzi4FbgwjaZ&^-PwC?$8ZfLx(@+j^qpH{qlb-
zpoDzpg>?y3J1pg%vngva<izdEdg$%r>Pahd2t-md+4r~L)rjAAE})HcFR1OP)D`==
z9wwu%o)q={YVv?h=`n$#M66o!lTMtf7WEa#qpDc*HF7{CEZWg9bm<T1pT?Xf`B}m@
zh9mt2=m0yewoF=!YbWh9&h7o1+RNV2OLYSjY^D;k`HMP8!4hcK-^^CBd#?XZSC^cK
zZ!YwD2SQ#YOc@WW1w@dx*>4R9oWq?3LtYrqH;}f_+-Htwna1@62VkE=NH)m>)Neyw
zF^}LN;I@Em!%4C>MN!{8Tm<{ue?WC~z%JaibF#@+sjT72%ig}gdSoE)=A%X-{62pW
zRT{WV&dH@%dshu7+yrIH*hbn!jN#*eO5&DfTop***JV~7jgk_arg|lR0P~$F=`?MM
zU~Te5LVf?6wdAeVq107t`dA(LO=IUI{%oi1^~2em*Ke*uNo?bIihPotT=^+tG46gg
zec8vRxbQlpMQn1VZl(%-#d>g2e~h$cNCk3aRgZ`YuH{P1CWOC3!XD*_Z=mVk!AMmt
z{yswJ+q3<u^n<5J!l76wYX<9P>_S0qtf<?k%0G~!^F|L5F(VIAlas~=_I9e*tRy<(
zk^MbL_gqB|Ul-(O&;eKW5+e@<<gdxE8$Y6)scr{nm#=OBnF|xKmFTB%$oS8<Fz{JF
zfAb6AfNr40^Z9St38qVikT;PfT`%r|aQK~Na>O1RnjK7ol9%vFGUkbZkJe^8A)N<6
zrGh8e1kr1f(j9g_s0G@5(SZ?KO~8xjD;y6fCR44f*po7qx{A41LFGD=xh;yswZg?W
zmL1ELakw{qlWn>7N2h&=xG?IrrS{5>KbbDu_A`-HXi-;K>0WkE?BC)p+8fMv=ObfS
z{f<PN!R=E!P!zk^Fh&uM35WP^cqPo?(giw@&hw@B_L*%ATy&!!=!7!3I(afz<_2&@
z7g_&nUVj$n{yrb4l5to)?_<bUY@gr0m2VuMSERj=@C7GB(u7oNAzEG_N<$=-ne6s$
zl<x*S0ivvbEmvk#M~dCjR~^(#Ya});dFiw1N&8)}E@_VoVE_O4!aZ|2BGoF+1lCbP
zJK{QE)B!ME*F5aQ$ZQ4wMi^K;VBL$XuYl5wp8|idRWqX5+aJke)VvuOE{XUs-c-h|
zM|FXSht9^9FqojnJ;GB8qF}~u%jh7U69W=~3+qWF<eScoH?PP01^6-=I%WI9>oU+6
zsir)|@$1*wM0vgv{#h=&bsBw<gk_R+uQ$4?HnfZhyT*`@gC^f<wE*BB8;Lbt3jpmE
zw(yG_Hg~ibkG1w6Z;m>mF~FpS`l20)^5yls9#!TQ`l<{3>0=urVaSHUMMM_|x+TR_
z)s{~c;^^3v-wf=OM#I4d!0Za@8pPVKb%oECP<_2o^Joo3v7(aLDqAC>Hy@-8^c<kc
zG>;OfKZbrRn5^hLy#z(uh2wWD>#`I_xOXI4&cznB>Bf@*@-u0r1BY_j!FiO(9Xcr4
zPryzE<XaRi0qkO>GVEWa7*O5O#e~Bd{9!KiHd2o00sZc=tChqA*o^tdgEU>(PVL3l
z)0A<b))qaL9l|AxUSmV8wrytSs{5Y;Tg388Amz4|#C}q0KPku2UUe7UVI!3;)4ZJ~
z>q$<L?Kx0zK;Y+O{6w*`n2Tu_FMFE5uMC;Njk<8CPQWj`yGF90W#2An@sX)mkj7qE
zsr*8++ViUB4Kh0-9OME0k?QsWgOY0X0@h3Q`7@kDw6=fYON(>=+7C`AhH+BvC)IIz
z$i5T6CjWD`0a}#ASO3dK763{E^M<{oUU{vZoxQ{<S4^p~wLjw7X8@@<C|Ssc!!)4&
z2)=scwzl}Y`cN9c`Nb7pz;weq!yL$UF;UrszT(}^D~J#eNi;yY*s2n(DO(TJ{Gz`}
z72*Ka^ZjOwjS4;X(lfAz$GkK3U?XFblU`7m(mO7+)|1dg($Ll>AgctR9_2M$vn5m!
zqV!9Vx-Om|mbqaA!up(pq6jvKcrC5_aVf0`p+y^Dz5`?0=~%!t>q_(@glqo{1@SOH
zfH~bsfWcdTG+IjcP{_M%T{@vkzj9F^duW3^(b1p)F57sd6kN56t15pZO6D(tNX9Ga
z;6jiSf##PR@d$+>@$b-?>ku_Op!GkSNnnz{8PPnxVeud!WOcpJylDqA!|a1)$Bch&
z{p?0txE<1FlM>Md2I<}gl-l}ZIjEkp^o>VQ(kp!TZbhOe?#02NNUW1;N;C4qxPdal
zNsOlZI)YNeH*AZ{zD#lr<c1`|B2kimOQc{35(ft8R0AmcoG6$Y2+P5{b4I*jlEVLK
zOInuUdk3MENw>tI(NYjb2db#Q>~B$ato&>{$T@z=$N<qNFrWBfwlp7cH>CSqq$g$l
z!p{!F#-k<S_8)7Cm_YW@{@7y_koI%KSif2b=I3zFdnJ*{Em!gd5%#3beK^g9-bkVf
z@9$q7niW_>eFL?19@A`L!}ggUK}Ax1ikYn~+IuwbBz1OJ&klAH-I$$Na*`0v=GwAK
zR#2P!Te)J^4gk~y0G*>2+FE3#8f))6{457xhJ%|Clzt41X43zv>Nw|TwG4~{D6-gE
zYN~$vQ2;66iK0@)an+-$i?xYSks42joSBJfVR;wiE)3BUhK)NeDZQQ8RKlMt=y_T?
z(0hoCe!$qBome~;ZMR|6wc!vcw0JBGd&#SQrBU<f)J1RmN}@okq@KH?FJ?3Y%S>@n
zuI_bDq=uEFBf0ICxW^`TR!*~Y><a94k*-)CLRyFVVepe%IopnLAqNY2hiY)_YMpV>
zHi}PWhSp;pm_urFIv-FiM2@z$sU|J9=Fp&{)}1rO4gE7kru`4jyDg>nRC!|Gr4;sT
zx7F!+)LBn2w?E)>zn10Pz<<8H@Qs0ESK4Ot;ijJF*WMnonVEGL!V(>9Y-T6DM1wv7
zWuY^#Fj{K-cvir>q@0AE)VIijL}%{ws(}bL8BJk8rG~FhD<2?GQVF+H)H{2t&d#Z-
zpLG}BXqKU~J}%mN<ddykNZ2i-spmcVGn#jNUtA++C)BZx&puG$ukE<aic!k<#3^S#
zLf3LZB1IE}l5JS@Ze!S#>V2*IA-W``g!=rZ6P^ezuTN69^$nUhE#Ndd*R1AKrw%=2
zg8C8<r(iZ351B^y-Q7q+LAP2Y%rNqVU#2&m=H4{I=kW~4vN|NH*#U~%r)pNJ?x>BE
zlTBoMHhUwr5iSVF@5dw%$p@S^zv4!KN;D37ZK6{6!9hcTVas&1x;Hg$hb`>P;xlAs
zZ&2hk>61CHTrtMpX~^05lTBb`zFS#f!j$mT>^=9`#~J6mqhJM4{~X5YqEJ3A6#uhd
zA^S`x{*zU_X_Wqj68cn8@0^+45*M;LOQs)JH4!`3tS399XKKe8I^-EmkDM6Ck?}nn
z9#QJWi!1hmvkQIRFe(rOZ7uHUF~Dw6fKGdu>8P)2UiPp6t#pNqeZ4G|&CJE-jnQ!N
zqw1g3km~;;D(zwfU*<WyH)@$ej;P%VCsqZruOT6SAfMNqSF_^ZZH29halfR-`=EoG
zCCntj%CmZDANn>KR=WodS7zG!<u(=}Nn*W%p}az+-=~FUXQK3D8c~ss{F2NL+8ej$
zLdzqlL9mQAFgAaVri^7qnqk~KxZc@`lfFYK{q;o}b&|VOp+h4bhhI$}DC$ze3D0KI
z**TVlMoTZ+)X!iOUu}5fTNNloSGj4So~d(!@K9Tg9m046E9f8W(9=<eS74*+nn95>
zz8kO9keCuN2eq?26@}b4V8xzlIkYM^x!If*QKnw&`DjzkKEt+#g5Cp3+Y4egb)uBE
z##arXI24G-84%!#v=^E%8798BmzAF9HLXdhGCpH~ioK%F4n8xx_1BTZN7fZ6DfTRS
z`XTi+ygBUYlQA3qsx>n)hQHs^%`cx-((LyPA-XC3{@$dH-{&%|WEHdQd1c-->yCQg
z_;1?3J8jm)KB;RnsowsWp70#j?-?uHXr<p!O%v>Yqu;T`ysIICYIc=k?xflw&#zSr
zM0pDD=bVA=RT|V}_ywvRW6BB*#;2o4DW2o3)GkVKb>xog)mtyNUGUT5^3nbg?CP=&
zoROfeNrON7%p>dVqF~@YZL_VXILVBSGp1DSucjmn(88QZs?^IAbL!9fhD3WV?o{J(
zebXWIQBZBQ<SMyu(#<ilQaA&7<q!R`M|w{Uqk?Rp>rI%Mbz!*!j@t#diXM<K6~DO7
zj^8ze>{2@QCfHH@^Ti|oI{t=N*|Oy9IzIJCX=m?mFN6Nt(>fC~9F^J%J7-ZH<be<x
zkOEG*#qMN3udDMVVA1Sb?0hE^o_VBkd*bf;=|8u8vh>VMg7+7$O=mhA*>in=(uGk>
zFI9OadJA8R4zU=$ytKlYjqw~?8p;4Y6tLkA>q%BQoL_>gWj$$krkc`5S5eK{DG4dU
zo<nQ*tUOb~+?Sw6Z7F`sBvrW~prdadI3ssCH9smh{eVlUIUFc>slc~a&B+vIGaV_O
z<ZC<w!^cF1-pbaz&V)ol&Tn3Uh_a@rsYhlD%hXZh#mHyu4xY8!re&r$M&hef7k{D0
z@z3gV#0~E0Dr$>AEGyXhP98emVQkH*IB)dV+1+XozuVlNq^(8=ZVicgb_jQSb(zu=
zarQyimvidE;%27jj4uXc_8VK8d~z-}6-1p3!Oqlu2zw{^?d7kVZM?yFEh6*cSAsII
zHF>tAc4zPx&rF@7)p^S0@X?bKS}|B9S0~-9pX?)oL_m|06W-@BB2NaqW3vSQ%@f)+
z<w169XRNZ<4ulLeyKR-LSvN~Cg+_V^?^BPyY%Cg0$Vr^E?XMLvP9P~)@y+}1zzFp-
z7dKn!f;Ag-@*}f;nDKTM1W)9x;MXyo>DBq7`ex!<kzsF<-2r#H)6gt|67|6|g6f_D
z&p~Tn#`I6M1Pb$mf-<NR@7#<^8ya0i8}GT&>*K-#Trg=JLNxOj{#)Rxg<?-aW8{H>
z6<v-nye`wzlO7Ls8CjI^K)r*lzM*4T94&F6(&>3Z!B~H=S$yI&3FGgQfkOFbVpW}#
zw2vN8BhO5R_4{0eQSjaLx4d<GU=6(eE7d>T^hxYl<V!lzUgLfwx-UWrX|j{USq6?K
z5iil$`}t_np+m90F%zyIIjB<HiH?n`bV2E^L8qDNX3{;P&5FTXl;rI2q5-UcVDB7|
zcx+2I@0aR=homr8D%-D%dO;uDVH8E~o>eVi7xGmp+R<*#7(xFbqU!9^v0x4id^Rbk
z&U+0>wH#klv&XQe-w3s11g1(F)%(EOOMXnm-T{>{Ql$16n1z_8UXx??7hjKi69B?-
zIh&aU_2UMNU596GPi}bWZNGuc95w%B%pq~%kfLPZ<D4`rcj2YfpLX}ZZfMaTtf8sj
z%t}@8y>q}ajR$*vX^&zt-{UK3flo_PG~(|cP~6pX)Pt!M*IBty9DENe`v-rdGRk5y
z3-Q8Ou%r+x7H@@p<ykp`5|Yn%Jj<$7^w50;MDM;+Ckmu!E9(zB@F%G-2FPg$^ZME$
zr8f=5`i{1N=A3mYVty3a3Vd-Tgg;`14HobD38FCy=%AVK)k)o)z$zPE_)H-)eV$kL
zQz^b2jym@wBViT<>ZHBNLpqftj>12^`u{eX`|mdtre+66J}xR6u?NcnNPq5M0l-No
zgd@dO`(Kxo;9B;Q$;n^+q{R?-&}Z&nSUDnDi~p%a|8a7=gv|Fz9S?gMdRATdj17H*
zX%)-kPMj5$p3H@oUWAMuo5;QlLPF7ZZ9=;SeDfK8SgPOE9J+9zwmf7{RY2y!tzpw3
z4+&j&jBXVtWR1{=pC<VHN;@$w+kO8Q#^S3sne{Pg)fEqAOI9iP9esIm_A>n#=c$W^
zY?W52sSN!Jo?Vxb5&<$C_VRTLaSFqp24i>%*ph$Je!CyYA^wqvncG(mx?3!(dqKhb
zA_RHM*Xb^jeXP%<$M?#`2iY>O!39fDW*H__*1fO^(dW~g^U+@xYf40E!q5=Cojvxg
z0;EU<;=a4<RD=0M{gtN*QS6dbbwm|$C?9;Dj$3JYSEf5i;?hid+(fD>q~dOGroVl4
zb@dto%KYV3F6s3)e{Dq~h&@x>w;;&u4|vM#aQawO;`SvTt`hwTI8~{etsbeb`26Tg
z9F)RUI=GXb0#ht6eMkA#grphl^%A#6`&mA!$9Lm3Cya_8_|DR&V}6+j{{r3!m}QRZ
zmsvs}ZW2%C-;G3lQ8kH6R0HD<)q{JJodfNIxJ#0g`(-bbM6VlBxPGcpGb2C=IHOVr
zXbdyztQ(~c8wKjcR~~)&C4p()^YX)wk9}{qez<N8@^|hQor(X4-Ey$%!{6C0O8DDg
z$#<_dk8$(dhtXeMEAY*TjeL#AMYNF&O{+K+Bta#vp5+nWGySID;^l}dJ6N_`i!qJE
zs7h=%-aA(qJ0^61t~czk{h?C(_O?kMFT1aaNmGtRSz0e7X@4x^$xhw4-z$r=43|y~
zY#<_&h1!vB@AgNkbSG`<Le1&~iN574hnO?j?t5I9^u0OGV}C?<&G>Hm!OAaeRmZIk
zM8b@<PELpT$;tK;*03OR%#Yhzs<F%JMRAdyQ0=%OQXM$f9}b<ROCyXDak!OpF(BQE
zziWyYs4{%4ySTKZ_9jwf{t->sw=$_Cw=JZ)ZdCPy_P%81gOsHGp(WO2VjuLb$#jpF
zFom;IC*T*NIB)|yGUJpV_Ca0LwxwLXEqiXgo=pAAMIFt5$2;5!Kd8LD%IGo;d}M7d
zq_(Y*e^@TB2W3l9Ahzz`8!3*hSyEBZBSec|4f=ew)st|c32H3msS%`lJg`_XAnH%<
z(M^adA8~!(Gvo&Oq!)JhIgk~Z%Ucyk+VbjxYD))qf5BD9Tsb$Vqn@b>e!u=iK|B*w
zgU@w18rUf>{zMF^^t?0eGD7e6!O>2ZU^fgFiG4~KC_lv8i4h)Q3xDpx${G*R1Y{r5
zpTdBBcH<V(mG(6+O<?=%4VtOcU2gGk`#NMuldfEe-MJO)5bU%g(rwlAKXqT`#*!>7
zGAYsTbm$LO5QP&OkBB@Jl%5_@FK{44T2aL4&9zv?>YZo9`qJv@Lp478LP>gRkQ6D;
zGD;<Ub#nrzq2*bG+mk;(T1Ly`7Uo9hsGpUgzu?Atk?me~{Y%cx*owkb4Mrxzj+QWR
zH`%4#&^G45cU|ic%lJySjSkXnk+bUuP3{amG5gX3$aj$jETkN6&n9^juHYaoWXR}7
zKkT?E-Q}kF>XOShOqN_x|B<eH`N6xJR;x=~kM1vk6K&*u^Tw{KnpYALhXJiqK0!*#
zk5NB!H_C=2zVZ&;*Zj+@I<Y>AoxUafr#rei&8SN?H9mTw=0L1S1wbJ`cRZim^sDN%
zKLxFC2M3wf#JUd1dSmmlgk831*40W6x_vxc=~^N8Eh~$50zpzpJX#_?=h9SalB@W^
zXzUfdjXAY}K5>eqbRr7lwue?dgQi#Gtg3e+pl)YLwfi^2)FAFoKzNjKea2UWeIJcl
za{<!b^i2RJqie41``sO+9f5R6$mZJpqof7n#lB%B4t<9bI(T98_W>Bq$2^dv{CBeO
zZ5GprO;IDR6*`v#@VU1^pC)S23A(~bhn8ODT!r(qB-gnNezwC2ZJ;pmJ$%bI2neYV
zZUtidFUJ4BpzePgeE)AllJma*>9lMijQPLfms~WE9$Wpd)FkZu|5F(0jrdpwo7*9Q
z+4GX`TUKnJI5BA><}sz843&N^6S!HDUtc0i*z;=X$KeanlB0m_^Os)P5)b8H^Y>>u
zK*|hQO38Oa(+a^YU~upx{rJ2a_#7oTmzCa}Y15w9JJ93lEW3HY_`i41_JUeIQ#h<<
z$+k7K$WrtbSsbQ9K_-v1HP?uALxl`ZPDk<M^h>J4f(&#vYR^LJEt@Pb8!QLmh2Dl1
zg}N<VE4D3DlGr7gPTHaLnSGfJ6xYGPbXVjHNdx7Q%r5El+%B*ktrPIA4bvA|JI+ZO
zz=9N-`RTU3=%~sy5T_@w($Wi)Bn|LVK2JaE*TOJI>G;eo+>BdUA!b2nPP<v@IXkrL
zKL(wM3F*GadoABM8VeGlG<2ij0t8W{0n)o1x{AS2!CWKEvnB;<{7%sKK2X8ow50tW
z@9b3ulTSD!18-`g{Ej|XAZ}|ZpKCW8v1i8356bg)Ydo_CByH^-NEVOxHUWWDfQlcx
z3s1DFg*K8pR`FlG1mxyjO7pfSoi*oF)6v<f>21|R7DB=3aJ$MQ{`LEh>5b)c{+#y4
z8Rpc$U>OqH5z_XwtOyRy*LQthydYws;`V-0K)+xEV$A!6BA6hUb>BzV5kceyxt9}!
z&V7u;u_IfdNq#C95*f1Hx%R7{R+UHNw*us?0BH>i10r6NrFXwkfg?nbIKJP&mu60Y
zj|T2F16dWqVlRKjWBw`!7WM4zQ5)b9F9&KQ6?`J96`yVZ4sZ334%q_Hf1XG6ir>8b
z+({NVCk)-;Fd7{D{%rw&>U_O#UGOPogl5jznRzMey>V?ot=6k5U3IC7IXPGjT}DR-
zjsTK=L-<;wg9w5g54Hkjmq>rS*h)?<?O;>OO~hWU1kA$wt$P|#8?Oa>7{SlJ8o7{b
zLXt<b*27Ll@_~cs018yxzx2#isY<G#V3eU!4I+T_KB;|3Mbj!#(Es5Y4sP52_Z#^A
q^RE9ukW)qX=JCglP=AdhUbg!D$DpWSF%AO${Bqp%U)jeTZvG$ZjUFWc

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/images/intune-add-uwp.png b/windows/keep-secure/images/intune-add-uwp.png
new file mode 100644
index 0000000000000000000000000000000000000000..7b226b7edd2eb1da1b74c4e590b59bae611ea7a5
GIT binary patch
literal 11425
zcmeHtc|4SD+yA)hCP^xy8cPVtmMmje64@&u>)2(TFla185tR^PFqX0=G4^%PW;gbI
z8D$y9ni-6B=Dl=3&vW0O-|zQ6&-1>Y_w)Jv^Zvm(*L5z}c^=z&e2?RJaYtX1`S^w7
zAP|UI>$dtm5a>4n5QvU+>^I;|-Gp!@(9n6`(^LZ$b#W4bhoeq6^lpGaB{59<HopVU
zjE`=cdV@eGzaIY4wZPun1250PZ#{q;!W`j#HeL>(M>ftLaB&X@_(f^)tK#x*Qb>Ie
zNc4=B`i=XKtyU&!YxYKI^XpWpt>FXD;1S)@`WJ1rZ6C|b<J~xua3796eN`^q!`2i1
z>crFqb<+lT?a`xVoSZqR8|V6UPzsrM;YqJPx~e-}%YA)!f*CFPehKx0S2yXI@6>!M
zMSec0@qUmB#gLL-o6$YL)2g^qU)7~dnJ};FDuBsI`FuCbK&UMOTfVu+4E$?HknKPq
zdc!s}bf09xcIz(NU_dMcXz#z^gI#`^`Too;{2ky?;3f9m<(FfAo2reQxOmNI3tACV
z`1^>Wl!lGTc^Az$zXoqvPWo;Cj1Puy2pOnsMK<nxHExoE12$f;=<=lKyZ$-qXAzmU
z79Vr4UlM`bDltdO*40$i&JSg%uK%R%kh?hpC;`BlS6)M=6a!alSkiZ_?CJ`nShy7_
zrFIojSr{WH^}B2`)LN<~$37{)U$veb6YM|lb1>8$J@u2^xShHIRm>bPLy*6hbO47h
zoxd<%P+^5vf~d}?dV3%rSxw<J+j?`z_Tc$5hX-@<Lv@5oD6RL$?Aw$f;p9OwF{je1
zn&>i0r9cL&RD-j|@uI|<H7vqIoOR<zM`bEvxE=hW{42^*wnysD%EEZ0fiNjN^Zlfy
zIE%h2Dc;Vcaws%HTpl^tiwRmSAIJ#a|2+EcCT%a5pES=(!Sl$bR}(^cRN)H=&C&0&
z=hMj=f=gdp^gRwjN{#W=LETD_fqlH3znq1crSUBDt-Ez~7TikIp9V#$6J`?B-aS~|
z&uN~6Ns0i+w+#GNZ;aKWcl+m!p}Rj~Jc7CdpxfW~Tmy3A(gV8C=*_lVhiK$#r`EyC
z#Z+%@B`FN9tJLnX7GZY~!G92Da<g(2l^u`fN$v1mX;(r$%%DbATh}?y`}KOS8^E?q
zg*ba9hDptZ;YSMPH~@)Qf720a$b$7+;SnupRPgHMia6Q0y9Cvd-v26r^jxbLel|y=
z7|`JRFGU*tM{iYZRc6ntkedZ=q()DgSP7m`8_7O;oEYcmWU3c+v*WBcJbl{z%r}(1
z&aNNVp3#G2?*`oEv|VQhNX^mi;|RkxZpaC~h|KrBsM*imJn8jbxZgz<yHD0r27+sJ
zGH+ma2xuD{YMUxzA&6txY)IRGRSM?TJhB{njqLSaiGSEkdobgwn~_xRkh=ibVlJy%
zr9d-Z!1lvyU9CA`_W%UH@_m1gS-x9$2af5GzBjQ1e}_#`F(w05cq+T|Rv$|+Tb#!J
zt_kg;dHPO$u%WA|2(hLG>&aS_Y_u}9?kZtqRoLAnLe3qk9x9D>LFklqJ7|`SJ5aRI
zD|1noOk1x+9tzm30OIE)KS$t76?OEb|M!)~z19`Kuxu^;DcYwOG`N1DLt*wjo}`iM
zoMsv&XG%$ccu1^_J<lHs#*cW`j``vT!fzakyca^M{^t^GXTD>x45s*aZx5eA#SuC)
z0=21c=7wqOJZlPpJNZ)xox*xCVoep+xoeX!<u+kqffx*KdPB<H(KB&9Bi)FIkDJM@
z{t)vyFm_NEMF_b$Xl5L4LUZg)H|atXN&v-ghKj?AY8Swb2NGsW`BeuUEYL?krf9e+
zZSm)M)TIoqJ&C|YDVxpUgYVDm=Aqjhu)V@Dt9(F|Nseu*ceCX!bFIg(SLR_ErF`07
zy}nmS_E~DI9y#^FcgfgL)du8D8GGy|)33H$5}TO#mEwrQGMao18>M)7oIqz@c5#~{
z5mF*Eb|!-d&03~*GGglIr{jl_mj`fb4L{px+e7BvjaS`cP1ca}iqz5)yUWCy46Nyv
z`ZQtn9KFp;mJ76DDGwR!r80zfv!4U^iw|>K%<*+$Pej88PFKeFIQg8&kI<Hh;pXdc
z)VgT?<#bTl;`wAp+tFV~Hx!4dJZgic?F~5w&7@YT?Cdq#E$K7@c6$%ieXugNg~`~1
ztwbLlHXYV{*KrGD5)ghDu#zPfc#A!1qsrP8#cC>$61=_2!1BwQz9|6X5!9-fhP81`
zJb5`F7}K)5#*sl@5s}y*8swPTC?fx99=RG9GF5}tc4#x9DCAnWbK_>ADt05Dqka#6
z6EzTh`Ikjrsq?2ULDLSN?3o<!F5+)SAh&UiMO=4XstAC&V5_M6Ww0}~*$_8@oh7{Y
z$AdsuU#CJqpc4^TI?$Wzz_a#67ziZr8UhMA(+UP%XPjjQy*)~z2i^G%aRhYv$-g)3
z-5tCrp{xy_D>7>9WnJ3i0QzKAX^ii5GOQxoe^`oEza8pcoYdjpc@9{4i%IXO<<jkR
zGyADZ1`gUife60Cw>hUEmgHvDZ@Rg{urHy}`<MoND|#bnOj?;*ZK8*-=Dg?4cMP<}
znKtd?j%H^<9TVhr>pR*(YF--*Z1AMZmE>nO<9P+#-^ujhMLyGH$7_r+3Y(aL+PSC~
z;u10-(DG@8&r4<uR1q24oih!(Xrsp8m(n5jCqT;%D$=#{I9rtreIa6r<CU7bLEngp
z5S98qlvkN)jtJ-zckx&3XkQ;TR*sQ|3ki^!i*o(JFg=jT1S)1&V8gfq1P%T7DD@{n
z7gS*lv@bELinOu(erPVBZoWRs)SbNGpVK-DHJCyg7BRbF(v_}UAOZ@p)Da|Wb_W`n
z3<1U<khCtbcm`yRTJqFhQ-$fPZ2fNe8)(@}S)X_?k2{E2?9QbF`POmgZBWUCbj|bu
z0njJ$;h8u1V0`NKhVx&>TCxP|qbjeZaV9Ncv{)Qe(7WWwMl)v6g6*E+ZsNY%geyL9
zgEeL;t}N;HT6}&{6X=|RBcI>KqmNC2juCgI;uj)oV{jRE(dB_X?2+<67_2$+^@*<Q
zhHe;y_evTIF>Xe1s?GjdKjUNGj)L47WO7^3E&S~f-CQY4&pOWMS(Ac((T0*tv=171
z(1_v(!(B7AiH&54rYb1}xHw5^-Cx7R<Ee02o&J&?6`Tyy{>MV8YI6$j=|=W=8D@GE
zPpt2B)|Y-pW#w{CrN>t{GqMC89u46XDPL#GkC_luKG9U9_Ng`Fo!)~@OcGf;@1yj-
zS7<aZ14!V0-bTfOeV%JjHKB6Pr>(aQq8_PqTeK6-DI5N5<I%+!MjK4EfO@1pMTJTF
zH5{3Unv5Gile@fsxh!fPP1q`Lim+IzmXG?<41c%-MdZs?23k2^8hjj2FX?EH!E%8#
zG8J+#IW%m|ZY4m#tauFi8?H<zCHg?k`vcBhJ+&o`jlLAq+I{p|%>2mnI!qcw*sSlI
zJzDY6edVl2d=*AHz4zL{!+qLLM?m~{)B1)prP7Kve=M?0<>~0B1iIHsSHZi`7dxq|
zgJ}dk8Bi*lR0m0rS+G586W7NPo<KHBgb=0ati%36)qeBUUV%LM9D<l6Y(g#d8=2zl
zEWvTsGkS=Kd`G)@$@WUM<(C=#=){%Ts5Plgf?qGvjI6=#WqmuZD2J=ioZUty!{maN
z3_kmb{5Mf|hLG6zhs-Xs1DHKm5<`qL)H*2v(?Z1OI`<}h=2GoYboNaQ%2L`}3U5zr
zpIx=m>9xIGy3LgapBTcPj%rTm4S&}>7-*IMWVPrA3M?9V6EyO6@l6AJ+7i5wMKiiW
zcL5YK`MyQC9-!hhfwlH1Xk^YmwQsK*-2qc7(gD<>=#S3j@H!txP;tkmTn;4z5&^5$
zK>>!qBF504hVUkC`u#;)#2eRFAyZ0!SE>RJuJz!ItsIzAK$BjJ#7@r&V8REAiil!D
z>Bud`KNOJ;^!CNSRPQg`9q3y#dHHn(RPFJivZQXaV8fzU&fBAIpoi!9V4W~ye;uK>
zo?Xi#nibQ2`Fo|IH(xm=3c*04S+Q?j58m%Lkgm+?fl2hA((hk^?O#$!7;R-Tyl3H!
z3Da;6?J{-5w83RF^t?GF&+Jz^kH86?$s0i_ZY<#bi4}t9;02+r5?%1@>BYne!9b_M
zhj)4vtW9H%Y?)8U)2~EaWhNO_I0<R?I!s;HmkP>Aw9+<Tp3^pIj*AvzT~V?i6{p_2
z1l1@D;Er)luGCVsVG23Wbpp(EL|Qc$gl<Pms#ASuZB0dgnr$&RPtHh-1tG3aMr9~h
z)ayR7Iq4&1nZ6Cz+<SgC17~Yei%E-RC2Hg~Ex!LPgVTd!ye#3ugTf<QGkRi^6(1}U
z7kMp09~%*D>Xu|>ll1aPnKf_^iqd`WjYqy)UZeGKi#|Q{JInjc#fD=KTjF<hHBW%S
zEp)|et;;_a%v3wsl1H?Zy3h$xNQsWkJI>aQ%9NM-?Y>szwCydVS^3^>+wgO;9h)CK
za_6lt=FtLt;_c`s7p_MRi3X@Iy-UXOVd=N0=>_YDyuNG+*F}W3_x2}f1&wtKE^E#f
zxeR|^OIPr-Ju+@EX374M@C39BQQ!hT>zfWK*jju8Y2Osi9v?t5mf0!1H}B!ixoNWN
z>}tLF2D0^vlUN}e6e9&oNjoyqy&tIb66+~-KcyoD`jk;INN46MY>aV$XRHF1xOu+E
zC&B5{sHlF*-4ve5i3=xPqQx~CBlM*({X>UaRd_vLWTfJe+E3;U3{5?S9O-j+DGpuh
z_kvB5n_(X{Kg#0*6-vdJ@A<+w89p`4^yl_8PA$yNC6eL9@x>3LlHDGjn5*3yo=*#O
z-!?Ez;SC~hxDe-|4!$p@#i`H^vUHkkE^_+yq>F24w$G<hO@}SqO`MYpORvB9PBl_T
zK_)nd%zyhr$fRc>R<cFgJgnx#&hoTItO4_<h8*&fqA2uEz{YCv68#C#S6&#sIv#Yr
z6b;<s#Q<>pC!R!4Fn)qz8SLMGWF-6sNdpz49A(b65Qe4meg5BQv#s&lQ@3Orq1dF|
zDL(T~Cmd9UzBvX<r@-iG$OoH<u{1``W?(-rOnA0%F%+cxFA4`00vE7?FbWbU8#yH^
z$S~XeHW@<taNK-fJep=nsBz`ZpW_JO#jZDlHKRFu-^)M#IolS$s|Kj$g8ICl<<iZ)
zh)0qv2C{LS!j>)wskDckt+_{35^e2JH=X?^!RMM?G4;N9#Jtvsh2Nx4turGqG5ZdF
zyX6cATb%g1NQDdjcC&6SvX0g3R)!<H_l}g(QnnDcwVXubKB+fL6B>NrV+nnFxXF0P
zPUJNS`{p6UjBl#00Nj4`Kz=yllJ$vJ@LN_r5U>~W&4=mEoLVPou&d_583c$z>9Rs{
z_S$p^jvp4HuRR;J0|6WGI9#CBheV!FNYRnYS(}>WeNp}S@oUI+A%(^zGoI~Jwi(}z
z85DS7Azah{MtlAeEF?$`<_{VNcnJda0G$69E~L#@1Z!}ByVRm;=Mm7k&Ql1(oy~<o
z&(cY(WaIW|Rs!N{cOBjJ4C%A*LLT2-yzP)63}l^gP639LO5;4{T^q$t<L~vTsgyh+
zNDYCrLp?D&%&VuK?1(M4UGhkixOYTPSiZ+TrM5Rp7&dDZB;cDw&kBY_9|J9@&EEkG
zSR0sZQK|q7<bK$heXjLGH$?dBe#yS?@O75OuQ$PYiN0AIJkb@T>jY7=7+@0LH{2r{
zGCq$00Aq7Fi$ul!1Z>HHqWG~7pB=LblAR)VM3scvWaIg?q+nyez9IyCMKdLTQcXKr
zj4W6`mKh7#JRe+-jV<oas#2XQ=Q<7QX?lyu>L7v(<!0)lDzLH7QZJu5Rsongh&cDX
z$DK}6RrNafY<LNRmED4^VpebbG#$wDL>h#b@yq^dWxy(Q)fK^SzcoBO&Mmkx*c>eJ
z*1R$nGKOD?g~~|IK)q;fH&%t*$OTdSzkzCdgzpb;iG$TZA*5d({hk2e;iGT;Ge)Ta
z*CbCdY(bC38cg2?w)|~N+Qa89D~W!D_rKA`t0C-=UGh{VZ-d76Wq$%gdI<n4dR~Nw
z6m7nnyIGwC;d@twP1ZlDD;PgIk$0{*U2(N~#(L1uKsg5^b10euBuB{%BeJ7p?^o_)
zlDx^Mb)CFvyMfozYNC*s4Yz?aR~m9QGLRx>7rF`FD+Vl!rS3*T*EgEMFiv?d^(?~o
z&+$SAi%jl-ro>-mWT6J77_jJZNT^P=>RgagiLd}8xL-yI=u8)!(fLtV-PyR{`#K`^
zXI%GL%V^~~j|$dd?|Rlx{wo#3U5aZ;jOeAJI(>-P4Lm4qyIgo<im4i*s`5M=+jf^%
zT6N!0XXMP&E0QnfvX90&{`f2)_?k5%;L6mbR&a%WND2yy+*#<&!ZcEAizE(LSWqf*
z4SI0E`|5KKFYF$2pc+GbRm_A4wLR48w2wZ8EL`Mf_g;xQi>(EUvoLIeVkao}(Twfc
z#n>%p=xAokwW%(#CFX^fhbAHxvUTIqvnR7pKklA;ggEsOnS?$4F30f2%l6RN*V(ZX
zUcvgCs?4pDvdPUV+b!UY@I%{J_NZna{cd!vKeL_Ud>wlD-9ttLhRPl@$9(5Rl|m0A
z;>hx;|3}+)5$It3WxlCodQgbqe-$YH34cbK5K<X>LjB1_>ZM})>2R}$Df%Zx0~i5-
zdYXW<%?$N2KKgYLYYNN=A;HatEABo*WO)K0awPHA5dfOj-F}WPA?S66Hw7kU3N*bk
zPs(<Br!~Sqr+1Q@$Lz)kUyy!Ye{s_#V`R~B-0WLYsWf~4s6}Np*THX~w<4;I(bOGB
zQ~Yi2uqbi={bomeQeJYCXtTz$7*B_6{IEmYoZco8pm7Kn*;#5jxRJ5{pl=>sEvXdQ
zswM@qzp+~)Z<E<1w%62t<C&Xo&~Kojy#9issHcdA7ej66PXO?Mbtlg0k>3J%dPCqF
zPP`Q@y{V%nP1cYN7fRB=iwb(S3}~6-XFZw%WxWGrNrGIzgL(#6Tfw~EL08iV^WaH)
z>S*ImAV1UCWnU3+3W7DdAg~j_={@{u);`Rj5SxD!v%eDmKXIn4c}y^s$b;RE>*{g^
zTjG_xc14`J(+AIjJ`q~o_7{>di|u0?C`d-&e&nIgUCuo}+dGGAYiW23_}qF+p8DLD
z_zBu&8cPzLwWxn;ye0}lQ6goF(}83QTjUXNg!goR-l0S8tlZU>)q$?#rlyLYwMY86
zU*0W)4e~q!S2P8dXU!eBNKR7<-W@>B?(wZn9t-B^rE+`nfm>*-(ZIx2DFL|qQI*{n
zEk44fjWg#}?yjOBIGDd|@bj`~ffsP%UkonCKXEE-<+6+!^dA?nNn~oDdj2)&&R27G
zx3yE$d1Ku81&`2ob{feP*UibfHNJ{zcdpjO0OuBkN&1ACd0*8#=x*@djd9Y2cKO_s
z2WhGLhWhq(-nXGJ<2*kn#bu|mO)j^tHpN_q-ip)JTU`<GHnN|0!_iU&w8R&-i+;M*
z4kq2l+Pg2tZ&0S2CJNp5tW4v%e!Lvl?`mz3PGh@Z)wfs3d0#biv)|&2o)(F_2}-qU
zCB2P*<1mFe>xZ%s-;4X0c;2dSn9aDKC|hhdvh`Rt6;eUpPh>BPsAsT;o~Cb{#y?zK
z!i|xZ71lFw`&O+kW#q9`Z1gDze>*yh2XP&hy0v!=iz7Kbrd4hh?O~H!3W!v{M4``Y
zmOq|9aV1i`+6dGZE*;+!m|Sxqcdh!J`lrPL6ym(DQ2^8=^_glzybyFWXfZ~lF6qY0
zkz9xOtNP3VTyl>9fT6?|Yyk;r_2HXrUY|uxvlEqgyb4AVeVy+|^ZZ=2{372qPu^hf
z023;=C$qnfKsOIQSSD9SS{oQDno^PVGhA!8JMtMS_C;sM!YupDMZwbv8LbI^X-%?<
z$i~j%nfkH*y}2=CSl8LWZo-&si}gvA#>GDKWED2A9ypQ2Y#8jfaXG(W;Hu^I694^D
z*j)HT%ETFe_zSdY;6yBc_%ms@SOxv@FPqLmO!rs{F~`TtUX9}Gf3WqLR^erdD-Sek
zr%3ni&(BsYya!~dsAdIec}7R2k64))DKOlQpCe4(^`Cb(`Oy&DD7qxgrND9!_Uv(<
z_^ifHchcUEDYwa{`ux5=I3H#=+@rEDNA9YkTCkmwlQ?YDca*cLF1??3TF!FK`L%PH
z*iB}N2WPkg_<k*OR1odQh3p%<byz&@jPr;VemeaA*<AzoFXl5mn<OipDa>MmbKNn=
ztE5tMFLPro)OXaZa?&!n+A^HOKk?aPD-Q#CoE09^uG~MqH#qc(Vrr-u)~Z;$<u4~+
z(R1A@N=yWnGkQxRlIY!5*DvS4^t*-N#>MHoZ%*V2Zt@4!+KBE$L%w7<XT{Q+)`&_~
z_3W~@HkbG8y42G3)xWViTj(UlgsV@y$`f&A^e)Q9o8-Syx;S>sB51tDM=PmrNE`M+
zv{gpGpx|54{@&u$k^UMBi{Re5MH3biuIsh(>PqhezN#a;?NLhSf)rPd<*=Ujeo&d{
z9%JV{EoM}&b0u^DH5P7GV|c5Y?MAJkcj#ljAAAw+#0S3RTMyhnWcj3+r*!7@|Cp;!
zY=91?n@c=h79mAEDxh?Tn|D-pJkv_cE4ai^$XSv{5!qbZ*g_7*)R}qT|C07}j=^zt
zw%t76q}d`d(7kGXHH=&;RB^Db(;<x=RHJ#xO_jY;55GX&nE1{=g|?#WFIyf9WLj1u
z8;vG<pyBV9M{^SSEZN6DZS@E?o))=JnBClFlKz0*`59C@TMj)L@U^DO#@Mv5S0`hQ
z@EDb}XTC+!l!V-|9(z9I2RYW_16wi9I2B-LT5&R7PF4u7HP~_Qe0D?mT-1VWbA6xh
z_$QwwN?ao1)B1xg(d81e8p>rBh#y}zm?rK}G9DOBm~{4NTZ=ZSxh8_gJhGrH8n2nS
zw|w*(l_JWgxz%bXh};>y8&h3I>1bdoGH*nce{|aj7){)IP`K=wu#_jBdS}s;z3-U0
zgjwLQ`ds0Fh@H3&UOD~EFm*LMD^IfORd7PPwTqW3@=~AoLn1rD*{vwz5&I_V@KWW5
zSTPgM#KFAQz3&-`+2?+K&h3awW;d3?D}K4W<39N+LYO9Kl;j+4BQXHp7SEKjs>WO3
z<>LZLRixYFuDa$|cFlZtI^0#9X}wT;DsQfSzXUFW%`a_gs6f`t5z3AvD)&Vh@oQE|
z>`25~RC(I%TF)9hx1%SDn<&`&y!X8^!kbf8$!t;e?#U9A1w{|*R!f|*+L;hjJa<<S
zC-7l@VOH!=F|5Qmc#*7p)55cod9Jn+(UwKACzo|fuS{lFU2k1_H(&mJgMu9O`|Jb0
z0Ds)L{CnrJXVv|s(P-W@uWdD9KUa+;%&Qtvf_)Xz?@O;a#=u=ZPK7*qIbaO!EnkH?
zCN`N&kZ$+0to_ZabbWbqaO~Ofy|HIQCNs@}TqFm$-PCkttb;d#tjWKwJiAhwvZV*8
zhr;ZG=%T1k2`wtQI<XdXTsanF&GiDaiKPWADSio~e9GTMR`J81>J6gm`>dCP-u9i_
zH(w$)4AL!$<0wYe-Y+&ZB*8Q6^`S;8sjXS=Cn~)7Uk(%ozJv!XYj-P0%TK(~pRiS7
z^pIb+3V?o`_!`Fwd!L>aUnLsUcp*SW;%Uv7bu;&MBvCw{K}S4vs#j}1K{i*cl(!yD
zcw}2o5lL?_U!fv*VrS_tZDogX-Hcx`-43$Ma9?{IShgR``x>uZf6eh~!crq?GS(rW
zrrdH4=^_6ao?o9xUzkk`%thWOD&yADQj>Yi$s6WVzt!~w8YOv`a<nrR^vQi3TYBw_
zni~*hX=pzw1NF_47g|f=zBR1zy|rX3@@Y<D;QRKn3|3K@6iSEwP(UBI!slIRcCGg3
zvLk=o{vsYK?{r3Tdpn_C1{iYeh(z-SC6ufCM%|Yp)z90P`G@w=7TaD(C%}=|v<Iv-
z5TUF7iz_k8?6(92yZis}GyWFaLl4cQD%E0ZHg*;N;%9WguzNU2_u_GowYR-&!{Si=
z-c()?5!`L%*}tx%0#`gtij1b<y{3syjak4w3OG5S5aoXz+xxHNLVmfp#S8#=$>2)T
z_4yri^(22Mx=Ed3u9LttiFLOmJF1}dfdDui=)}!DA4~A>C`ih+$eLG$uG4@^cU6to
zqd5iAxPyaFb9<_VwU#Dz5#H&&?r)8VKMp`r+n*z+ygGX8Dfj}NF>gnfD{e>Wg>$lT
z_L(c$tZkU$RGzL*D`&Jc|2$}!M}cv1>~gu%R9M(;sfy0|6y~DO-(bE0&vukGbzJe^
zRK9AAI*gK|lpnf+&uhrp`Y6@*F5gqmlDh;%AshJmv$9;XUT0XU9}kz-+oR{T<4oH?
z-O{nk5*={dF+$k+8n|cIoD|p4InM3(O|G*2>J`#=I%`^w@SS0e&q~bdzKaxQ*+fX6
zoV%`MSrnGn4z%o72ZWyY@w-80BO;nllNTm$YT=W3(3ga233_hJ(ba|6b+LZclQ>6z
zQDXjPHK<tVS@oy`f_3a@eva!*O>k{Ylx64RerKe(mYBQo3pU0l%I`(Tlh!9ZD^U=e
zI_>i}fjoi<{LBE5?+FLs*1w2N{NmNsTI>#$NtL?1@0zC{oSX@iIJo^I5u=E4ha<?X
zL`<r3fUyaHqxs9$vz!_}h#Wf3e^12xO*Vyi_MZMlaA{cyG$9-)gn97~hnd_O{}*ri
zg+ay;keA8bloN^(hpqZ=d)JmH5VNUeZuQ=(XBQU?-uvV<ZV`fg#KgPov#4@l&@24b
z{H$1w)}4j1V}E32W`cF44zwLlgxu@*q2~0q$N0#8d*J1jD7shJz4?tt^z5YJ)&0(g
zb0(T7-@ch7x@D_Dd4w2p`hp?eB4GYz?QHe=;A>heN106Z&tI)x`8}Koy&ngDv~B59
z7g<i6%gYjQ>x;3fqt;m+57y}42mxXUBicUtRyxnor{{3JF-mWBqJzIAb$_)Nlll%M
zX%Kb|2IQC<=^4=n*{Yk}oXBR~ZXV}8mUy4HX<?0fiVDBy3B3qqV9BL|OMYlRBrMD6
z&GYU&zkjWFe67Eaw|rbFJn^D4eTac1hpGo}DyG$)bnXfre{i_0ENn3k*4!9XLN`+I
z!JA|Tr$6+_|H#~oDyetC`3!B+rws9}YWwCi+eJam;oM!$w`DG=Z@q<99jaz4!?ffL
zmK+s4x;ESOM{i8n`jr5IAecR``<wFD%FFLlB3xB2<%p3Q^Xo;!sr^saMp>>!>$SXQ
znDW{kG{oDwfwn#@reYHT7&KTFWP##LBTP&<rCWaa#z7X;&rMF|Jjk|a<5o3kZ{X8!
zS$&pRBV*8lXi@0bXcF^94Pjr*#7smRuVh!YqT$gc!G7$<bFb`gG#i^6`R^te;$8l>
zK6{$#p_@uQbVp`quM+zv?xCq(;NBF-6J4Cw>gr%6<FG;L7`YFd&#jZ4sMwA+B0u&%
zA?(<v_COzDNQ5TctadEho*nkxP5A0ABMS;J`Uksy-RsW!DF~euj0101<<4GtISLKI
zT>|$B;HZ*}6XLw|B&9kfn7z>WP5081p(S<Ygs7EEK(fHjj@_#L2rEH1h_)^rM5(}f
zM&T|xdBjICSBZXc=^&aI)c61=XaFe0t~&op7*?dTC28q3A<ZE)ei0_w&ER48T?n^p
zC4L60)R@P$NX8VKPkT)WY*=ThWm9jphl`OlvTYXbr?<QgU+fa7;1J`7#zAbLXEp9A
z^E)S-p!1;0bCm$^_x{0qIj>hWCqT`af56QqoDlp^xcRr_(BFWnh40tNzv$f$@M_<m
zdM92_)d%vSZe}swqy-Xz1YSduab>l?fkrr!qcF8TYgCFebho+8WCFe)$1<r8q|x0g
zbE{Gx?~bl5EMqHs=a@m(27LbmDfB-hBmWZ#`Tt$*zgNiczjR}ihpB8P3jyT_mtEch
zm4T5^D)94VCjAwlw(auED|Zho(b$YKTfxBV59<GUo!~#pPA>mn6E762gghA(f9&dP
zcp}&LGwLi*pK>G-$tjsM_B%|>{pIHY@$FKen$YD_UkpFJVcqw_9KFLn=wTTg^MhT_
zZ`Ljx*ot!D!@drn$mKnqj%xHd-Ib?RiLy;VU!W<lFBxlM%jwX3%b!DixrcocBEUxI
zMGxd`uU0VO&Bows{)8P9D+Kkt<!IPn7UvX6&YLacQKEI`7q1UUb!P-^CKQXN2hSPR
zDaigY(|g&6d)hV*sF93PfZ4}g^Pb8#=}u?%PQ-y3(I!xYifD}Cugy%J@=NP(_+YbY
zVpvXjc31?~iJ1AVxhnuL*-txd`B}hsf1M7Jg-jdFciQidju$Ug(rO^RRAEdOS@S;z
zmbu^A@XqP5uJH6cF5hVxTANlaFpDcX_V<~Yh&1pe$1kigG{Q9ta_T+tFlilqtq&t8
zi}`gJJwUJ(N?**(vBFMp@+qsJ&B2Y~dC7ubL;;s5!7la89cK`R^_jSrE^`Q2F2dqh
zXP$Mn0nF7%g+#3(Ql|0>lSEpwd_SA(pglAW6d2-8`NtM?L&n?C1hg7Z7b-)*=IbJC
z%uaY4ccB+aa=-Z6&+IuodMWIq_WRb1t%9;S#0<M_;_O=gy;>z2b}8(T5CcF)Bi#$y
z{@6LUz(Lo&mJ|Jp`L*&}3gbz!Mm3d~BL9ZdWA_#cqG&@QhclKDWefxVzomxlP@)|E
sS`hnB1pPnN5beY0xeb@xPa56Gin?wx>wywbjtkPdrLSJ3X8rU(0FMhTzyJUM

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/images/intune-addapps.png b/windows/keep-secure/images/intune-addapps.png
index f6569723dede5a195fbaceec81e8d5e673bf9325..52e3983adf2dffc48e79995b474b40dcb4bdf3ac 100644
GIT binary patch
literal 8839
zcmdUUcUV(Pw>OFcB1IIWgNk&dBOOGli1glj5eQWXT{;8;Dj+R{-dg~v(jkOirAm>|
zRZ6I#=En1W=N#YneD}G}{qsIqd+*7tSu?*?W@Tqqw7RMyF(C~h4h|0S3ne*C9GvSY
z9Gq*932?DJ?=PX_*vAb!nO8D6I92htFD!22;Naq@t7yw(`*CpOapbY&i2d@bC69w`
zVIP{Bn)29AM@JQNA4hEKSJTnn+{e|`6$k|S`T5B^f>q38RJ=0m&0`!L!4_{qExp1l
zy~3@$Bdmc~inQ^Gvh|6!^^Lak1=;&yDaPI(OR)|C;MW0huLI*81LN(zGMs|m0f8V_
z*K9{H*y-&%r?>B&gFgU*696FzE+L8b;0)K$MAy(H*RUkFu#Z3x#0Ly@1jFpXRj%3X
zU`P27FCP#PnC<Ec20Ma4KnMs313R{7yM};cz+i9)I3qLxngNc1Kp<c+EG(rcEVVcy
z4NE0a$vI$1K~#E46r>cCQ5FL&i~U9AahVk$2rMH%BQC1~41>MPu6&<U`5_0Em|K;Y
zSM@Q!I=P@arJyFY@KZ*9Ra()f^rBiwacxFPEwrRAv$P(DT?PVb%Flqoz!eo0S!MM(
z<qZX}&oCIQzP`SxttuoR0ftRNV2F%1EG^g9cht4^HnkzL+oxa%M14o^=dOXzU4zZt
zgRsd-7-AVViD_EEAYhP57`UUpei8<oYpd$*sGn-j#`2dDFw7*Zqjz|?x1+DWe;E55
zo*15(ni%fIUK0}&Q&UqDQ?uC5)a>l+)CBgLo11H&+CVI0rZx^IF_<|FW@D;-V`>Vs
zfWS;nVwMqy8&ep}<l5TWkDc9(!>eTs=IU?*gIV6&KR7r#K0ZMo9$sNThgVmB+zv4q
z%pZaDfA2QTJ@XBV`j)Gbfd>u_N$0QY8U>s3TWlwlr@X$WmW!>Yw}rb6j;n<Oz>^zb
z<M}|4o0nVENgz-a2Z!PGg`A8w&~!T^I@4Ou1n##<Ep8bZHgl_C_w%<_WEeEcfr`$p
zi~fXS`mr4Ogjhp&`0yt@rO+Gd#v!TZMCI?@WH)#YAP46QdX=VnZ>E2gY!&OB_)90W
zx-_0#ee_!ls4v}7nTjorP4D><O5yUo6D0h`0-oLkL%uT6M-_0F0ktS~n~QIAE`ACB
zjh$kIB5h+PjitVB0++rh2^z_LF%SI4uy^jmQU(-Y69WY;>nt5rNI<&5_^v16e0@eJ
zTXj$JpzSBqrU{V=?~oeo!(kLIc=C!U($*h6xR|j0IY-m>{hRv{J&dgz(0%eSB>O%-
zbAWL&vQmC6oixYV!|G#_8(cbE$6uMsGLVp?r=MOkke8VUE-kMS&kkL?T~uhrxyU83
z0xGmFK1-iIyv?QRBGE2?ep}Szhp?U$nH4C0`Z@^%-Fe1T3bVBe>O;jkN`Gj@uFMK)
zmk2pUP>kGs2MsIS5j{>|umVV1fi~Rfo*@uyQafPwz`O&;sb&K}4>@D$-HHiWln80L
zV?M5DL3mt=6dj0X1lNI)w#NSxg_-UT^#h@bsmf(KPVcMHxt2|X_#4pRLiE$O$Q4J<
zi~ci7-DU%?InYMptE_d$%4I^u(lhA}mr{0gj$NSV!GntR5<F>jYG!H3r*A`=0(B+S
zWTiCUM8B5Z|IH1SASBp8<G=CE|KPg+JsYk9S~4&iVY0#-#<tA9_Wx@2futqcNZ`9=
zCW8lCKUW%OcFx7jbGgMGH!3!k-JE`|b#xe4W)-CKk=VLhh$SGOS2}+7`C{W|8F0wo
zh#kjDs+Qh$a4!@Z4t5~(6dlfw;*|ZG$?w1UZ3gCL+pm(GK!M?zCRKN^PPNlQl((s}
z5N(!q@fnod+mi0gRZ@-JQVQQLUXg2b;ti(Mfh`Aq{F>nI8#`Y=1|Ziag-<M?{8bW+
zv*-1)Zfi*Bry%_Z865_4x9G|i_zb7m^zbL>MA^L+Q+W$mmAR;)$RubYQA~geeREwX
zhNZQrfD^hKHbvV7%1ojr4*~`{yA<|0Q!i$yiB}fi(xPZa%GK7lg_k&H_FMO)9FUJ$
zPl7*B?RSVu1WnJ0b%ob(<QNXV`R*QL*H8m~N<(YhHS{xDZ_L~(zOnP03>W@}X@M{)
zeIJqe-T4pfB2iYp?Xpwzb7lyXsb@Sst4gl3$OD9f;so34io$^LeGAfEak`T0W&wMN
zk^y2Q-qe(0VWC@3Gz<+v8|DHL?=+)$C&*0-xu_;{bDKk`@K$*iW*gba)cXDATnfD<
zC+=EQHMx7a?r2R-T|EcuXT<T9tOr^@x>$jmT*?V6zd3xns#)MF7Y_Jl_ZVlFFYLA&
z6L$pOu~~@ervFwxdg(A&qf3-O;%(QSebyEdu5!ec<;(DDt<p3CD%?qlgD;{hKDhQ#
zvpM+v(&xqznf1Mnfv(%xB<-WQ98Dq;m19y8@w!C9<cwgEh;tfG`YPhYIl|DcbOmau
zshjFdKLLF7keyLddYP88IHC#iGso3uW=T9>jN*6PUKAV&%;k7MuN_k>zG`D)q*B$*
zy4E05?|p0^1qc_|*L9mPxp+3rr_dBu0D=atR<n#Jnh1!Gja}{No6agruf^r@J=uN#
zM1DF?c%oAaNR^=>;Yy{qoYp+9)m_vdQ1>pVS7J4AS&XR#QmjkNqQ_61>=`=5$Wd3v
zr<T~T7s=)jmA4fx$j2v4+l!A!QtmzBYL{hH$jTRrjDK6m6(Yk%BlXIj#u_iOnS3RM
z%}|GoSfHEaoo`(SJ$YGe&q*lW<GTZ8*{{Cfqm=B_nnALv!{|m%c<w7}%_JPC3RNNd
zW2O6Ddc;O&#XG_x(PIx6r)D%ozN=H_TqDU{`bf&#tFNpx2=)}uvF2A70Fw&|JYUZy
zZy18w)PB)OtNyVWPG1a&z@vH_xUZ>{`zDBM_kB6)(AJQ@Y?EsTMrPQZVy(S>zOTlP
z3p|;y%xfy{cnrJUV(7N=z>K@0B@jKH5p$mM!N{#of+o(F{YsG$hF@6c?Hzd5c_e=H
zJjCMZkUa&<Rl;_H%nyn0vbHqxL}m@cR4M7(CSWe^cKisblK!8JI?aZm#4VDKP(@Ks
zH5ikT)Wc99MI_7}xZI*LEe97apn(gw45+cBzHvuRYLn+7jkJJv$}bq_Kz5Z4?77Vd
z>nvNE)B>RAmlVktC~OGB@Xa<=m8=XG9n4zm$I~79V4&O0U1_s*`qZC!Fhyuj8^(Cf
zCpStSnmsS~$@Q7v@uz(xn`Pxz<tIpYq<Il9WgahO+I(<!Z1W^q`{t`IMGA>mc4|5G
z$TjBJQ4-TDe;Z4gw{O#Qh*!xfHi_O;b7;bSpPBx!y%AR$>C%~yNuBe9+OzLE&+<)^
zSmY(Kkh}lU?H(nRLHyp4e|x<}F8YvS+6Kbo?-g%`Z*AzZI`I0o-ZBpDaz;so(dARA
z-dl&=>4rrnAHOQ<3jH)OeCg*l81kOerYURQI*q05^`pwIaAjW=@8>jbnQXPM7A?qI
zz=gsSA1o*+f&B_alvbKKuNRV+T$2XoBY8LWf4MD~d*+?#Ru74h+^GJ<{Cqn+>UI#p
z=Sa$2QxFCf$x3!1Wp>R%M3VJTL`(Aa<p!{VcvRR-LNHiMAuHLe&m^KS-Mf9Gs6WC@
z_H5<UgiMI@S^8RXyi)pHH`TS~{heo;IjpT1Dsf+ph4)AU+#}_C9E!3rKZ+ihO+HG#
zoBgaM$E_#Eg4E?eTpgTIb-%ExU<rxqn8V;_b(0&%mD>Bw{M8VJkQPdr^Z-YkYn8C_
zny(uFtFbrz&$r-DjCnxud*<&Hn86J^qX;%^glhP10baa}sO|8D^`*>S&#2;iQ^397
zdOe@aTIwvu5T3jlTtD2xWjqf48OE!xEP}MOZ;m?mEdL`Jz3*_NVGC||Cn4bGLJLp#
z(H+PoRdHHR+DfRZ9e<I)Z{Qc>`n02(-}{rC?jE|2E+N#PEv|Tc$T6ASCzF|x!i|%B
ziN40D2sp&<%qu?lX#HzGupGiNKDaP3;i-AOaCHI1xbg)gZ2Rs%-hbfRdKY0Ml$4#v
zJ7E<YXY<!3dl=nULlgG<deKKrj4Vm<zWs{xg#}hcjHfTq+ct)P<7p$teAGY%`dur$
zqw&ORj-hOW(fuc@n_V7S;4)0bY)Aw9Rx&+pdT>_73m-wDHU}Z$;E46xOS7qI>E*Z#
z-GK{zATw!y2Zp#Jebjv5!>uP($eM<HNHNm8b^ST(_`TGR>7nWuJvNt+JaktwG#@F9
zq}`>zf6;T2(+Y~K%s6s(3DlxnibXIun=TA-&R1O8JB@IEF3x2SiZE{QGcoIu&HTD1
zZWE>^B;#P?=sU62%O=|Fnj!j{ok232qIBI9#mjuq%(#@a0Y%L_FiKquppI{!(%NC)
z0*kL|cB^{11}~2(dSw~S6*tmHcQT7{#5Cz4&2R9?q%D5+_xre1uV~!wX^Sgu6^WK_
zygRn{T8wO`dnZWuYd?`2m6w&B-|4_D>IW))xr2DI@=aUXbT#Af&4+Vx$%Hab;5`gX
zBW>R5Pq#}S**iDe2~dUcY%svL!sZ{RAWn(Gkp}n+J@+@JtS5|bHB!R8h3D&oQzgD%
zgTiO{Yp-Rren?<daXV`+vl5k4e5VH>?WA8E<gBWKjNDS7)mi?O#(xLi`)!MxyJzVX
zxam8q7x7)Y+4rrb)x^nEZ&8*`oMtZCd3!TXl;PEwY|87PYapnhYKJLWu0hn#1Q5q=
zdS1it)w%r$)=lHUBe_~%3^%V?ik6SY<>P3#wR+G2pLzCl4pLWz&`lOF5hNcAlYFY|
z{pp<1D(q{yg}v8et|&sLrI%Db&k6S8w3KkG-2E236hF?}tMA=ncSMNpSP~bLK~Z%J
z#lj{x&kB(<0pSjQ`p5JKccGw2i!Tx0`rq@E<UDR3uf$h$lDF7fI!>6OP+ZC?7U^nF
zpo=pc8RD9`GzA2P`MZPe#>?4w1f(nyD<(o~R%NVOZZK9DtzW4FF=f)VSl;1Bbw8{5
zIMhSwbE_fUH$9sq&%~c!I6iWs{LFT1#H!R<EWC>#(p6U27AAR26+}>$RUd0IsV?nL
z<hQ)s(KrpZ%w=)c7NViXFXOX>R_nC`WS^6X17M*hfFU?Vqk<ke@pj*dE!zw&P3gBJ
zst8X59XId&DKF@{sc#xWelGIi@tqZu9=<f@qK-I+56<d7L6S`me}0xziAnP)SXW3~
z%mY&Q40<e|Ww^vJtBqsbtvDP*nL9K0&5&V8=|>+Ah^I3e)vGefVScA*K>dJ_H0kI)
za#9c<Tx3fkB~XnJYf!3M=J$)5sUGNI8!KWeEGnx=68xlrQEs%go#Ki^5RJPlN0O10
zI6Ln;Bq@X6P?$AEDRm+E;EwlfX`H|uF?aEI`0qd!Ms1LKlLU_dFloat1&1#{q~5=j
zdPiv?WE?jGtT6o|uJQGd<c-w{EBCn6Ym_R7RFmAAt>)VR786J5+74nJN9VqgD31f4
zfYgt)*&Bq0j+|HP$GZS}Q=rKTKbzk3o%aVwI9uJ*O`&+(u;CRG^4&S($*he5;aZ)u
zu^yL}$1CO0kTIa?^21y?(w{NjR>^Oi{B4bxV=8}Mw#*onC%5`qu#SaJ5q<waD*1Dd
z_*UMXRZ>lYD#22sTV$ArOZ?0SHyXpjKWb5Z+>7>ZEQl`OqKB_6kIdX+l9$rA^4H1b
z0}$QknKkPPcBST1V-HgzHFR@#&=u;(GZk#0tQb?53k}hkRNsNsYx_G=(Im^F?$y^J
z>d^ZqH!T5Hg4t-}$)cB6-wAMuNYpF8q$Aa7ztAsz7;zNQ^0tY~gwSRSTH)lQAqji2
z59bJk*!AMrpr(RVwOi%D)}#hLgEr*em@Q51aEF?lrs=+~5|hRrtqyN>QzxCh^4s(>
z(C4v4N<{{ydp|kOY>6+r`@}T!x%TmHWOH}fug3^**)ipDQH-1uK#W#r$%Q);2k#w*
z%od1*XEu;Y-Fo`GpPBpep|R~Zwo6>6w@iy9e*3&VxA?W3inP3DYhL#RbI>rQMGqU0
z>V4A#hFHN<M3Wqv#^ny~_EUw4{{+*l+Fi|t>2|H<pf|(2sPBTDHedV36riK;ZF|{~
zHjl+(_ZyOl9bJ2y(k;A2eOByR|8u#)9jSZ`iPsE6#C>bHx@DRYKiXf`eIw${F{ak@
z2l9c+i7VE|406hNXt%UuFWOW3w)`OgW<EXmN>!ddia1n9qVSVJw-Y?!Yc9|V@SlIj
z`7)6QdIwqogm)M}4XXx{FvMm+2I(@}=p52AWq&#yojtQW&yfmn3I2Ba-uDLo27;{y
zQ+gRmS%FYosNsLA(1Pdm!XOqYo;ZLYbnf{{Ki26WHQP)9nwHLtIz+w9v3lS2^(?tj
zY_Jr)KX^poqT9&xc>85EMbPyL@-`m$2!Cz=a)wbcI(43)41EP!S{H7(AfY{t1NTO5
z9Ie&1;w_h*u#pJer!Au~%T1V<7-B$&`yL#j<l~GvN@vea0VwtJwPNB=OV1shIidmm
z(qY_{geVigb2BkD(nFm96q9#y*YkNvILppEn)-}A>3KPuodh$4#mZYc-8b#K9oZ~$
zvEPh9yE}Dur8CqyCUs;S9NYazQEzJ-wKa1RnHc!oUdew*pPaoF!LBRh)HLu$SBfh(
z(T_@9tv>O1MmrNXn@!}Uyl}#}6ww_6h9Ls2!#kMh7wk}`yH-)sN;ZJNelB%*qYfx>
zXks?YiA>C&8Ikq#tn-yBt2!RO+~@U4_5HV#p9N>XJ#NY#H)m<qB)#>-UQus0JaP2L
zp6urV4<3<S`wjA8donqEC*>NEfju<vJ{sp40qnZn<UQ?vK)ojme!uDv4(ogp9tJ_7
zCR1t)AkL=1D}J>;cmwlB1>hjVDP{D&&og|CQ<3a-=_3mjf@?veL2OVVl24y&X5y8$
zq?rN|KD0;V@>!A}iZ-QwJYFlTM|ynb;FsHeU`bs5l+nWQ+Y!~ZP9v4lYKmmH=obn`
z>`+7e#z-AS!H4v4TkQhV%WUd2Ydeu>0FZ@!ycADGG9_w8P-T?tu9hbXx1b4A(G(W(
zBbOv@p?l$mvK}+$-9sH*#7rQ$q52iQXR)1=jzHa4C`tEYP)~~PGRb*%hsI(Ir^H%N
zf5Fx6_54Q`!CEY&!%C=A{k1@6dZ8;skE5yjIlltvxm5wcwI{G=LW<yyHNy~*5WftH
zW=f0W>KP`U?h!m$&>gqFCj^VGhCU--mj)iG_xeV^(G8&<@=Po;SrB4P^r_nfpKH6f
zA9PQOruybrZwfOkB)kNTw?(rzxLI@ZT$*WvCwkaIkc4WdnRmxzQRiojGj|Nl?{ySM
zP=2}6hsPHNP#x;}1N0TW_E@an@A|h=GKyK~+^da&BucjMiNaEa;{?r8^+#4KPWkUA
z;yck9OtKxFswE!Kw5yMCrH|jBQ-bF{W8A`5$(}M!ZxG-W305dC-?Udks6Tk<-e7UK
zo8?VjnMMe4m3JF0du?uOb~*ZhC{d+=QzD7eM#n=A)ewBvKn9A}A?D8Y$W~el+VR`C
zS<7RU$F}KF@!HVA&ZR569(lTML%6~iH0`H;YsD`!dfKt^au=K{vtIk9hgMvHE@+16
zbR0+)&EvFJ&&sWIn$Ee)``M{DU`IqlIQ0yvlgE(pQF4Yi*bh>0D{X!ZI24X6PEeTV
zOk52OOMU8AT3G85gqywYQsK#Sk!58J&Wb@{B+GZg?Vi9DhloN)KTCc$Z8PMJ{K*#%
zA!}zZc&V4f<l6^{<CGGYXXSkYAGkvf5n9!j(>iWh(GM#15>$x2&N}-_e4DcZ{bG=+
z8qbDbbkC!+3KD$CWP5BB?di!W!jhoqU>!it(eU(sHX00htY&#8azxXy^$9b)%cqa(
z;~VMxUj0sVF{Q)&|9>ti?*hkcWVSA(bnI<lk~*Ip>RvF~8Zctg*4(QgrccO%KH6X{
zw*<8b&_{)?dRKE{2e{Z7FzQ}B*dnZ}M+R{YoWYRzFZ5t76qs~_sYnWGrKXTtq+Jh)
z@v-hjaTOB3ZytmJbN%STc9?V=>t0m;DSrG3)b^>d(MO2HWzqktRYKoE)2J}!V*H*D
z%$~(ZD2bJ|$!~2nLaWj3q%2r+U!MWO=fQb3ozqSr6}0Q&W}J#FRJdBb^x+LwK*cbi
z-|I2?N|}O@YWwBq_J`FTpUE>roHxtSX5f&Hr`M(n(CqJxPzbj_x>ICPRNJ(bz&MQC
zeCGUo>{#1AzPF3zX65F^IHNN_%FQOh1Id)$EMacwanaqY0g&owU<^I3bXvqn!~>d<
zC;Bjo`wS-nw@;+JR{&GSM9%PmnMq!9Qxo4G>pCO^B$dr?4)`Pz+*+uKM0^;-%Emsp
zoMnrjEbnoEI8US^4Mnt>>Gq|ZjPvQ&A70lBke3(U3D~*29mb=7?zDKGFxbiUvht<?
z*1pVy=(x8EE5oNxpq7u>D7|}EnddDk7$$~x==iumbp;B;OcB7XTRpL(RcBa3T^j!A
z@r=qW>aX+HzTeqfI>c%p`|?f7i%RY>W;SwM*PFtwI&p%bZYuzLG3}@W0;ZS^RMsP$
z#Q+9n+dD-$iWh;$_@k7TK6fumAK_82&#-4Yb;mv)y)*x8)H_!_Kvz^&6Gn`6^?-))
zbKfoumAAx_s55VZ3h^)nlSdexWyq+tuyNX~r{StLbyB^LP;ES68S9ozSaX+E0SoK+
zDRt(`8oAmyr|J6JcD4IoIEaNqQ4;hn3Ne}+=Za&l^R6-QgtC6V=8^|bceS+TQSp1h
z(V*8%l#g(QTL}wCmI{&Y5i>_fQ$Wp!5NDAVB(-({RWQH7HGvrP`xz>G+lSRct_pK$
zcSRLb@5V6Qh$SqejQ+M7<0wL6!WHEJBCQ0brbfQFfB2(k!Ho-e%}&%1-BoBn*)@<0
zVqDPL<@K&czM%%$aSuaoa+tb2S;gTIZ2p=q8Z+DMuER53hh)^?k5GAOl)yC2_L7Wm
zQB&e0aaBnNZ6>Rx4%z(mlpORSD0%Cyo=`E+)Cn)N!eZe=?#-p5%c$U&)ZDtRr7b1V
zqG_cRM<gDCIvgctP4B4LN@-ZG$qR@=9%5rVImeuXjKkD@sVr5sQiIr<4O)33Tt`tU
zTwE=rZ8(=kC%QOyc1bR*2nvGJdL}z&5BV)U>vQc(=Zw6m-uyf{P40AwX;ZTK19FMY
zk&Y4_4%+T`Ms+bHq!81(JWMN#I$5?PGUM)5-<#(5YQIScT|^Hh73Ab_)Kg?SKE7&-
zSu*x1ps{;FScl#8L3{&eO3p{2xj`>QXE~KG$-{gj)%0Mx7lYVTU=4s{o_{>DfRlcx
zFfT`^iY6glL<hDe?^?h!X*dJl4VI%bN2;aD&@$r`PS_k{{O8zn&Z|l=^_>Gwsh3uG
z9oW<`%LS&s@ke49v33}Iut_)t5-uIWGK&AjFhtqbR$&V&zh>+mPmvk@V?N-=9-<KJ
z%D|dAEQ4|2FNXcU7=D~riq(R)cRX)8!qX>hv1ncYmiToxv95bTYV*f>zp~f^EEpNA
zZp{YHSjLInzX56e8%U}VYAHRRFEopDW)Xym`wM#gzf08p&9MDzD)9d+0rAx%+nE2g
z9(E(WGN2J4_?0n-URz;PG`2Rhl=8;{`kaepPqAf-m_`Z=@xKObm!m63{?N3H!bO+%
zx3bc&Il2GV;kV)j9BawBzu@Tojq`Un{QnUBwJOCwpqWAc(!Kg`qx|yDpT|AeAbwf%
zm)(1QD~Ms;#MAeun}Xc_;SI`vTIyFV4QmjycmHOPU*)u4T3!65)yBUZ`73aK(@I+S
zA6oq>3i%s6)}xsjf6tG_U-Ng|{0IJ#!G9Rv5&%CJ*ArlCWgB?z0uS>3rIxUr0rqDn
z=)7Zu*Os^WR9dqkd=YyjHu|THeyc_0v?0v`jg(e)8=i25y45@=LsRSHt=P)wqXb|?
zJwqWdq@6i+Z2C<L_((fHmGJFOP-d_VFW`O{g*5Jf`8-!tjm|~P?(&FU(EgFw4_O*D
z3P?nu^hF#3^Dy3zzYyhpwP3bB=AeX~5)zIy^E+7a@mvQ5Z7fOSE{@2uF-Tm+7pj|?
ztyGKoHYtFDme?5@1p)WF4cM-7F&ENH)Qa^osNLb*8Xbu;sY?|;XE@J2yKFS28HOwA
zii;-KpA4SLc@>c2SzB_d<hP%Z)Y{X<!B|B)&P9O{p#utUT#-&BOU0Ye2;W8$kz?l6
znlIw3%1$>~1rgHcsIRaRAG!nQvXv1)+(sDpSQ{f~gF=6UPK|W2@MOp-4{ML%XQ+`t
z6`BnRQg|Es3@eb`35Z1U!KDudBeQ_2sFc}aU@PFP*>1eS;7+|Ms`BcwQ9zj#yz3jj
zbe<NQ)Sxm-QcuSLYbc{iV1<1{^(kAjfc~Wa&$UX)gEta4PdWs2FD78!7zXUS<0nk8
z{^VY6E~)hp^)HLf`@(<J>#A<^EMBx>0!a%mFj$!jacJOrYFiSrYIIW+5z^YDn5pV+
zaImwV&S@&h7`<eiIW{j%`)fr3eFRUKAe2MI>SG5Mo$dwE|H{R3*c2~d{o79dy@dSV
k)FH2fgbNt3g(}9SJ1otFe)Cz_LOIS0c~!ZJ=jI{*1uw-)NB{r;

literal 40662
zcmdqJc{tSX+dr(`Qklq7LQ^E!l0w#ykWiE*TL{@hb~Dq0l&uI!C_?sqW*AFl5JIvW
zV?IV2j2R8aV9d<(9xdPR{X6dad7k?@?)#s|adc#+_qCnZdA`oq`MR!mPp+C8?BhPn
z&B4L3&&cqiIS0oMGzZ6aJI>v}H`-($AK<T@?m8wq92`|iJey9tfX`fa4Q&EBIQD;J
z|JjCo?nMH=6uzf#eb2(r?OupefGfvcClB9y^1iP3j-Hi2Eq~ry32Ms0k$v6hqR#bD
z2U63X*AfO0gu?U}x>~d8X#4JAE_c~s)z9tL6XU|*sH-<$kl%F&UJGe>*TgS;<%~PO
zPe5<`?B|#9CY#4k@0QqUeJdCAiI0<u>%n^%tOQj6v$xRnhzN;r%UL8W8!BOkZVU}+
zsxz)ozlf%{Z389;{FI*9FL$J$wY=xoM~;$c-S`8}zdl&o9|ac8{;52r6Z@;dts4(P
zJGQ?2P`ne&wgv~s{ToJsx{*e`AC32;9zEWVYSExHlM`74R@ClGKX@0Z2EHA=aShZH
zn4MdXa|ow=(#{mXx74$CoC;7s)k2SGSu}<GoFlWCpOcV_^ybCD4qTuz_QbEpKfFA+
zf4mgLn&`t8$sk%_N!r3suR4^XZZ)B%MHfdQ^3tYou3wLyJ`o+LEQ1a~wu&~K5lQ1c
z_Ckoh|46Y$`Vpyr8~i*l_|fWVe9L3Iuc<$-XI9Ei(AH4v(*ffJ%<fzM-Wreu@qy{Z
z2)6(TvHo@(s>Go+q{*G-x;2K}+q+-q`0z&sn<jdEUYplzG0Te>n!Q-++PTi9ywhB|
zb|GJ+jO2gW@cvBx&zO9EeEHY?AAFVIAV0O5_s7A_%ukW7(W>d6^XDE3;jPsk#>-as
z!25PT=G}p38l66Xcip+pcBuPY$7vl4+C{0y!Bbta(V<7$`S7|i7+L;$q+A{-&e={-
z$zs9{tVL?3dHdil?fSJH)(-a=S&CD-8ek#3%rUeR_Sm>j4M<_8lpgTt*Vf4@L_acJ
zl^dA;!gupIH>N{q2|M#(Fd9mOe?J9R(4-zj*TD7atn{?O<tgpgTgVX`X_pT@=fgvj
zkDz;xbrKN?m3XnPf(@4<3_{JEKA{xhaKxgeF+v3T;LvnqizEda?f;Vw8W|{zyc`?R
zaW9^C+k*YUC(Cf0bqD>Gx3(mDheUn3LxlW_x5^tJ0DzS`Ntf$MMZ|<&m*#WI94Ni>
zl4n6IjL3blPL#`1_OvEOa0T^Q9NwfBiDkSyelvaE_*uC%$bvoq6VIE;i1moy;BwR-
zt|q)?>gY}gv^jnMoaAvfTOXAQAtyrWCacR(>(pRvb2?VEuQXC)xQJ0Al5>;-_YQcy
z=fLU^t+2u8P99<OUAxrrut@XVS2xr8MKiO*7w0;p>-rv4lHLSvx%@3qL;07Nx4`A~
z|A<|L>f}5zIU!heeb6D^;G3m!!o_zI*JT@;_Bw`m?&S*_>?}3xyi^?NX)~I1y(wF(
z!}A|FgcI{L^vmP7?vC-G4hENN#JEv>pm28s?>W3n8Xtb}j9Guj^Hs!bo?${@vtL2Q
z4hLJk)Ww=oKb)6?UT&fNmZcP>%af$m(&qfpM~}yvTvqm)3HZ<;e-2X2kJm?}KbK8U
zeyTH_YAxR0b@_T<H8@ExYi&O&r|uxB#P_*cdC<y=^kC|&*-6aul)f{|%N2gqSLH@?
z&Srva3`D{rYPGewt<NQVxUgNWs+4>r)`;xr{CX?$+x18C52a}9Y0U2mxV)sX<K0_R
z-G@i6$3~r!M!Ud;Qbw@GvP#l(PoK~;4wq!Rwn6tE?7v>`Y?Bq5aPeAtVbZO_b{Rp`
zpkh&KJz6=B+qJLC=<_>Q>#Bt_v%>mBFUR8#aw9`>EEp!TBCD@W6CACTSG2aQzM?ad
zb|{4*iuZRD@>1w3yE^nuCN4MPxx?`@j3}h`qZy}BMPUh#V`7;vgxk7fic~<fb3&+(
zbX9I0K^b$e_HlV$R}{qTvyUCz;4>d)@8OhCNa*Bo^bX;h`;SkF);6!6<BO%851N!p
z+s6nui7#3lIE~rPw)I{ef0L$7#1$Gp;aaq+r1zuuO{3xx`(kcR89mXtqzx7;Xo8-V
zM*G_rQ4-SkS@<1IyIhx^+}Fk@KHZ?`i2|u8E1U56+d0lRngNTl6G+uM7$mn^x79c3
zE7iOGb|2_5&+;|&+f`@SPOd`|1{D1kp$EvG1LMSwugQvcO8FR1W>o6EU%1>tpD?`D
zC#-zoa)CL+))QRLk6b%)B~@HsY|oj0gxl!DO7aJ)zCKobzoJql8>BU4zGCC^onh4I
z_G|Ahj=Va=FONR-NPg1A`Ouub%G$#w)5K3p*0<-!j~IbGg(1UoScjzVx8HT~qDuEW
zDii(IV8vffPtcmF+Z_(2sCDl9ly)G_-a_~FM2pr;87L{-ftLTQyJ5MRaD>~%A~14k
z+GqZ9s+pX~Ol!(ss<CS;%i<Sawu4)=dYLIV&+|2$bl9nHpfSx^#i^UtcxP4U$4py9
zUt6TvSffJK+8q?R`l#>^=N1{A{(x&TDy{I5$Je5e-W3fjX)wQ&osYJ8w<qnmNFmZx
z-L&Y?;8oVq11oe<M0$TkAH25`;u=;ZUbK8i7Az=jbR=L?Pkg%Ss^jhiv*>aV4Q{WJ
z_|}YKy`sr1f|P~Htqf<f)X~8<CuJ^;J8nhQwu2)XaYFbqOfb@MW5$u}fZX3&!Puxk
z`CvjCP?K^k$o=s$=<IUucf#heJfHMi@(q$tC4;ZK-`pNmR%3cbR+BVzIvFJNZk%{P
z(?VV{ozZ0*ezE;XAv9?3@e7uosKI#s36)OwzC8l^ICB^6L{N!?Oi=bk)_j!pinpVM
zf#cJ_8&s>?*a1S_vv8CAanmeXk?Vu(k={1}495!g969pL?H<cJ#2TbJ`A=;m`2Mhh
z=DV-wMhTyIr1kB*oHf|A%rQ6~BsGFaH6p378`Nfh(h*WX<CZmX{HH`-HPQDY)h8*5
zsjlq&2*TgEK)mhGbs;wMZLp;n`}teXXVsMQ9vs3udb-6}Q;(ttl3Ieo25q5I@vi*%
z!Lp76&=XMIXln%8Y&mNymsbWH9O>Q{`50LPDP07Gz!&eeM5d#Vi;T%dD$7b!;J~HW
z!o;D|>as7v4jNzfv*Y=Ld9GJad>fDAhocL;dM2p7JW-*M3rRWPR`wJsuOA$F&8f)#
z72qcFpg&9`_5Ups;nLmvt8ocml<=?LEG7STc=<o;aE_bOo2CAn4_WTB2b+$axu7kN
z{O6%OFJxBl*FT)#juLL){VT)XH`)!3srt=`ZYAr)I(h%@_vLMnv#`kTflnOz|51~S
zs;ITKY4?<FUJ~*{*4<BB0>fm(7q;?)Is9g(6_50PQ;QE0O39#{X18JN%-VScw3L|k
zbfRORTL=~&<nFe;vE4^$rfwlVNFCLeE*ceT^w)-mjAGl`m40kqlFF`Xlf})M#@|K?
z97P**|K84&FR{9fZP*$4b<(#EoNK#}Y?{}JHFQeX82)VXk4f92k!=5J^|^SS2_q>%
z;;HQzzs%Ae?+ibch8rk#nFNr6G$#c=RtMEmcOOC8KMC6MjLO>hlW32JgX4r7=M&tX
zCA^QR)(MtuZ}qWII_@JW40bSo1;SI8XX?MX_H=eu4}89(+t^*!+3w!cx%|6})29+R
z{jqzi&_ms2=(B0rx_2zjkaChL6I7?)ozt8F;q&tq!HGN9zMmUY^fr8IK~+dQ;T~jA
zWK6GiOXv-Bd$HwRuihL0_s-OXw8M{~&pD4<#Xg?6bjD6gMX8&Ul3aaVck`<~v1WO0
zCjy#oqkLjO0=@C(7L*~+Vx<s9q`J4(^5N&%<LE=lgVtIoUAssjRoDc|-aOV|w4kv^
zZKKW$u(iz@u)OcSw9UCN&;{*4@3hB3Gg;dhBV)k<2joWbcLp+VM~vt=oN%yA9c#p4
zgSZY<__nl{iCe}p9`6i0kE6Y62vQGf^jm!tZT_JIl0efge}t)JPyg0ok1Mg!>CS-%
z?4MuLj<YN0L0FIQP<~>*^Bw7W{beuZOx11OBR!x!Rb{=xQq5+z-tIH<H(=7yPBsqd
z*j|JOqI-TnF#;iU<B5<1)I^lB{1xXErTW>I*@!5+dWkxwNTKJ*@wiw$E%#6oL)_UM
zn(X`)(O19;+=`|0X_sOn^sNF8_gyV;Pm4$|>?&%uKH*be`!ns`uooSfBv7^R{L5<{
zpP6^A>b?~QNS@l38ySnFj+1m=w(U;K9Yvp3PT=xCaYs<yLZ<ZVE(sXrOp;Ka`Hygb
zrFSDu%&y5xBVt~hju{&}m~7T!qHFp1dEX#B2x3UZ$X9qNIFQ{x*ECCYYyr-#%NGDZ
zILwcaI(aiqH+K4vc{fsb!c5G<9Alpix^Dbz;2^x`M6_z*=1&eqb^&$YV<!M7Hb&rb
zjJ!kksr2H$Glu3C#62W~W|N+>E`a3xu=E1=*ZCAgBg0Wa*yf?mTH#th_S892fB<o+
zN!C4bvErD2w8r@2_;8n(M8+w1#BxnF+|dS$)p{pUXKhJxr*^zI5Aw`}>Q012=0Zbt
z5;vYH$Pjs*eTjR!OV47eE^HNew{Ei0%+fMef06dULaE5%V%=md|2w2{E-#kE?TyvZ
zk~xDBm{?KHHFqC&yF6;V#4uirNSx;p=Z><OtoF;j8FEK~Mab@IUV+A5E!T_La*(Y~
zUxA$OBpyW<1wCMH-_M?VWdqw#AbjwHUu8-BZeT5sKnR{+_<8H>7M3Fa6rp(!K&_*{
z)4=IY_LlvI^($vM7325)0gAm_ooq434-$|5x0+lzt{eI7i4>CG^s_4E`}YlQb@|WT
z*_G`+#$}F|dR09V*jSWIymk8T91}PxZ=<uwXz(s8zVP;jtj-|g9sm>@_|4Rm>i1vT
z^Pi>`8$R%`+@RM;v~8Z*>|~nkq5a(tUzTf5e<z=b5D9u_1yhInwhfmJkFiiQ4APh<
z;-=$-DKf#98kFu@itU#nU~OBJ@Eg6KSEYuAJ^!XJx6UXe9pcQ&nhMBDy{dqCYZsF~
zY<Nqu915Xer;F_#hX*Q>)6R{q;tx5aOd)Wb)NsQ!%uS!a)|bry**ewsl|{|_%ci~c
zmaTA#QPoJlV*8-1c8oDq{`zXULu?H*vq7^!6GIqW9{LxIuW(hRPgN_xkLXUw{<V$F
zDfA=X3^9XPA5o`upuS4uA$|&sQvJK9fVE{aRuED`$2@nbLbH>*msWq67k3EYe<CAL
zD@O3wXidlR>Y?Tr#EV&~h1nIBf79{d1J2f2f2aMw>NHm#g8KS;en_o<@ea^r`!`3a
z1K`1#Mj(9e=4<UvcQ-;ZaSQHmQ6B<+S!)%m?t4jU^^3QDY^yhAVItBwQ?fuw+`-$|
zw|UylJuz@O>teltvu|+0bN{*C&*Cc6YEP)!>I(g1#TE98(wL<3-S_scahx=$sA&i+
z!8Lg35?Y^b_Sj0EZU%tC%s(L!)H+*h8LOUU_cT80={5PAm#bu~zsrr7aJege7Z<h$
z`xU^NsKZrfbu~2Ccmvus2;-9I)*SvISvT3Vo3Rm0(^&AvczMg7R(`EpwR@YynTwQA
zace3Z6&o(Nj)<&_e72pV^3};n$HbD)`#!vXXId^$2*PJ%WNfnZF6%;{+cy34t-8%_
zXC3jF=aZ<=C>{r(VB_>R!bFF@uFAdxPE3q$_kTZKV+~gJS!?NcdCkvuiFdQy{+^N-
zw8!Pp>(R(wANzPhvig_kFaPkYT}`hPYGob^8U7+HAmjj#L>?W~zcF@c%*ytJqp$o?
z8KD>J%GgzNpCP-oq8xwQAPDbT+@!NTHo8%czdavk9qr;I&SPt4UCuKWK%ZA!g3ut<
z(*g-eVi>59c-p<9Cc|E$Q7TczZF~<(ev&q*EIFi%!dPy2_r`H1gsp*2-Uxo_a;Ue?
zX22>!c5v~k+56)`6Q}5&8`m(8XOWv@IgBxo%QZ-oC8iYCQ^FhkS{Do5{6gV&d46~?
zyIPZYrUBAP{5d^hZ@JpnY&qYTe+Uso9Nq|2SM#0EoG&X^82@~-qaeI@D8VM{YH`w>
zi-VX*#1}o$RM&GZvf<<BIwZt$vK7g`=}`L{Nd|Si6tB8~_%pSBsgwkGRd)&FEa42`
zcB*YSw<zIDg+00x896ke=+#_3A&DIdx*K+zPdD*Jb`^0scl)OmqQ2;7j`IjTS@jR~
zRX8}!Gu{Zb|B%tVQd;70w@oO45`ELC*(d4Z;0l)PV(pF~@g-p2R8><k9W#n&7-xeX
z^Ne1#8WUG{=wFj)m#;mPWUGyb#CCjHm7e6S8;OYj(J<{YM;iDESrsC=Wr<o~VEruX
zOC<ei@f_{WY0EIXG!xp}hNSsNT|)`_2vcgEwfG`xo;)n%lw?)sqbc8q*%-Oj?*O;o
zg%Pqy!Y+pH#Y1X+Ec+y%)9O$V|I*FSiybEDpj4uoZ@F98%wpnOa$_7#>Z<f2J+0j8
zea;X=)+oU&bW%wxSmSB66U2;_r{w`T>4gCWW_&5O3o0$17V&fGwxl1*0!oj{+=Gi#
zKprv8j1KjVLEfnmg060tX+Aj^7@>GuA$O(m1;>CxK0}9CEOedeEDO^KF><`M>Z|^K
z(Z4C!vEibN%AHbOQNZOG+{9XMsFqjvNGi#gwtX<ssxiqeYr{kSW`un5alHRNMiqo-
z=2K`#2g-Ih>G`~3$2py)Pfg!CCS8Op86bGMe^S1W!Z`<OM;Rig4l+B|@%p><Ma<*o
zVtbS}#lLb;EU#;N!(WhMO|vZ|G*Q!ucu28&`h0t>dQ5-40HUP92lKWW$r#icX|g;;
z=NHeps@1RJm?LeglIDLN^Efo}I@~<TLxl`8Ybx+1S<Fv7!Nhf_I9P=op*E5mw{rlR
zWhgI@neP>t$38}K0MZWI5TEOW45&hSo_%%_mhy-9l$ERwI7CtlLonAi9E|UMR0md{
z#a_KRBrt<>&$d;@t2n>>auM+wQ%1bP)1E+M=tnzp3MmO9yJ5fC?yARHL5z_7-V~Z$
z%dzM<4a(W`pD+CShGlNB50<ftSX4Z<kqf6c6>K#9zz2nEeW~XkK=DG_&nhaz?NL_<
z4wG(-`hzKItGNp<4py^%`H>SUtVVAHPI$0R22Ytg?^b|CW<#m%1oNZ53R>lqhOg<N
z>YCziU$$}Fn(L=u1K3BNQkL!!dBF&UQ$dQ;3U9usML3B#ejks^g9_;d+t)GYqdn^!
zn}n*?;lVax#<x=^edtvCr0F<Alu!EX!;r7mV;iLDC1?0}UnT5qVx-0bvN#gEHdwJt
z9ke@0SME_0Em@)T68A!ij`#&miTCD3W=<|210h64aH!^sKGxt^x<+qRt;-8f6cc%)
zL+!=y2-&b#5u6!y59*!qv7%`fE98=eqp8g~{nal+OX+0;%PaL3@gDhQ4VaAOpx`UZ
zK5;GrqAJ(mnLa`Z5yDn=*GR-l#8L;wl3oBu%}h7z_mvQ?rd~%q$fi6=%-7rxD88<w
z)m6J{*G#1AxNjk$(;sjHSA)e}hk%Iat>v!zDRgo@u9e?$v>>fRs2(tW+g0SrW$L>4
z`jd<AtkYRXjjgSke(psx;64T2GgK-Obrsef-lJb8+5At>tcvAZCe-H!U7QqnZz{8*
zLPQ)TZ+Nj^At5X$?ixlsb>H+m=;N7BiH<>yU!X5t<mPu?h*E2CJ%t%Q@+f}oNGwK}
zX<g7g)M<qEkL#;Ldgt?ALrtww#pC9+(t_L{rfQaF>q!o2t)vm9oF0UhYPKogbf@PN
zuz~0m?OKr$fwYpGq2?I^T+S9^ay_ZYM@7rMq=MJNy$6aJG5L^9`$RU_9G{0f%GNNh
zjjh@3TTvHmn&zh}jmvAL;~~{_i#f;K#`cN;yF8zTC1g&xSUWDsriZzW<HI+LP3$Fh
zsMy3>J%tKEE6>h4*OGM`#T$MmxE_7hV3>1~&$({=E5(PP7_YqmWdHkZ_qRA{&n@@s
zJB1pIld{?lS#5&wbNN{DD`56<i;1}%KOpn8`WQYiil~7j6!Jg&rQF0SolyMCm!eyg
zkE8A1+MyRd9aR)XBQd<=y?wiTEL&u1$N!epHiyBc8scfe-2NTwj)WJp%Zy(6zdabs
zqZ@{-wXO3AIwwdKXP;JPDOku7nV%DKeD-&fN&~4@iZ={A>6dLUxsjH>wy1$E$4)C9
zNnh?GbZd=^6Xp=*OUAF=)+K&Z_YV>lsx~#c3$9AZxGpsrct2@KU@G42cAd{NgH&V2
z9g~S9Yu%<%!DM?<iigUl;jyyT(i%uDqu5a@BWH8*`0-!oOs6|P?@)ThyjEtuYHofw
zu9QKLyKW|1EFkd`;%g7bbhJ#$3<?d2z=TG9t-!uA;bMO7w2-e24Um@y|1v&qGjC?v
z+z03AQD2eww(<+B6mQ?7b&cgL=_0|m-i_Ew-34j4V&ZB(=`Srj2t`EdmJ*I*&-i?=
zkzg_J$_{_>#SK^<^;A+wC&N5jBswj_r)}StO^lSuWK3WRe;<&&yq#trtFJ-yL;!qM
zS;umR{YTl`=Rxzah$IZRu4j6QcQwoNc#v()0Z)ad8dv)&j>3@}Fp#X|Y6{1na^=d@
zZ9sP%x{Tek?a{Ewj=vkkNjaty`)8ahAiVxVkXbs&vAXgf_+rE7Ao${zihM^C6XNh)
zP;kFgg^v?ZYsB}Q<)*+zQ7PTqI0`Zz?cqI<ZgzN}S{x7$t9_(KDyP}R^GY6wXaOG#
z018ibMex!aPWtC?upOJLdK?5K(2x`9J2<W=0aN*KyY<|{+P&z}u3zlVC`$VTN9AF*
zi=7ZDcj_pVK|dBu<cQx1tmd>R+ny==fI-+**Oh#b-*gfeN2wODGxs}VyhbU%b+Y?&
z99yFzV?@P&3uG_%|A&VPuEipLcI@P^1pl1_o4J>m#46aKdb3bY2CifI>0);Y<ydo@
z-5jSq2A{lRlC#2s6;S)_Udgt6Tj9quP$4fNqyMZrj`u=<Q`kL#$jDyckQ7?v%(^`R
zzM%EhJ_fYo!`ah!+-{sX1Uou<X?}J3+m47+e5Hg{zw;a)-aP^(@v^Jyji}HpOr1LF
z{h96YTP;Ys8q$nC9Ku4sJG~)|-XkAmtL%MOD0p?vwF-p6@U*t2D+I2_Tq$TJg|Ex%
zBfKRB;rrcAbKE*Fd?S{G`&j7!03>U&tmH+vyJss7`NPk)JPW+aC|+$#-arv)MVOH#
zW&al5v1anT_uN<ksu?AUaNF@=>HhCo-HcYXvknp;`2y;gX>GfWjO7-xIwd4u@JTuR
zh`en5%kB5`-L8Z8n+s<fKcj}oG9#?kBM$l09ISyqT0I_HAuwu9)|YP`vMp_0KH7-o
zy)+$U+?d3{Aq~QBZIopRi0F^}{3KenC6-%h$GX0iES$2-JQD1I5PECEaX;VrI#_Us
zm%$B=XHIfKI8TPfv$VoJwXPmX*P(+y;l>AXg!>!b`8M}hmImLvM&vrQwsX9@5Zkc_
z&^j_MfhRTIfgTfVgBRzxt6D&3gtTt-i(1A;D171INPFcUW!?R7HrU;G52wGK!NA_*
z=wmCAk_cx--Nr#WC&#l~+&S45c1JcO-Peu>=h6$8d5+s(h~{|<RRU3VSs<T%bE!KZ
zFT0H+EzUn`l;zXSWX}0nuVL=6R>ug?6E-lVxDI&si6RUyReQx~v}L5I1$9b$Hf@fq
zMYGw%QE7J+{mY9BK_jqgah|HL(YIboa|%J%eF8)#qMekTc7n@?Kb8e^RBFT@N9)2`
z7M6a}Oku1~I7OM<`a5Z`=~qmSN*r|7FBIXkj5x<ciEPMtkkk6!bKZqFmGw2N$Wqw`
znGM;;!vN$nGd0T2kWXBa?xmOvJLsn;QdV#bocyJ01CR%5swbU^YHU5h^^y)X8v1D#
z2(FMdm+c%SNlt#}605{#pRDcpFyl7C5RPUGEF2s%yMQnpcn_+;Du%9)E1C921t(xE
zHPS)0Tv~uIX*8CQp5uS1Np(+cf`CIEHp)<M|5gacA5UJjoFbnA6qsB304PKP02eJV
zU>!S6c+jvxe*jXDV~6Cu)5V4x6>%34+-$ApmMi;7%ZssqH2fxlxKgQmq)*ni)`SKp
z<~np%+Nb$BYADQCL6(z7Tp6djto`BC5<g0?6V?;OILwBE{b_m<>5n|dcscH0n*zEz
z3>?qL<Q{u<oU^KH<cX`*l^)u&X%b2H=bJ-#v8sL4Vwg@dW4hXI_EC0+PlYlYJN|_!
zIhUf529d-x_vAwtt7YnUwN89naF5^#E9>3-5!GNI;Ed_}sUg{ft&W!E9UuVG8+!tO
z;m76xIPLxJCr3ik&JBtfm*;bVO^3wO_nG&~4W#s)V7}z|aB8cCH-KI_u0qZ%?4%Y#
zW5oZP(TwtA!QcjdrENEw*7pW(pxR70{byF^;!o%KbjQq0$1)_8%5)pu7aiEj!2KuN
zz+%8mRVS*w{f;N5cYISVHQaq*A38Vl<_NZ6341HGX#HB*3y^z~4`bfT+KOaxv#T(}
zLjVuJHoHCi69CL-PoPWo^q5v?t(*ML!=)N_t%<z48pmGAIrtzhjVPw-Hl_lY4g8$8
zxw}tYi<5F;X;CJ`FF_dxbNG`1WqAL9b{@!YqCvC%2)n_XvaJSxrM1eX|E16DoV6P;
zE%5Up>LakO-!cu_E}&Bq__Fd#DF!K7e`F)iOXyd^xG&sPZx=~vWB+6P>l$B3!1+NS
z>Evcy22TRlQ)FX~qA>_R;7ZGVSA6{A*O_+vJpl1>C*Z5jrN9c22Y`lY4=ltY!voH*
zJOt^v0I3Va&qGnlSq5(UaNM`N57NuKQV8-hmfv%K%8*MD90k(-d>KHTb|Cj1EijF(
zXx{K-KPjN26Z_U5NLV8Pg^A0}0kIaTTW4>wGMtLC0Da~_Z_$jeCqT~DX8<>g-Qs6&
zOpc-}Z?i|;IybqH3DjGifC77TOQN%eL~b-K2C!;f<J9kNY*sH1`iRoTcpb7A(%H|w
z1Xc+oBH7(+o%9x!617icLWV}Z=LnsNn_x9F_I0<XGpW1C`6xAVQI=`7<92Y2q|4#x
zP;7fy=M2Z`BfzXUKFm-5Gv{7UJadRSAD2Dfyu@oTVU;K^tH}y2qR$)WOf|1n6OgU$
zS`uRlfbg2En4sGj%=qy=fI~QOm6P&#A|}Nw*sOj*?@5qky5>x!df4>T_lBYUE;aXL
zy*0+<G-j*=vSK@!(vMXFWI5gp%?{5H9a-EVq`X!41zY9jrO`*^k_t$@pZ3sJ|9}Hu
z_+rjgCG;>wrJ<Xj`0Xe<F1pG_4KUeD<;G{t8~Nn%7OZ`Dp&%UPl10_D3+fDRVe*f$
zEQl2vFDfeZNXO8X#{g=RlLVONspJ8CcT(7)$!A9BqaWompx`tKAJt8>&Y-;H!;d>f
zGp7<6@6Vo}%;Tn<JUeCv+&`h{ZagJ4D2Pvvrx)5)_G$)WOld#TTRtsUOKG)<_SoSA
z)4eGy*xYo^pgj#KDpW7!)?IEi=yDCksaVR%-e=ipkn#R|542xN97X3nV~+wH1cG<p
zpK0frGtQoBj=ZJk$c$KwCOf(35VWYzlQxJuW^8yPkP&N}V@wt}hw;5|BA@sCh<#9h
zbZ5A%rw}+sU>nfE%Y2Y?r=Gk@{j6PZm|sS>0$qxBe~-qSZVP$!v=_&Q1iB1WV-E19
zRs~t<7ran-5?h8DJ|H1Uc5hUG?|+`w&}d@Y%YAjC{SBkW#ku=&)uBN`C`7xTUoW9;
zren!<%zuzYA}uji6&$1%gxjYvf${>R-GgM9tB?<)U0q8%JkjQQVY@p(CR_xwJLnk|
zL>K^KvXTylIkej$J=x29mU`s~NCSt;kJx+D3CzP&UMzYGnG&%Ylmnx~F%vE-enEcY
zp{4<J;kr0b>(l$dUSAo|E#-m9=v4_vooQG@1n^7rbv;STf0x^G8v0pobd|eankXkJ
z;VUC}IJJtj=Q%ecQPPk>d@iHsDT`OrtJlG`Bx3e=<F)7wxmuRQ-j2MSg?&nbPOpg@
zgD_SXue5H)Rr#PzJ^QJ8ELr+7FHMsc-Yy3$rZ+u+)gg$_?G4ylOt@2=!@*&k5Vca$
zr#fFgrl@^Tq46I(T4PH@ZOf&rzAcPZ{PVz$?A3d;!8(E@!uV}4peG+-hq1@aSPMS>
zZu@X}*(v=Z(#52&dv)rX4sVNpr%!+G*)e>s`14AdS==qgQu3hcnk(g{K0Tk=LEV3N
zz^VP1WOD1GW3HX0<NO*%xul~my@3J`5KAvnFL*RQFNF>w1iUF{bF7QH8#rF<j8-Ho
zVt-r2B21wr!8ZY3Pl>5mpIKC$GfT$gU;XQUXJydRQ-<AUvXcJixh`Gi+udnv>X5!u
z?rPVSiJW<5r?9Md*VBafPKMJ8)3epQ-kH5$IJw;tQF;p9G|e}wQjiy~?|LL=vSreR
z&kbhr9W#Sj5upu+7S8j(wVU7Zs4~(HEI95!dN==G#PQeMKFTeVds=9LdX(?<zIuWd
z{yFn7xK}27<u(mzA@*!SK6+d~)=3}0t7Z^*xAk5V?y7f31rshv^8_8UNIf=`njH0R
z<&ds;>ELzO0;^{8ZlZ)_-9#7W{X;mP?nFhBbj;y6Ne~{|5%v;t$hC2Yu_XF@Sk5_9
zczFY57l-xbMo>s^uwT=N{hlQ}{m7zN)#|6NkQjxC4J8IE)ejpG7qJp!LJot4ReWDn
z{8u=gh(?+oet7z(G*Q}$^Tx9S3c_4r&ox%~^RJ7?9Kf%^hoQPDd?yqQUxgD(ODbUM
z&Kh8`iH?JM3Hp~~A5XSitiKJp@k(ToZ^#Bw!5BYm8f&1y16*7P1y2SiMqrv2C(}o8
zgpdh6LSJysS|2YR2y<#5>@AKt)E8-5g|6?5+&mSsR$7DgT3n9!4}snu6?*@Jb=Y$d
z+O^K1+u5i(7ldxe0d)i%7(eBDq5?4v^|LK5Y_M-GJ=HVAtNKLeVH)4?p!Hht#zJ1~
zE{AvXNlC`VnnOcoe2)*sHB4(SF!S3@yYT_RUs~61(S1h>+w%%>hfWD?q?ZT!YZnV7
z`PnHC0qB?C&O=FDo>2e6e4~)0NxB}g1}4<Q#smG+qm}xCD;jY*4aQ2_;N3UKiiMh^
zO`6w|^nbxEkRmU$Q{<h?u@=cL6d}f?iz{}?2apR(gA4Z36}k@<t;LElhR(&+0^^;m
z3@KYgnG~nVGw^}97xq#cTo$HdDi{Y1L4U`2PVr+=6vIRl-Rsk<yE{iuyYw&ac<!{S
z5c|H8aACCLf<}9=`n583%}I)X9G!opi1{uG%a;TZR?<u)5=9s9X#-rJPXUb@t`EuH
zEUarJZG+7_tbb@(m<r<E<Y{5<lftRjGs~oMzFMUJnmjxE4vg-lpg~ciPeT+e?^vqG
z@8bBdG8G-#7fsggRrR+C8_A#ri8sz}j}o?IXIp0w{;c6GE|+Z_ry)l)NU}6$mKT<e
z&_FlQCsNX)X|HJ<G-jDQisq}`XCJU((+TB@5>DIuf3(zCeH}Pa)2rFtw3tgJ>+MnR
zZjT752r*M9T%oP;3`^1_|HTysjy{mwnw9^IE$(|_b`A?U6tKMZMPF;ZoMpIb{D(#W
zMJoI7c^o+XGzNrBj$c|)?Z1X+U!=JM9IyQ1BrE*v&-YU=u-OY6&WiY*bveON&r*R7
z5&%weVXy8L_Ge|_rpp%R*$qAca3DjGM<BiFU%Z7MXz(uKH~s0;i`^!;>%Y<F7Zu_H
zh}F0Dqv)@yznBs*1gD1!z}1dy*=%c0wZK}=_TJ;Bw6n>_{-~G0Ghm<pFZ2BGj(MG%
zvWrvkgY!!}aPz0K^S&mlIM*(Lj%pR0tGC~wfVQf<soYPZnFXT6O9aE7W|Jw3MAS16
zp5GSyV$Mye%FEg`@iHm2Hs@E6s(-mFasS!cHZDqk@8Oa2;iaL&B2<V8;SNRCSa17~
zjnbE9IWx;zh3;eTI043aCE$-8(#&I9_ukf*jYxi$cExg|(^D)e)PL@HT=xOCF+Sh_
zW52Ts==!KTmZRMMFXhP3zk<;hmu@z$A2Lda8XZYVKVbQ=L1`%aoUfD9M-4Mh&+F-n
zf&G1nb8*<-NvIt{dkA`jAdgz87ITu(*A(wCEu3gi#GWQa8-CIo`|7S<(0OR{&fbN`
zJDQUU9D^h3Tt|i=!p`*TzK*ZecTt?AE#!n~E#@JYY|Luy@tZ|{DZtDE{xW8Na5Mg?
z-5GOp8-5x0s@LsGb*D1Zt8`z-nTA-@*&CY6C+4rc*GiRXQ_4bOE4AOknkSDsL+!_6
zhN=8Is3gzA1%pMcpb;A<k++&8_xj#Mi?eP!oav+_E7_0w+Ei6Q(J#>I*E$K$9^7ac
zb+Kt_*)flpHU>OY;E#)YKx2@GU}3M}@71<a-b3HF=Pg;@U71L(uo%<5^AukEoml+I
zrv38uQy##Do#JEIYxMq7*H{5#aSOk?9tWp=n8fkyvb>4K$&G2Wi(m9;ViqZ+5mq;S
zB&l#Q36d==!(Zn?7aV_2uE2J@XJ)SgzFiAc%V*h@wW9HHbbah>)8#XK-}6m<@uOoS
z;r{0y4jA|j27A&s!k4eloHd?^$+iWTANZy!-D%-iTk7y*Dayydr*HTgImC~l%zT-l
z?A<b5RpTPC=txpk(2ZT@-Pu(QPnc(pL*nNRV!6QYsDIXK!wuMbRFP$GEAxUc_316a
z=M(7evRh$_aTiadOUS6!uUS*n!q4Kg(xiq8d%X0^Vo8t8#KFBI`p2wm#igXf+E$1B
zE6)@jbJM<b$Bb?>EW+aq11BPQNH;pl8_KI;`r0WzYe8-rHFq$+O;4y`%AW1PsLQzA
zRUaIF`ItOl_}epoprYoi5;{*m*SxVltl0UbaiV>WaoojHt2^7_iFU<tLC?|LGHI>>
z{R80&)>Uuj>YrEJRX$bzr2J$w06zBAaN`B3u!|Ry?c9OzK3<_+Pt<}lt`wWF@Y7D1
z#3a{n@8x^MxkQ(s9J=>S4+F$ZI^=ZF?QR+Roy0Jxj5ZsQe1IL;!n7+QQK3Up$wZAu
zQ9(22S>W;ls|8?}o>71j@HePcM1JFY0s^4T2D^o97O^T4={r8$J&OJ>p=oP>*#QgE
z9T$!gJ`CLCxG(%~D5aF38!4~5xAG+DUvT#S)aJj7z*~$o4g@0tY}=r`VZ3QhTk9W(
zjaP_<^p;g0vfN_B1Z0IjCl~>tWAvrjNMD-v2Q_MSVp~E<R#+ZKsvB*U1{sC?SRO%U
z`qd9%?=8!b=ldX?O*2^WdkSGam<izctNEk}J2MP{ey{aqsvy1(GABbm&)V=K^Efv5
zVne4B$i-&%q;llaw3ue|TtVi9drN3p#IVfdY<c~DX?7~HGzQ@9b<sh55F28xjlj)R
zTSR?f%O*8rFKh?`bac-O3J|5%eJV&>zowx;26ZGtk@+dT+}{dDK1?gU^16kQwRq50
zB|~Q7)%5UfmVIaKTV9}N!-zlo30#cY?B$IdY+~ZH|8bA0_<Y-%FOp6|SRrT9Y#R^a
zBA0u}seWNe5iEo9Q}DzTzRPmzy`q_%-A826R!7w56}GDxBnbe{9QAAtxQw#pL|-m*
zQ<NN;;UPnX+KYY(&CHmJdOsK;m`0{Gc4URm7m-VAdIQAQKFmPJf<_=ikfr%PB(LK-
zjvQS9^{NVbJtu_E%Q{D%?Z5JL<la+BV8WkQ{$yD<$>_DO)7ewLo9#W&-D@H$IJ|EY
zNu8{du~!_nNy!fE)9k}8l`SGGu%RhAI?byML~Lu$=B6`I^-&aX=Wp)bCy}BI4>^Qp
zaP9Q)y~H1JsWOSKuHE74UQ0d^2$i4+r=IjS*BdbF6N$k-O$&NzGvU;amzyt+k<$g-
zQtODP=$C-i)&lAH7jDS_(zY1=9*wFS%c2ogP$Dg1nd&n-`Jfy~Z#~&d1^1&IH6>z`
zQ8JOP1cr|C=U91*N=d$`e_<J=YUr(hj|3kIm#B0SQOLIEf;%4`%94~X$-rh0uD(@i
zuvhzBN=nIvhf5%>D?0Lb5*V_Quh|5^?@!{hG>^?$+U%YX$k~W*alNTs8iY+iG{7P-
zFyx->rK2I^huj+wO+*M;X6y{3tJXK8c{9(d-W~9vwqbvB-3*>Lsl(rP`K-^wnZw_6
z-()2WP2)|F#t!o3sMlQNtmi%5X+e9X(4Hun>i*IoSzK@$s@gscDa&Rh!++wV^c|>W
zLvArZL1VRG)1a=ru?s?O5W%MVBJ;b2l(gun6{sY8|9sZ9vci^?A#%^+#sy%P9i+=H
zyESS#SaBDyD5rXmmo@S-MphO)i%A+&k1KUGi}PgOwf2JO0hYOex{h1WFz^RGUZx(z
z`%MOvsQ-Lf*kH!!6WY{9tyEoks?BJtK=#?ugZhRXk;C1U%(46=yP!JTwa4yAOf!Sz
zOq_g&t~@wC6>a_8u-wL?_n=HMj=TD{iX&DAo#l-oTO4n;yc%dzzNlvy8CUD<_qLoI
zGMWDMl71{t6`Uc#MzF(wqxzupOqUs?odjF4n2^$9*l1gnVhXi`XHuCFZQ+pvCMxww
z5d47e;_;mCT8w%HLE9mN?beOg+^j#w=MQn;sfho9(4cX9HZYOoN{9{o)W`KRT(r}=
zrOFYKaM?wDY_01|{Wxykn~j{`e*Cp|El9@7o?#P0$;<wp%}}WDXN9#%O^o<8cG|P*
zM6fgB3}nQ3TvELrjMWE#)Bd!np;u6Zj+Gmb0HdC90XNMOfK&WNEkMMK$=jz}Isx2>
znjlUxeQCUX;ZHD(pB*So7;PsliqQC_iITM#gn$xl^`(=!*{S08;Xg@hKyZujast=9
zxAeU}K)3tfB)I<*83C9xbJzz_&vuH40a)aRrj>JkK?*PuX2NzdsGdG6rA6|kuOi~i
zft}{Gk^93IJRX5yl<|rNq2~D>GHH=sN&iBq@K?bFl%VE**iH=P(32y&QQET(ORo_1
zUM=B}Yp>WGyaYI&JKGD0w_!rQSJ+jcwFj6vk=~5YUanyMX#P1voJdds0Dog}i2PJW
zo7_L0>D$l=S&bWMaBspVkY5p>u`}ZBI^g<iJNrlo_VbM`3YwzsP73D`epJ(ILo`)i
z_NINXFbkon&pqfqg$DLYnYNPNqLngL(a;B(iX(R=InMYZr*?-B%Mjt^EzEF*cE`1E
z=K#;JpUzHwvW#e1&T=N^_X%_)HUNnD)O~B|y=-?IIEm({RJ9C<S<4b%dmq7Qfqm%P
z>-fC0Qetft<5zLFTMiK_-Ms!I6DxyT5~DGb>~46A61Wj3V2@;N-hEl+$M?RPp6GY6
zI@ou(SD+)3HF7UekY_750y^~;4`4^Kd-En0$cC^<++he~pJO17*-J7iN0Cd&DORv{
z$XXXGSRs;X8&@{{UDsQbI@+HI8#ppzYjrtxXtB3HZ;V;mx%!m7Us-?l3%Dw*wSsg<
zinRFG<ZNTM_aJ}_NjHtQZBAXT6Y*P8`aI$g(iE|llH=$tT4)t3(3zj*p*e2DKWXTd
zzK1I@+8Q|H)T!O^)&w;%Tt-sMT4}g`-65#h%(7t_(s^?Jd@pBB*SPZh#cW{Mj2C}H
z^BqV$bYTEH!UJaFDsT(Fn?HQW!~>3~b>$H3KHTRnyP4+KT$I-AwMHNxd4S>OnaM7|
z8?4P8iDJ}TkMxKl&G0YUmcX4-M`gjm+{Ugn(ho*ymi;j4n|@~Tz^aN6*;B-+Nelyt
zrL%MHm7D*!c_4WGsZPt8GTQ<L*6a=Pm;wv}!0t!gg?vRAKM9{-wbomnY9i_FHKQyc
z=-gQ>$KPEmmszavuA#iatm<nA-HjOE%?J2jir~L(mQ~A)Jvq8#@&)VtaH>^(pM6Lk
z{o6joy>;hy_m-s~T9r)sigqz|CB1pPY29A@Bs@_Gcoz?P?3Gl7-eOg82ao$|XwR$p
zg_7#Cx^{3sF4qHW7cY@!M@lU><vii_4hzG1>pkW(P8z*xMA?vWkHY#rT0b9<p)?e(
znwz2m@GjBNFBaHBCV_{UW4~d2qAiDsx0-M-XEYGz73_$v)~tnZY?3Fp*{U?*gJTA>
z(+xQ7;J6KLEzIqO!}YoeZZFWNwQAX|_T<d&K!)4^wz|!`cC1!psQ-A?55alsfE#{y
z@=l@Gtw)&${$+v~qhmp(JBpT0ivelBD-}q(7}jhd(kybL23lZ^FoP|0$uMY7scQw9
zz5(KNbRl-qK&un75$GrjzbvVUI@~jViqF8dUEPJ2Huw5ymSt>eB*rd0aGP?_?apY_
z&Bw?5_jT)My)R}Cs`*s3!J$r=SXy_lAX`aD`IY?sZ3=Set{YacVf)SZQuXevZm$WL
z1BHu574ZugfsrnStQ%;Pvsdvh<gYkZ4Qiu?aT|$!;-1oBqM_$)k+lWhC$xXjn3RjZ
zEk1q}-PMC@Y-<8gE|~SRG#!cMg*9T9L(J})h4yw&h~U;8LWqdw8!ujc*<$>kXMe@q
zO9}H1wP&Yzr~CgsEr6W=e*b`7GyIlA{;RL?bN~GFDc^T7(d0=`=ESG`^ajyP{7j0`
z*5nFPshMzOZyG+d!hR7R1Ydb!v-dv~6~5;)gVz`~sz{ZlW)5(6j7#%y5Zq@O_K#fV
za0N-)_JDKT_fXr8vV`;`&i|mpV0sdp_Fz9YMJN^7-_7JB?%<@Xa8fqvih^$Zsz^$I
z2{8Vs=d+jHXkvD=2OQ*T=-wk<>ZtwT?427tlyPe2DW#4g+XBSBu0ucCCN3rX`*QJu
zH6D*q_om*!8a+BDyL<*-o!?K4$^xgIOn1!yXCK*^IFn^mA-2b+oUva~X{(URz;A(y
zf5h`qu?bXOsDl6|w4JS6+%WY~nR}NQbo2(a`h5;~c%iaM|M1pke)jw&`5;p5Zcj6~
zAI5`d$)~h!eide5#xKfGl4#Z+ckz8YEH^;$>0brT^S=a8WQI5?5?=}G=;yP(<KJ}H
zJONZa|EEFrw*8}Hj+(>G4&ieTZBHwqgM-(<MSF`Xq4{-l7D4XBb23NLg4E9Gz6RS^
z9zuCv|Bq$dU*Gy4`kIg^N<yB?%4@6fObi}I=5>_MhS{Y9iDq{iyTbhZ&o4B-!dK)X
zYMA<%@=~6yO?BcVP<xLTwsKQW+nfShHjRtho?8OSwA-(K@tM;`TQ(JI2aW-e#8|5%
z#OI%{pU{t`#!bU>*lzaB10WzkebXxOTy6Nl^)TV2B0;>Y&fyBx;M!v;mJb=z=e$0N
zc(=bQEzqb#ToI}k<?MchjG4L7U*3D`vCkj^$gP|3o0I3mzbGKM=x<q%<)d7mR<sV<
z4?jnE&=dywvmbA~@YI}9Jvn}2NCk+M+tTbExKaY#s9Brs(f2zOUell1TiXlb<#Xop
zh()WEmhd~v<ayHWfS=xUfLoBv8hc*p0%cCHl_Vd$j()AIuN|JLy?+J|uQjvpq)y+s
zd{@KGlb7u*)pmbUB|t0WCr@hXZ0_c&vM1zMfxfGOhh2umd7Nd7!n3tWB-_~>p9*>S
z<W=|LG9>w{?@2*~D-Bzrgo)U_635QE#edS@73$t9qXFF`xjxkFBXBb#Pi8F)cj*AW
zQXx2F!;<{S$Lk{a(tWn-Bk`wtDlv*JTQEBDh_hX{G|1_PiX7TTy+Ga;k$PRfuhjxm
z5U?=YUs^DA@$8L?@?GAzVuV(bJlaVe)7xK~1olj^EdY9xwfdU{<3KVx$D$c+KTdax
zRDOFUh~KQjo~X^>8(H$0Y#|3nzf3%ihGv!~lF!hOJ9-Vj^cU8Nt%(ZXVR?Tm3v~nU
zBmQC~b9`G;#1(c4{(ma1{}V*?(Z9pP)|odu=KgD;x4<Y?JA7z}+}1I<kWG8aK0yD#
z_cPh5sSUE(qHWu_EbsGYrof{)^rtEfi$K0?Qv&=b>a1u}U-LiJDgu3Jz#Boo%2wbN
zIkSjPucroEY_C{$gf91|d_T)Y(QcX@YCFzuD|;i2$PoN3al5^WS~F5mwbVGq4m5Mu
z`bob7zwHBz%A(X)$ci1%Jt2v}K_e)!pfl1o<uuzrCiURMcWBZD+VUptf`)F8XB1%d
z5$NM$Qw}S+LO`Lk-~wIua-`p+eG+Q^s-3tT@2-&-de&}|)=aA>XtUPaY9=E$r^PD<
z>s>nb(>@z$Rfoct!bVV&Gf=7(Y{>CWJRfPK+hO&LHe3NpiNgw5*<CBmD76cniY7lX
zi*%-Vdjyi|MjEVIHipPkyfCDC@WM-a7jURndPobm`9p=V9!wpw5;89C=f%xN(ihy9
z9Unn926D)~+N?+xa$h}Lq?wp_t&L+&Ycun#)l?lfzNJriIV>Nhg}`Vb<cz+^0{VwN
zT33N#HOT%+fwpjO>1;XsOAK|l<x+Re?iP5P?c|amtT!POg(dlt$NHeb6z`cOY6T3N
z6NuXwMm&{dECW;erujoL$v+9UIc=b3mP4N)G?+n`Qrc=X!o|NWshWj#Sv)n!o8e{t
z!#javF>peC#n)`ZA#yi1nsCa0T^O*pf%f!FTb`#xR$FEvfi1d7<wRCHN^yOww!WfG
zEizl5QNcw9R^7gPHhcUM{(0A2VGel&Mu~G==?i*JZ6s*+Y5VF8m)cA-*K=6)p+6?_
z#HjBdFzA>ThHZ=41EoHV0VS?}O2a~R_fz-v=0?1LG3>e269z?`<xhLFNAtb9uQp>q
zo21Za(5a4FH*G1K9I$wP*8{Tl!C*Ud_A3}LYd=m*W>z7r(|F>+jy+G^=NkXnrEph!
zBTsu=RK<s7p-r`D8xJO&?+Z(0aY$UGd*vwTYpuNHUH3n%qRm>?UL*(R(2)bC>OCXN
zF50Uu<Q_k0U{!GK`*I^bykF$B2)U2B&^LkG?7<-)Yc4qXlE&-E@*(xcRl#?mQ$o;>
zBrFOMnr0w=AKjrR-jx^;54=07p7wOo{Re>%=N<=~+Gg8obXm}#n0x;gVdBg_1!=L=
z^$ysk0Zj--5n@lnuIk-kF3KVI*Hbt<>XY!#NZr!7Lfm>5PCD(y`WJUC{>cw0-3j>S
zHw8v=&dmPxI!Ail_*kI6F3So=wSu<$@*U?IYMTwXRFk2$he^UQ%dC?L34W1z^atW=
z+i1}Wk#DWfsPf?*Syaam91VgaG_TfG2pD%ytoMej`cTzlWDY@2=a0C@GMR>I^SO!}
z89D2RXxX&JLhCa&{d=4vRu=$=Gy~o<#9rgi<vqIcaZGi+g+*hTz5uaWwKpHpi7iYb
z-X{B++h=O?;TEAyyaF@VkB(i0hE$=~X_Isy9NTL8kAWu<evTCHxuyOjXe~kGauZHo
z|KF@b)0i)6%hTA1VnwvjBAQeO^>rir^@Y|k3Z%9^q;6#Ic>+><vsHTqAvAs`Qk*{8
zv7z<|<cEQmojJY=1nVanVQo4ogg5e^9Zl$x#TMYQ#G-<PnFa+-jxS(V@GL}3E@%4=
z6qt~gb6Aaz<&D7qa&s59o(`LXF4CZVz;tOcX=)+U2`UYyh0~_0Q#&1D$R>K4tuLkK
z0{hkeO_uo2`+L@S$`)D7MH)-Uzj<S*VgnMk7=g2uH8NmW+QOEkVEB#;h|ZWhE%!v|
zVT3G#`xyt;#t4e-bu^``uUv<<G^V)BPF^Nli+EM^H5zzxU~{QE?p*K4TbH6`n==)&
z&de7Urv5E-R12{~IlgJtNN6^gb+4)d)2w%or#`W8{96NSvyUY^{M|LE@m%0Lh&px9
zLZ;)5eDag%=xDsnx#W*o>LG%CyA25K6`NfZ$ev6UI<J(s#K(;{1_W~uzEG3o!Q7Gg
zjII9S;1xEfsl*!<;i-=0(|o-Zr&}efzG-=7wWA%rdR?izLI4ilA$}n<saAqsOE$p!
z=0!YEb+}sJS>tld9jY~vz2a{Swl{22zMelqK)~n-EIWJ!`o4t`ZE^E`JE;02YOAXd
z63T&acp8OckeQ7m>jg~T(aMiKy}hfPC0YypL}C(iHfiFK_~tEI1#6?C?bT+hGSxOD
z{Z5lZMRIUm#YlcHSC-z>VXt7SJ8adR!Gx@}iU%7ciBUUFUL+(jcjJf-v?ZnLhE%PK
zu0zcZX5l8pNAIDq5#3jU&OKirkHqEjhSs*+EEq}e0iIN2AudiAkG$JB5M|9*IQGpR
z6};Y(J~iy$^OCsZONyyl5ut=5+{X*cSOjjpg#BdiI8znS0{v((m3#Y(bClICZJ-L5
zH;c?5#f#lX!NXpcG4UdzE_M7`rQi0HhnGX(upLk$0@{t+sL)vNG+QMUwR^Le45&?P
z`xU}a4s$MN!**040p*Z)voO#hBx{x^+{ND5wGqqMc0)uY5ke57Aq|oYi4#NTOCXl4
z+Oo;x_tKw@U&B#Zk2Su7n<F=&sOx_j*$MFEI>Jm|Y^MK8vV0|7U&z1V!qt1=Qyy2H
z!D+IF@#ax?G=g*rY>x-&h~)D44Fv%w0Bfv0(iS$I@wstAov85<TJH+Bi5L3w5i{2c
zV|eMF)3F0Xthy_%RL0dOG3b-uA46v!Z$`H?OO?fa2HA&-o)17H@)tKQpB_xiUA$dv
zYJ?IivF~xS3!lsH<niN*lTV}TBkYLBt_bx235P{e*cnuHICu4|Ofe6E9e5PoQdd3@
zM8SqG?XeHxZyZzSV4gdjw}_t$TT3kUeKZpCW~9P#k*4$fE(6BGu?X7UUxke(4w6!Q
zn}%qMpO{7ypXAyaK3igwlNDg=-OPtK#D$~A?m|Ly$1dB48oz)|t3X}e+qMmf8`+*p
z7PDWF+4y-ZsQk(4xKb!<Nr6>O2b@g-R_e`MOJa@o=@RkEoK+VuF!nx|CGI$skiV)F
ziMU2D<JB89tD`(mibN}<2+vJK&KWz-=MaUZ)!H}y(e0y(dZ$|TYSF#5CzH*4PR~8!
z`oG$H&#<PpwOv@3%YrB%3aE&YCel?DDFTAh5fr6K6ObYh5G3>v3r(sbMNmLMdXttw
zXexmyRiqO_B#1ylkrDz4fo}v|d%O18=X=k7&vmZv{P@<tMdHkyV?JX%?SAeXej;mX
zHP4-PPw<udQ3TwVGbSwB;rmRP{=|NF-^bEf_f4_do(qC1i-JKK*ScRg)d!oRTEYe<
zsDWM7)%!O~c~}ZMA?jqr++<K^x}bjt>Eg|`AMYOquZAI3!x)5XpI!)bKh?UcCtTtm
zEjlcsoz@~alWqkeJ<nvH_adVlgfA2N60LY6NH@)C+cd_-&A!wqpJD`?(o+-~KWvB_
zhf|LBlc~&87*R4_fQHRYozKDUW<S16UVf-O)z|<jZB+C>9&GwY5&NFX8K`@}%SQ9d
zvFs4#na#Or#;H2)L#cMPKJzQ^&;IZ|+2cjQ0|m5V%F)Y81D5g;!--ntRnoEj)<%bg
zFbb1GWQ7=K!I=K+7K74p4t)Iq<tyC_{S;Iu^+(1dt4WgX>i+GsxmRw@TPpZ`kfhLX
z`Bc$VUUZ-Gv4eeCOC~UqDS=YrGdnt5)VNfjcqP`z7)RP6t;9}{X2<GIB9&iUul1K&
z*jPa|&JskHEhgRM5aU!_HnU#M?Dn;TxHKkADc?6<)14TX7W9lm_uV1O<*CdYJdOEB
zY+1}AIHGf<kcTX_bUz%jtPY9P>r3XeWvEaX`j&xCy!3I2lx$X>R(|yB_&lw{H<dTW
zxLMvh<hm}Wez|9p<D{s#l*>AIZvmnyb53R9pvv`&x|%XU-o{4H;=|0X`mCy}jURE~
z&Lqu*nH}xW8#H(2`V=kY%f(VA6?mgN<c-7TqX(ys#-2DE!DZVKqod=Bbi)tVUrOKz
zo6itOYbDIEMJO+aV}-6%oJnD@uuLYo*|85UU7c)6o%0geG%e4!E7H0n>=1$B7sk*&
zw{&vjrVbC9sn#pc%#>t$?1don*cW^{R2b6+^!tW9J^bj;#(2)F>e#;iLRLTe_Lyj?
zm3d#RB6ru9?lUYOxH8$}mhH46V&J}TKulLWGd1@o{P1h7IT+8QXe*PHR3k4bXZp?M
zv7}BG7On6*gdoSky=4va#V#_upCW{AJ>wv|>u5bqRaI%}HwbT9<H}+;RTIJtTdjX(
z-?&ZPaZVlEHfof$q;Fk&?VO85O;xx2-H^dF@=?}41P+Q?o1_Kg&VLm{<1`>qLsRZr
zU@mx1S?cxv-5FypEW`a9hZC(3Vk%nUmn$J+rSNj?=+w8?)}IN!4E!}OY@}7>SQB5z
zHxgTN@9xMrKR)`8h72tFxnRsj5H8t@VcEaiQb#9zwjHhfs+&(Bf_4NVjW;?tr?s~N
zFS|gWHQf2nbj6q6RM5y#WY%sI?2AXknq?;4ReIVJ9gZ$rDR%mVb6I{3!AYN&$v4}t
z4$BEP<q6~bAg3A*Jx9KWhYfIbE#?tyyfywPNj71*Q$3jU4x{oTQ{fyr-&)YPHwL_D
z?_Ti!WrZ)ox@WT%)Qd9B@=uQ!u6S)f!WlfMA#;c(Rg}qExoUjti6zGkhBfw`hRkd9
zTjTl^{1@dAC+{l#aF{N1-O{MzV^}ic$%7b=aEJ8JH4hPdE1yH@_!Lq<HK0jjQlokY
z@v6K34QkW2XphytTb8GDgH4I~Lz_3x8Luc(<4CKu{VCl8I~y`1{iCy6ghoP3mre#g
zwaH>P`#|lr<L`&I<+Fzz(hj9@Z911mcRoL@$d@^U{!xGDQ*QlEFm1kmH0i}%ZY#zU
zclCkUK2<$o%tF{+&KPFQyiC!#y}UUeIH?$vYBj&I<AgYdl;t1`70MYKF;Nlfm8Ctn
zgvh03gUZ+W$HfbucdPUJE9K7}R-cTjpD^!UvjqTt$=6OTqkGe1?yusC+0PN#Pab0M
z#or{kTO7{i=*zx;6EWVK`{ROscZ1W=TeYGosRJx!F=MB?gQm|zgiK{VM0CROmID0y
zt)G83IqU^L-g3QE6y9ak&9^V*S>nv_eZx|Bx;XJ@<PX@hc#bfHrD}K0VJlt*E82rz
z4eY?)h0QgUO{@yr6M}n^*k9T24Pgv>aS-7qk1iT+$}<Cd#u0{dy1cBLiGJG`P+V`1
z_T4eZe`Wkg&@pwMADn7c#kj9(H<iK840`)bD&`HgbDt<}F56ADs=GO*{`8mPKJ@K@
zs5eq`umfE4xl*1p#r>q0T(*`E`dG>w=t4aU>R=0urQEA^4#%jpk2t|4Fbfiez}#FS
z7;_fk4kKQQ83O$MYsWGhrjg%I+hq+Y)i%a8fkKSWD$yF=ujln5`q}!>5iU!o7M`el
zr<N~4?!6iW_P{UC7tNCHiQDfDXscv=R`p@i`omS_oM1YqZS)N}Dlsqmhtd^wnanZ8
z82-3J0WQUvkqBs^N6&7ad~<);ZjBdxQ6Z+D*F-Q8QX6C;tM0JFwA=4Ah^6yq#N!M)
zFrk0)vz2P9Pd0YCs6(8ZW%>(LUd8&ur(wLF9p?vDX&=^#@2hn^<{%Fau#|0Vv=EN;
zS)LdZ-{sF}QE|vd^9W*6V7=(W^d^Uu#Jk$rcT{E`&*|jR)fv6=SxdORWl+t@n0j+{
zwPOyXs%Wd1vgmQaJrzQyH=LsyDkR7DVF%N?6h?2!MsSGR)c&w}=Frsi!fZyeCn9lr
zN5Sd)g;TG3_tiRdG?jXjca+_$<4R>;2s=T$rcdBvE8P)oR=q>5+cY?NDIT0<LE$lW
ztLAUm#fh~MH+?v4;c^EN+m1F8q(Fi9XMG3MFBCNkP(5NPl6^ZLab1Alf;f~Ls!6c)
z7RUIP^1(s}tv+kXEi1{3e=Cp?#-Q`M)h(Q)EsC1IWNBUTDpK?6F5K94J#L>knsIG$
zeS_La$U+uBaBdN47Zbnb9%5Rds`}aRS^HGe4#j{|&w7e8BOJQUo#c;Wp<51AtJs9f
ztsgWcHA)RPwI@q`J;!?VPZQhh`SxkW@Q7ejg3P{W+nn_-FWabB@4wNl9w5hlNF2in
zO<<Q%h~uLujrfc5BmWRwV?kj_kK_}ZIf{G24y|ayyv)m5U3LY=PmO#|-NsM5q%LE(
z5|**N{gO^NMfHJ$+U#y|f6G$}yNpkGk>4tx*wc2dDQEsd=n>%n)@l&hMmf}axfWd`
z#q11-gi2uii$mvCax$0n?2Zvyk9VF)ZQ~68G29K!MHgF_va2s1>68@y7}wwq$%Jt3
zMX-A*lPE5Zsg$hCss&)<;2&~CKaMFT8TCT?Ai<`P*TFbPE^*9JUA)b0#GiU9T3im5
z!k86qJ9XG@{t`t(N(w()H{p6;ZsU0cHd12@EL`Yjw@>OUyTWwI9;jo;V9;qHezwUR
z0e&_{|A2`Qb|pRFODbf{{k72PhEyxapCJuXJN8A}hg+cv6kmxHU^`EQO+A*?&dwaj
zyJCVc(2TxwgHZ-~Jw0D$1z8!K+L3V&6}Pc6?QXPs;$4tw!2qgcoJ+fq>t1w7LqX;~
zPTTsG50Y#C`-j;1J`g}{-hY-{!`OR;#PHs#(lP;`GFR2=DEBCdO&lGzQvor}ym^}R
zqBp^&-61utk{aQZ9a3Y8Y5Yv<(W$<6FeN*#NXvhDL<9cC^~Nc2?L9mQ&i1z!rXGpw
zcTWlz_3VpI74AMOjzRnOg*Y^tKRo}uWS$tRp#D^e<%!UFiGiq$1V>3-ma;d3t_K?k
ze70Dvsok+^w*39GadCPHJ-*JVsoHU$r_{_V5<y6!j(QR1eXeCCvEMYjiQPbymX__%
zMH2AqSNF^_hkusLSg8$b5`wu+J;HDNh!+A!T|`=#veV`VDl27VZy9IMA<^6F#*o3_
z3GbGhjGmnVrXs54Jm1PV$dpX83$u?Iow?DS2egCoZVXx*4iL`NN{uL#0Ou%lKHg-L
zGNu{cas_fMm@>9|^-!uxN&>1|IkcP;%23%;CZvU6KX=j}YR+%Gtolg#>mD4=`WP6)
zTQk0?p;kl?`y3mV4ZNwXIt*k##zN)jfGgJ_P`u4|LqygL*%YOz`vWipA{vFl`HjQ5
z@UYkB;g{hwlA4^R@Iz!#X8D+Vro#-3x2$z){*v501tr~1%gJOvvOL`DpD{GjTbj-u
z(Wwe8#ic<j+c&;H+*sMA-9P))pM9^-POZGlDqfu-2!Yeww(wYUA9c~kz;eNOoAI*v
z_l*5~5cmrx6)j`yN~sZ9>whT_p^lY|7I14;+^3Bt^t!&&xgz7~?XBK@mYyZc@B~1u
zfuLMN9_5vEx$<XqcN3-cU+_mg7vt6B%z+r{s1q7l8&`*=Rl~VDE`=n|$#EvH)@Cwn
zH;=sbtvf${z+u^tUTVKEJFR08%bBPhI*u#8aUGvEqj^w!*6xKW-=U6ML#)oc9mHl%
zzRUp&XG{DV_ng-hPbx3x)V&#3uTflbKl)GLZzLbGRy@piiZX;|XD%ttn3FDc)1IQo
zyXV*UvUCZ5St)ri5i^(hIqYISyxa0ve&c0@B+`nA(D_~dlH}cO#C;XT44?0py<XnK
zo9vFqxi{ibN0c!ZF@udP-YUySNj@<-wz1mIdPIAgSk$P=A^3v>x^;}Pa@Bd%)!$>Z
zCABrirL%rzY8OATG*;>k^NC}gAM1FERoSK)8tI@uKA&3JGPOgJzWvRdX}8ZJ{a@<N
z7x-E?Ep^T&Go5%6iy28TlH*|c;MB^d+G!;kDYjwpvveCJDDoGAk-1A3Zd1~=_@5{B
zLgApmEl1cRnpMgcJYUD&>RC?^0KkVrvv9?w`*YRFL*LNI(<&Fp4oqsIZ4%?@U3?dw
zH$JHzs_|=dO$qjGdcT-{j@fq78ebr|{3>@lp5IgUrrh`0w?kh(EAw|Y-)XoZbvaz*
zd4inVcv@F}gZ^`lQk5Th#Ao80#gMH6J(o1*JHuO>*^1Ju<(NEsaa^Ihyk-q_8gyHP
zSQbWR^n4uTPJ=t2{%kigi$aa_yaD}!r+1@99Z{C8rFu=lXYpzy;x7_Ua8$@l%y>v-
z+4vc`wVLaVLxp&3Y7!2bo1|9WL`n)N^Atuo`3<(LC?%%EIU}HStI%@V4f0KtrHQn!
zA45jQev|U>vZsaO65bw=5R}%F25(|VAet4OZYCGzoZD7R>>P2|HZKoVcV)~D+Z{|W
z;7eK`d71C#f{N@spqR*@IiLz-bSZV(Ni6h!51%t_-}Td7`GfGd(OFsRMN`xqQFE(z
z@mYRRj+*FWvZ<Z3mEp<s0d53-$v*@>UNXApncO;%fb;i|z_dh~KRwo?Atj&vw7sjN
zPohicqG;*#5h6Nh5Ua*02V-0V2O@1vLElO|$&Vm*wm%y!b$p;YoxAD)QnxB;IK9=E
zTg^0JpGymV&M{ALxv9Uqhdn`(G~?r109%fWy$-{bm-fk4N#WBm)g~?3Mb=~z?H~ja
z-LW8&me$3g@@>OR$tT6>XM=T_iNi6YsJRAz(s`Va>ujd2Rn=M2%Vo=jN{+lCKYsFy
zC+8;<4GCkUwey9N3m>oRjf7p(l(>wnp9|t56U&ABg0SO9=N~7j^Z-oRNLrf7m0s6_
zq*(PXB-ea})||Q8@j_d(V!`-ms%}@)Du!%JJfowX&&Ly>@6}e|p2KFIi#SHb#aG?L
zb#~2P{hl~YsO$0g*#y6J05n=03qs`hUnH99ERVFtbH$gtLip#T+Hid?hEVpnthmvQ
zmFFd+-aX$uZ>|jOy(VFctgqgvcGa#TEL0CGPzFmPo4b&?lYXgw44c$q!f}}cDEk33
zG3fq7MA8BqhC=o`oE`*?^o=5xMPr-O4&uun2M-pJHLGUV*EP1f#y>k)J(8H37Z|lH
z`?zS+qsteyqO45>pK->QTsmyCmqMFRuW?i4>YlBZ7gQ0>Vkx5?q7vL(l5n2L&HA%9
zxyt4?RvASr#dpr}OHp$T0-BfVI-MB>S>_0#qTzJXnM$}6w%!MjXcREIa8lS)E_PB?
z(tUOZOCz6P^Zbt$Fe>Ob`65-v4f(o0&%d~d8#%j$#@(9JNcQIEwmP)P^CVY5PeW(<
zBKIrbm#-|Yd_b4n<Km1PJ~{W8i%Zw6Bz~qk&D5&ZUpGIpY+~8YFoW&WwHmn5dI4;J
zD$iZvYf(tQjg>m6Bp77;N7GWo3>R(<(iA~LkwcGAb<E)*az)bQJronFIKnE%x+dLQ
zZ%5W158va%s5ZD#^P;cCjKVWgSUAp@kUOne1)6LeXO)=6KVz`}mB12k>JABgc1PUy
zUH;DLmfZi6?H5{sX??2UCKq~6V7yl<&sMMkF2LVG70l7u|MxcH-&^p^85ri-^>0Dh
z{~dt!fAI62&K$%h&6w)cT55G?jHMfSCH1({s9*PSA0hLk;a#`SKjvTukg?w(X@D9L
zK+>czJoAcQW!-UO-t#qsd>4H`wk?b`X^uRcDNBS7A$w*O@13ZTeCKSB4qjy<(VowE
zE)Q}wqZa^&n(|M~FL#&!IJt}F+;(CNJiT!M$N^s6<t8fe%=?(5<~_s8d0NMs!tfh<
zfz(;t<jOo@9^x|e{&G^aB%nHuq)J;wOinuB0Uezu{*uDdP^51Q%#h3-NlHt;TFU!q
zD0zHjBv7QrO<}4!Ir|try8!pv?hW-p@=(n;+I7%wpHuk3g<Ut5?0=G^9$rCHbZKo6
zU}8Rg-3TZv`~han@ohieUk<C=L*AKX{-*iEhey^quoOw-A;Bc8l%m2b#G9RG{i2*o
z-f-;Z7dr#Hn#m#kTuVy+@|>n)klT!1<qIhJg)=|kqVJU`OVF=(12AoSmqM9VE)S_Y
zXx*nbBrjwhjVwgCAp<~D)!Hu&Wqvj9@+Ld+*Z?mrwc;e%@3=J1r9Yk=;s0T&Al!sH
z(3v)gi>EN*VB&ntljc^4sZ5ii^f1}+p>RXoS6!L0DyQWB{B|}t)^~F5j-_x7N0(2l
zeO&X2_u`Tm<6Dysj;%v#!M+owyZHP42724?-L7iq*sWdpMf}su-U4af;M1idd+gNp
z=`3Y;r4jzU17~LTm2o;e5vORBQKrizb7yOzMk}J$COU6d$}A>vmzlO+c?zWTOx)N`
zUKE<Kn+?sNFPUeZrw4#`Q%yyuLYvYzes+%l>KvtQSwP`wLXTt*kK0ip_+5UsE<66j
zcy8%Vt@uKjjvz}R{WWCYB;$>UFa|&Qj3Z!e@2n=L1N~V45V{FDR?{D{_?X7i3d3d&
zPMY;N6pWU~_IVV}q~~igJ_?`7GH*~wtQbOH>q>S^OHPQyHVl@yjp(ge5fxcl%M%zR
zsnSID@fT9OW7K+y+%r$8UFqowp7xeC;f|AumX2+p-k+-x-o_|xy=!#3P%Y0Z#N+95
ze^JkP{A!E<CL>1YrP=!Z3TxwVD8Bv+Z_8^R*DI(~VC#M<-`W#mm`UsEd__e7KaM?C
z)7$nVKR1mePoJs4kGT$gP&0Pe+?Z*u{Mu>VC~9V+EuoMZ&nk}bceU5?w6iZg^iBVy
zbn-SX!(6n`xiX8KM6-g$_#Q5wK0cb^$C!lGYwjbHHF^cT>7S_<dkX0;^m7-I=F)l2
zEj@fds)*xm5l)i9b(I&twKRFeC_B}!N!imV?GT_C<nK!D={K6b+!Ba1u;;ahi<$Ub
z6vJL9gKSp}@~Az-WM@knZCsY4W4q<<S}I?z>%^PkQkCH-y)ew9<RoZ1hj;@-GfTE3
zs2NPh?D24R1t;atal2$=e&sF@WBKquCz^&=&0IVA!IHldsoiH37pZP?PNwLZmfoX1
z+7h;^ZQ0G?ud+FEYm|vSu>}$ihvEjg3<NJF(4yZq!`W8RGH0Tir3loSSOdtjgToE0
zf_=@XgKe49j$LTmnQ?!evXT|a#4F+thYiH166}a%L;QKVv-X^iS725{GbLDgcw;B2
zwdGB4bveS@LTSS97>XC!5wdDa#rY_AG8RUr3$?=U`_1^YRdRhUc$FvsudK*1w&=_G
z=5>>QrK`f9Rwa+-m?XOn*(H1V=+a~hAskHLusE}e54M=^EUm-M+M})V4K>cy+GlPU
zUvKYERS#G{yP0*%tfrp6QVZji6(Ng>stZ)PE~vfI?uv37xLO3c6w86L*9aH7#8r0o
z1G9t+t;(ll%)=P^ln%S$Ic0WF?o!<txT?XB`W_E^GpS5bk0OzRwv`SQDeC)`vfK@2
zdpj_9;_<3GST4S+YntS3DcbQv<(55?!f8=N_9`HZRpFW+&9+h3u1oTMa<P0#>XK7)
zrH@TdUtoHxH(L%Z$0&TjeU5p)2PLlBGE$a>!zvh(@~6t}$26;uuDCH-H+*7I;Tx0I
ztv41vRmQbnJjCB(ukJj6ry<oc4MnbGYAV<rV5LwF6j$Q`kkr?ll7B36w2US1Rk4ZP
z_qHMBh_s*-*b!0~-{UQIHzVyzyHUX?4cn?zKCCZc7L7K?%$EI_3{zsuNnd%96C!6R
zdvbJOc|#p8HXMQ5kJC@ua-w%`{X$!jWvA~;4}RU$7Vh{%H-hRI%WhHr^!^m5bkj!q
zongegq`p%9T$0$Q=1kxBT=8E7&XfrV)a;ose8kzG@WH59ms}Ls&+_bPa0u-WOL-&w
zv!~u|W-M)Q;cT;J?^$j082P<7Br0HL1q@wQ+mS9eYjj)Y0(;xI|Je_#J9n{W&ED{@
z&7cnS9_U&%X)&po%h@=sVPn=<p7>tv)%Bs$a)8)m`s|ax0JCL-Wn=*aZ)FhlR>eCs
z{1#`?{Jt>j^u&FomW`igM=LIv?bbV4CiKAx<a;lpM*)U`nQ&D81g5i=4b}w2Dmvo*
zQ82o`&q4#k>e2ZCa0TWXRKPy|SO$DHzt5A(%&JL9nVH@r1HOVu%eU{_%07?pf2nBo
z^agHQk;8A%1#s`S+YaylZOH4t6Hg?c<lmSwGO6W(1XKi!ijRWKVVmwdT`LMVbzyVE
zb)mBsjAs2D&jnu%nghdA$VN&d_||O}zxVd;VxxXZ|B858=RMC{zr>UN>3#HB&z~{X
z_7hBKQ@Yi%^VS`keVBq9&!fQf=r1@Jz|x4+e?7bvhe_BhD;H966MKH^OQ|SR6Sm$<
zd2lzqXw*GPkm;8Gs}KjIqU+U;jeqbT=LfxXpGYPa>*KxOE>Ow3&<rFAI)LT^K0wMF
z^z{}!16O|>@Hr7sWN(g~^#am8T5hawZ!w>KS;h)zc60@;RNw(BVx4H_UO9K9%U5He
zy#|0f8of;{VMYLLv;?42Ul`vEHr^<X1s{wMe!RpiRstY_!IDML+C=jgXMOpJLkQJ{
zR+I1Pi|%-Ip9-N7(P)lxOAT0jo<5UwA;CRp>E#>~mlCj?1(~(lSWK!lK+t-cQ<^8u
zy8IIZ##pUQFN!a%bs-u&U4fI9Q2ysyCp++u-d_j;_9o?XDj?&Sa^T=>7siLs0N)_$
z$5zdJ&Cnf5oK?g(({WPGd>8JIM3II1Vc#c5JY*`A+C)N_(N&;Gz1whiLsy4S968jc
z3^#BFEaVSFkajG`=1kW{5n_CuHqdA#A$lK-JkVe=GBVAalbuRb3u;1XV74!^d~GqQ
zafU9U+6YD$7-t!blD4FVWnm`LJcKnw>ZL4HOy`^5$oTO|edV=p#N?$+e^f2L1MiK4
zZmbaiFb9ob3?L}6FF!KDUp@eX)`#ERpw6#M17Rj0_LIKWo{1qYGO;fWohPXLOmx%w
zqRmpU$i??c6QTy9X#i5Ltv+Aj-)Q+Ws1?Jc>>RCz)h3Mrbtu0B{j3@&t;mp&osD|r
zbLK_mno{-W%uL$XM_hfo{Swu*G%~dL^*>D;Y7bPtUb1oUma1{%fbtOO=|6CD`i*PY
zgOZql<CNYv9J(6-u%*eR+v>DJQKr@ysE6a?sQ}ltg@6Kv(G~bzW@G-ErM?Qo%V&K7
z%hR<ONXHSp9n<`BHm{w&)0QZ?;cgc$^rQENfn?hGm(qb_taD84z(}O^I?-19c!%xg
zJNESlTd+5YBPyIk3VEQ`dcE1&i-`d&^YY?ng5~U}t5}r=Uobc)#8uw~YNqnP&RQ1-
z-%0fV#?Ew%36Fo0!v~k{v&A=(`Dif<o%l~^39C@?#r$O4_{hviof)$31V)@yZDej{
z9Va3ZvI=lQnRI|lTeH<pwq6af{!x)_94`D3vhgD<(y`{IHn*drBR+IL?|ONa%K*(h
z3bwlykWrMb*+*<N0M!;M?Ed}xb7x}x^vce4Jx^N}lC}UXdBoHvcgPl;h~4kw<&pV~
zxp|s-g398v*wqQK(gtSx^Y!ND_l}o%$ohN8YUDPCHR>X69RT89((}`4qCQ~i3oN&m
zLKR*TH9}-!=YnXth+#Yvp+#|4Ij6YJM5%48g()xd`;7Wc)-d5g;z;kHi<MnlIH%+5
zUw7A*!e?EA0Dhl#-3MT$Rwrl(v0;(=$v2tz=T+JLpCTkgH(xfc@lrE+>OZD>ebElu
z$3!sFVf^d?gH0pM^<O>HU*sJgyvhX5DQ>PW;Y%!QBeL)E_lKPTSTn?g{>6nW*4E)I
z%UeK%&1TAg^?cH1TjP4<=A{XPjc*3)v!eheJe)-}1K=*rtrUri$SUi=le3%6fhTvZ
zxI2Y$HG`-7VbLovRd}!GMA^rQ3)~vwZ^~ZZyps<|x{K1T84OzCoNK<_iiMS>CZ#U$
z<RzHrWTA^V=rlCB0A)t^r+=*Nrye9a<8x;A(78$b2W1N@=BLduOGt<Eh2-hP;$`V>
zD_^&^&~ed)G7u%98B-;ZD~go^^M~7$gIEI^ysp=Oe^G$H)|qzWmQ|X_P{U2kMM7hB
z>M(rT&1BC4dY%5pHZH^$+msf6h-gwzGMd}Y?)xBMTDJ|};}a?DLsKr~vW-^duzgb5
zVnL8;SZo!?hwxZUC8fjq&4PHfiA;o1qaJM9os3o4@SrlGcg#VQbX=`ZsWr7cslJ^7
zIIWYDte=qIKi<t)MAc15Hq;LQVBTDcONoa8oOFZXN&=XpO<J;%_B7wzz1@hmGPiWL
zN7PQAh90{tsPHq`8u&O!8dvZWI<*6`dTG=2OFj-m;j>pV5qhN{eP}jvIPg8I)mP<(
zCkDRPH%BIwCza_#T{ML%_f4<|rUBeEV3jpd4%l^leNm3UQ19;TpmRjY$BUO#e;^EH
z9U*WqEPK_vbCoHgjiq9RXKnzTW5aUQfEAfeL!#<Cq+>%&u`WSDqX3BuS(<tgg8Otn
zt-z5whsT%g$GH$-QOkpAmw`zf{kuslNssiV^7YU5XvW<6!&T1W?c1jbLyal{XC$ka
z2HbV}`?5L8j%&-b3G*832=UdpUO5X57Ww!*ffG6)ej#JFuEg|SU`<|Z{zjBEAPKpK
zsv|Tsd*Sq!m1<I@d1f1rY*s6=ILYrqmOk+~hjXqqz1O4=kb9|XpGUggZPdYuL2jJ)
z8HU8lh2D&y5NIXbpFl)cNhxV4F}i-JT@;qV;2<j)a1i=i1MD9C$Y&1i42L5i#dNqz
z0ANNMR+f_(fG1l4V88?^2_Tsw9sPvdXlX^6$?Bg-s0NDU=EW;Au}t>{KJg;Y+d=52
zo2$j{@IoHq)56k*VX8EjHu6rXRLcHMDq_=T)3l<^`y}N+tnZZx&DtUkvNyT6-6^+c
zp(2MrC1e92V;6{KN21#btr;YM@B{60nLhBM#`!YmJzT6eClMRiHq>#K6@@DmUu<TC
z$~j@`1l`0};&GJIR<wtb6oZOy{9}s47e;-v5G6wa;`5CQyp3bc7r!wf%}GuGj^FWn
z00Bl1HNu7KS(6Xt%EdpqXA)ikHH5*QToI|SJH*~tCr~gEWf61Wkf3&^NxU<u<1KFY
zP(DW=KDOkQMqAN?{7xN$#t7;~d56VRC43}oZ^8n1_MZOe?Bdcxcuz&iSX5Q!;EmGh
z%M$U7n1=~wHdxt{@kWgM$-TkjDlebh8l?KtdrfZ{+P#^)A&Fs!s{xvhqBI9VX0$^$
z>t;e@7urDgMquS2fZTx4LkI(Ap07}H9URX$<sUJA@`DMco%707Tx+~RYqnQMi6MSG
zhAhWkJ|_-e8FHj!v-Xq)-CZ--TsDYw?3)Ux8rC<=ixR*zQp_7C8rzO(%FK;fR0QMl
zFMGLo;@OR+lQNjVyb%@SBlu3}l8nldOpvj;K)SOok9I`xU=Y;=fZPhtCRutXOXp7Q
zI6&vu_~^dz-Q8Q|)HUlg0K}$YTloOaCQWvnU70zU+05#(5>$JP8HF;Fof5*#3KvRG
z*I)Y6%J~p5@LV)93a8`I`(HkXCEVO8#=)w=A@xMhM;56`)bYO~o@El>>s`h;!5>39
z8WR6HA<ifh-b*;vh!C7J*DDB;yur{mdj*IzhbFIs&77C6`hbB<zCDB<pKXI*O)nIf
zOHVVX;P8oAx3dN?k1uE?Q#D?pV*T)@Srko}BsaW~87U=}Hc>7tTG8FOP&nJT5bb_Q
zcQN@6+}iYPzSid^$pL;&DEwV6Xj2kI^(Wx-0qO2totdFdCyj_aXCpYsnrNX!k8?4!
z4a#e$@94Sos4x5cs^Jz`L2iF|t_kGSRBbCdp-!rd0|A1=WxEW7g3hMNvT8WvVfj-C
zqZ<MPaRLv+4vu2ti+s|K8vKtIO6%Yo7%FSCzG7A9p04QoY0MR&%NF5kwtBr-5=6ey
z<|tuuxmHj?`SVCklfV$3{$#`3F0I;b%bW3+C=qc;c8ZaG?iUeh=RW9VMKy{s?dY@k
z+Rtvrpr?_@2PN1(!sNSV$COlS;I62-QdRoWNTPHownQOj0qHG4gdsb9+i84{ormfe
z3jA!8o3y7&C_6)G%$gmpbghW}Xoau!a^08BD3Ajbhizt*a)@)D5I3Pw#?b)tVs{sj
zN}F{@)NVEg4{qGhxG-|>aXO<4HE>+Xzmop=x_77%YGD+ZJ2jR<)!ICC{l%GnpZn*<
z3#@M&gI+DWLq5Wr+n5l`)(vfE24>=%J~M-7s7yfN2K_BRFz*ePlTU25R?9@6WH}7Y
zsyK4F+4NKMni>&B);0amZW`O$<6&Cs6v5jz1YyjW@g&DA0G6y#tT$nZw9u)?!T0F*
zB`^^|y?WRyuu}vOhK!VMkV=gkCW|0rU-o&22c5f0=gpj?ovGm9OYfCj1}A(<=I>75
z7Jm{xx082WCI5}tZS94PnT3bC+@5TfMEk+b=X!MZ)pA<j^i9h%R__*hQbmN%l|}jP
zea~|9ib!0wsh6jpnDFV3&q_sV@5S!KA`i0OG(5XMPN^2oA(1iL2Gdy897G-NySuZ>
z+yL)=-5d#l%?<@6jVokw_~6>|DzC37M$Nvqdn(=aMj^mL9CJjBmpYJGT7t4OOPpWH
znz~<??r$Xms4P`5cu|};@bqnCSvx{ZOBqT5D~GyXZFV}Pa=7GNCn&OwA9bq$bG_Z{
zcYwq}A-jf9Xaq(~V!+4myf~l0nf>How`8^_;Paw_Rt8wTs(>cm(XS9P0m9Z@dTJBo
zOLtHW*0gME&r;uJ@rWuvjRUsoJOUXF^J{7I(@2qgFt_>Q{6MV9G`3Rh+>XNe(cyA*
zvDs!6(0?>VIpXpFdvtV2u&iq-M3MDu8mFx~ge}kYW9=xVq?NsAn)_}*8`|LmMaiy1
zNOv8KsFczm5Y~wh<=ZC!k;t*X1<jFswNi^HRq{a2d2%K$SNJ`x^WG}u?x!DM2ytXi
zDd0Km66=DR>z%+O;liH7q9MMuh@Rv-{G)Y0s*m#@KX23WMWb;wa0}l?(^SdHh6G1s
z%^x5SJik%H%!g)s^WV_y)D6ERM$oPgIQHG$thZ`LK6kzWM$40s<9YM6G<Q;ZKtz_=
zErvkVM!HU5fIrEbQdoj62#8#&?p~eVT}8?~g5YJORJ8z(BP}V+Kk^(2jP2x{(%dT;
z8Q;H^<SovR-CZ#y907;dqyzcs7|RZRD^GyMxxnW?lNqu_WJUSipRtxz-?4dLOsMNi
z^?AQb8mkt2!FA48RUf+JZ3;+&M}2?%>}mW<9u8^|(P01X-wpXWm#KUBpDX$obYtUP
z)>Z-I4$D6SoUPHXt=nmJPX<a<53=oW+3T(6^g!8p8%FOrN8=oH-utDrUy-@bg5Xx&
zVd|LQD<&7fwSUZHRm(5W_lF|f`<2~x&`=>go1;()ftc!WZdb?g^l84@yT4}547RXH
zzWdfy==Wc}OinG7aIfGPs89$Q%(UZzw2fWbYVN2d0^V^j!*x-iW~S5r>`eyh-T|UF
z=$5emZKhSz(fef5>s8rrz;VD1NsqYkDcOE^%+#Gm;^JYGhO&x^FH2u0!&2AeH#e_Y
z*^f62qpyg<{NOfzcv;vV`S3mV1vu(TMQ&i3gnCuu#0w{Ds5S9S6uswuV8qadZ#|@G
zZjrPbLb1D`^f%@o-z!4bLaMXx6lqpRz_>r%tw~L_?;SU6aOGQ=$$3*Wl5<G@z@5&B
z6fPodWy!yg^CeXiUPf2AV4_@-EwFr^agKAuy<Gw+%?Or*gn3?^Jv@vg!Xs6}-$Ivp
zYw!NC)rb9yV=e1CS5E;)bDWWgPj>tFK?RE3o_tB3E}e)vi_-Y!Oi>c4*ezWp2G@<Y
zkgAx3J9ykDDinYsW&RnlwuzgV-p^1KF-LnN)0*hmhkTQ(rb7xu<i+NofmpoP-=>v`
z*R@#fQty}@sQ|R;CG9E6Q*W=z-*=f#D0kz_89AjkV)6rxI-Dev$K8j=&tvwL6)SRg
z--?iJLVDK<A0!@KU{X(k+Kw?$7ht}*i)Dd+QPnMR_V(=pXT-_V31Zp<?Rpf&#^Dy7
z6k42nPc4WDkhX{0a@=bLUfj2Gs=7L)QNPET{yAn|lgUAav*){zbhIME)C4O%YJ%JB
zMFTasC~f=oNOKH5I+gSU3pe~*FK*$7X?~?vrI32l-m=fK&8(<geQDz-M@(xwE_Kfc
zVt|H+!O79S*$#z9<x-K4F0b7PuJYRO#-NBm>o)%z<Kn#t^HMHTMJZah6j1$<f(N$3
z+1f}{RM5<N!>{>b-M>fzerI<2?-c$1cH>}|{ms0X41+%_m`u*Q|I?G0g{tA~5P72a
z+~~N1qIV4-{`X&I7A!`dxmr5&KIr?M0uZ#88+-}dQGPf!6wqv)`}+Q}RSW>y6WQ*>
zR=KtzQ{4y;cYK0wHwLuFOk>z;x;mx+D#d0xI1Fn?GG;<NSAW=`R1Om0^pzS0ol3{v
z^8WEz*sX0Pb&kl0Od_t;m|al3Kv?n}PEM8Y?C|+QCcSu>`f2lCNBhYE1J2>3nl*h-
zOYy08M?0l)g?!lg-`4Kc-T$S=;-e(i%}3<8xC{{4Vmt1@V#QKK<@?HwS#XCR$+ERo
z5dg)gLf94@M#J{w!d!b7Oy%{@lj&FQAJnprfJUyB3ai9I!k^YDET!sgmHPJHQ;IE$
zKA=^ht>t`@S9C!=oLok%0@N9RK#;i}In0^hf78i(sV1Gd!%QB37Cx4<-B9L|MA4sE
zwUK&txvcnC7XF~dQwx+Okaf@-aRUaGy8)UYq2K}m^|r1^P%Dn~dGRI=*)dG3{YF35
zn%CgP+vjO42Va{*FE8Y+2;v)q%JUoIvBK_IC3t{~3kr`orD^x7v~bRm`uI_v>tU+R
zijqjdKztQLJjtYuFtK`&@v_~WAdiUo*>~UnEAH=Vym!OL8}L6s<l|W0j@^6zFFm)U
z<_KqX@3Y{}V~Yb5{z%Z(I%UE&7ig*DRy%Rf30};hsU}_1+NJ@`x8QeBeMeM~#LK#n
zONr!tM4mKFs26=Ey%3>Z|3sFALEh4I${jJrX1GaIL9<7dXK(TMk9#UAmaL7tA<Ain
zP@Hn}WJex7O}VsSP<DOw5H{q<KQ|0>eg92DnEh#|W~rk1>3nS5E28?aur<$<Jg&wx
zSW|aGkCT~{t$n(<ecfpzI?tc2I);4qFV9mnF|ZZn^?tkSsSU1mB{_(RpvkV;GY1$e
zlA}oLTI2BXh55ZDE!8=al(v4CE`IU4rukZ>*t47hQ1X-rhP`H!rQxs5v&C&=%x_g2
zRDm-YIV(9`FN7O7w4qs5?ioOx^&!i;>i74tiyvSB5>iubiF)HZL|D^-NDEW$fh>F4
z%dxhVWYtQ#3HBYW!}Gwv5Ke>9z}}O7=^}R|H!-C=@_?;%>5+hd5}^>^JovmIX2WAh
z6Bk-cU|m4pShVw1_(`{L_pb^U<)vatg<Vp*aD!>%N%+6bMfPePE_%I3{E%@q5z95!
z{zix=uRFx_gMGGC%ZjGy*cZE6sHnA{c>?TyecVmWr|)RA!ijN(8_+!cTF8<aqUf`k
z*?xGmwob7;8;o&q0m&FPQnINzp2R?6Pa{U~%7q3{EZr^EJx~IRr?v*s6$<P)hTp<P
zLsmQIyxfwvSVndKqh?jP*0~6tSGi))yZqdo?6s*0Zz?$^Vc#a&?2TWLv{1r}fF-Rc
zn7f=yOWTl-^c<glhY?!c>BUQdO*}FwDdc50mx@xA&*}CF7A(59i!@xNCNU##m@jyA
z{IiI8kVA`(zx*znp|^B5oMCF&pE#KJF*WNCvCgSKa6T(tTa)#_I!-_+>A&t*y>rHN
zaX9{@JNO;?0$K;$iazrmlSSt9NH@Z?)F_Ie`_>_rl4=7|6gMQ>kzIL@egnkhScW$X
zv$DD|z8BBcvC8_&bNkoX+{dzd{_D|g#*|S6;+g-~Vrl-b@<SckOg!R7=Bs2%m!so4
zYi~z;CnX-b`&YAOpzq-Pq)-+-`Q^OOK-HtpK-vB*NS4R%UcKi(X?KVTa6Qoln3g*>
z@t3-M{FAD51{1YEC%QBy>4Y22Z-H>M_Q{Wqzj7D-EiwQHU716uk5%PB*B`op!teiW
zZ{b76P~SNE%R$yBt+5I+7g^Ls;(ho3!7pWconM*nXQV0qYoA%a^(e$4zP`pasx+Rz
zRnaK=JDTK5&3a4uEgh|f247V)bFv?g71)y`RGKcdpOZ-1SM^Lt`l@|EMvO(POvFSz
zC_~$$ksDHdjNXReGuKp_%Bx>N2a@JXbR(^*Abkv$HX4xS!OG+2>s&`QENja+!WbM0
z3lS}H)+YF_6L0#Et^T1y)K_^{H~LpfEvzIVEhjByqg(jn>#^3ahy*YJd0{^Ir!j9)
zyMn^hf90S|lF()f6&J&8Oq1H2jE3v-qQx=SA-z^svPl_p-eM-pf;=CC1l~X+DOD7c
zCsY}&G)dfS1!A-@TA{4C|G=;)YWBj8LZ~=p<?g`Vvg1j(A&(A-5B+&xk~3~4KNpm<
z0(@{zijhj#_0<>SoX-^?v*@?QqZV@>N#i3dRK%WNr|{KZeTJndP_gAXE2{5t>fl%j
zha>I{iDW1u?BFLM#Q5_K+mmY&8QF)w8*;Zfj)n#LX^-Z<ho3ILWrDa;mtHSm{FhtO
zAc7K0gX#Mjkq69Ewo2_-EW*V3e9L*LU-CIhKg+@oaLj6Jc+E9aKwyt9KjXb``MYPU
z^+*#Q%-{YBYEph7Y+MH1z3CC=Il}cxcjze}HuH>)-R2t@ZuroSPiP&_Pm$`~I$9D!
z<9o}vYTin?nY1mVsrKYMN_GIonBNO2j-*zYV7}N1`?vKUjBU;gsm__P1+2p^EnPbI
zfQ;ZURatEYk_4~BqPD;nzie6QS5Wk;M%Kk?U1a^d;oCiAqwsEZq{Mn&e<D<Iq@@@a
z2Qw2oWR&r#Sz60LLP&J`vwLRR5l>KMAF{FDIK%1!#t-uMMFpDnHGNTQ3dIBkUSg0`
zWjYeSR-|G)Ra6w(&?1zL)KIn~Lg`g5_Sa(Dg3QahAU>!r(hb}~18yAG(|CqjUruO<
zAsr6hSUDC35F#@*#TR&fc_iF_<dGs4h))}*E*iVp@*mL*55Y7euXmb$H|)0@5LB5!
zf1U$L6)Na*UAmIM_xw_Eo;puUyzii=ccP308D*^mkPrhUEx5!!WQJaLj8oL*bl0`y
zBZBX90*&0-7ON&74H?5)Y+VM1JodoBc1nmYvu}!Z=Ksl1yTz&sg5ff|0rd@8C&qB4
z!$TOoQV3Kb*cz23kAOhrIj-K(y`1eqU-+oS^2z6{XExb>#_U@d+msN~nUQ*IYK2=p
z4h_$(^(6#JzfV!>_X&l)T&@{XxO4dR7FFV3U?qS#O_GqPro2R<m!t;2PMA(Dgm&;r
zf6Rw&GX}Z*Ka+v;pr`;Oo&kL3f00)FKcwsaKb<c97Yyb9|Ih#L;cX+cWK<?W=7sJ8
zSjt77Z|$zxBYEwe$0omjSNsG!XyB;Kn{{MByEyW*Tsue&Q|<)0^>=i3hzv+df}w>}
z>9(@itXDUFH#p~zLER*TjhC6{`(vuhVnRrBd48*1sxA*XN(Wb0X6U}-#q74UpsDhY
z_xJu*c>%gVB0_=(gR|4NA3G%qJAtV>fdTSCOkmMZrnDQPm>t2oC~RlD!#C+yZ{!Y1
z7erhMV3~G%uB+$Q<|QR-1L`C})Z^XVv%R9gckKMsT|QJ4Yg1D%spwXy@40K%k-9P$
zb*<4dXAuBTI*`(+3Oa{wGCsE4z|Xptp1Ih)@Cl~}k?u2#v4J(t4(7yM9o4Uqn8|8s
zmNFSyO}wkf=Iz%wZdi;8LZI!}2i3>3u-60di+F{?@oP#KNW;?v06RWtK=|b+VOxou
zVYp1uXUvBek-A17i#S@;Y$wFDUi_&?Nd%)6;YOe0?!6JtcatqWlxShBhP!3L)#+8A
z&)CQ4RuI2(D`~(CsvAGc_2uSF7G6a$v`=9X>#aAtVT>YYD{eH8yD53MJI7qj6TFQr
zRtW8bFN{0H*wtBjs$|*aDG#2R`EtJ~Yhl{V+BViKu!Qn7FBduAjP|^!Fein@Hy3YV
zUH^&p6kZEyw1OD>76qHtJUx6!I!}soXM*;VmzJY~q8d6xS@GVFkzBG$T@%?O5M7-H
zqAcZN)Wa+1N(8M<xP)s{R}41U;n(?$^JZjknV47)5^93%46otmmk;;x@gA7Z<uX@n
zSQx~R)ffxjeH#<dn=9vYCQY&9H}D1seJ)DG=h(FSk~t6Wlj32&tci;WSEPl=VfS8<
zi14<Q*pJlHLC-A4zxlI9Y(nt;;l(c|=)FWnRJQcRlDIq-ayqG7_Ey@!^I6pN{W^p_
zW16;1b#}<vFrK~yYwWSR>EqgK5O8tk#V|Hwh8SFZrL7Wyv`D%hTzxqAZRd(0ti;Il
zn|!m+Z)kTwRVu1lein#VKY5tIFMhP3EmBQL<d#&;Td1(G@JH+3^u2<gbT<b3FQk9U
z$0IGQq%r;$cV)<zN3GOuN801zx--vPiUZxqTD^`d1Jtb8K~R=S@KtnBN2t}@b1k5!
zQw5{$UTjdZv!mT<Yr%zV<af9c&bG4uxj1R*+NiX!I#q)&Eid95|5oELeK)sZeymI>
zEjQg)0HwE;SNt@w>)|0%KO%WTu~svaXJ1$ifK-voN-cBZmaLYc?E&pEbqfkN4vU-e
zGfGiYX@%MrsF@}xcS9>q^jgOl7`4nGNd^*u-XpCIR32L;_F1FWL(4dKb7h!o!Guim
zIXmaJ!n7c}gY!PL>U}<XS1916Wli>Zu)~}+@W;DOk1nk7<{^7Z=LJZcmNAZ@TlMu~
zrW^xMUIPN8hmsC`vWCe2;UxI`(1dDuQlhUh+ilL@%RGhG!?(Zwg+=`TWPSi(;{YCN
z<B#Ozt0iHd)DX)|nl7g5(>pw9?0Zvdy5J+9MAB#aODxIU+}v@vcT<0>hVd{p=MfLv
z+dG8^n!ddSq+-(Va?|_^aFrg<aVVekT2PpC8xM`1V{-V2r1@szs$5Jw&HsjJ1T@M3
zm*#)Hy&aHww{v%a!xniY^)HB8cJj;AyRIs`GdwIw$Yo7~vm-;p9;{*9ajrvk&0R+Y
zn<IDsey9S)LWPp?O%;gMvC9$n_`igLVqT^N-Atd~%6U0V|7=}xMX|s;l?|84fSK}+
zm$LL^qM&As5c$!s#=y_=8#sC&s)ai`I4o|m*FhC{h;v2mWpH!Hhjajv3j{s$+MeTq
zx6}iHQctre`^9EN?rO#p^liD{bEoCKKn7bpV?Roln!XSnEO!~D?!t>8Q`(CVCH_J$
z!7w+A6NkHvdpFwzG}UGe)Cs>;3?1>{^{K_-#mG%a82vWxAo40jy2^qw6y%aBX^!OT
zNP7tptw8CK7usDlP_9**L9aB{l~F;LbWxY3uMo|#p%mVc$H$jn-?3!Mul+M9x)o9_
zlg{EIWNo!UYc*x;^H`PglxXAPpX*N@I4E=`+-<Nkj`dE1Wx@VFT!JAbHzzF+XQ*72
z3e=lZ6P%Ui_Ij2z+N92!>scVOi&KJvCmFG-(uj>o#2n(13qL0TeS{e4ZTZdpWsp;*
z)ZfHYz@E5xyj#La<7rQPZ;P5mgtbmlR`Ts0Kn9*AJ5z2dC26b^B3X#_HXe#7Nf^JQ
zauwk@BuVEZ#fA*-bss79xD=iQ`5OY(T;SRHb0;y)60W9>JJ0roe#Bi*%`R%e5Qi!`
z=vW6Za)pGFV+Nvi@sd3-wRXv#zgfr$OyUG5vA~p#lW3t)NMJ-iK^YN>-n5V({TVBS
zfs;_N0M~*i*Z^#G;=lZEqH1_#d2?j{=Ig!_{Br}+x)$ydnKr4G%0(Pu<@vOvTj7+j
z7=-s-zu(jJJs$LDFJi==^@MIrX-6oUD{^f|P9aGF0660|P-6K>;kNH@R>P(?;vM>u
z&uah7U|Eyy0&@aE7CQ0`;Y0?5HMP;avgjN7^37fQ1e-b@{H@aRLTFiYetoHns#2Lf
zbem<7xoI0^>Hv;tWS7S8JLF$Qb^bS_U&o^%t3&|KSV^tLukh7wyS)$TivQm4KKQLu
z$-P*S5moW)=>(WL7$ETms=;_L7qtDh9@{awuTtnK0TdJ`>oXR@vo*f6=Pr{1?bY2w
zM1Xhy6dCw;B_0`|Gs(x4`1;+pf#M*Td-@;08?9Dn&kF=G4*#~kOnsl2Z|ch1_U-;H
zLtv7Ek1&bXcl^sAgMr51-rtN5Xl&F4-52qD#=foT_evL#u)hGkYW3~!3Lea-U_D^_
zK>hcx{=4-CBi<YApzryXGuVZh9NCM7_>L!T-KJ*hKcpUu_WVWS0~l(-x1pE+f^GlQ
zdW3FG@qi^}iV0-`l}Dhh`SWk!p}+rn=zso0<~;*rhy>Dqpe2jUU}oq)a}RLs&$5Sp
zp|$~EGWh@D(5=KYn`4P@>v?u;+ja?e?bn;K<e6PCtaEER3E0%{4_HohDokFaewFF;
zWS5&z1()2mtw?T*FFzXGcjRSvDgWo)KT-7HBh$OT|I+X~fUvy1SDTL<^oI1{lL)M6
z_wP6Md6ywi_vtl2GOJ<;d-v_RLjPmtP5j~(-R86-Kho(%pdl6w$yd0&2(F^aT$5iZ
z)3(Zoz3S)ml=JQIu{ZgcSD~Ev+izbY2^>9{-di@OS-{4;ia*Ei3l2R2JFx$`0m+mq
zXtbMo6{S6Yjb8&b%?Gki(cz)Y8>T-i*zu)qywzpoyh(##O$qeh{f_^aXKx2B)?y}M
z14{FJCg}N5udCVX2?Ha&6|P@?KE0Fp!h+?TT^NTT=Jc*#FJ|lcpGV!v7Srmwe*sRd
zwR{NB7H0!{&YO6r8?gR-GAIT@m>>O?#v@q)@s|MUFc6nM4a8wSeRzaxAPWo(HLz}L
zx!scpoqGhJ4)T*Fu-w!jZt!Zv)kp&Vo}VVDd|ic7C{9<1u4~TqQ1z`R)}(7e2vS`E
zVF<|nGVDsq%LZ~uP0lN`lH=66(WfOd8k7*ASqNlPZ-ecKi@^f{(8#f`?;n4f=mBM^
zZCf{fQ1|5Ng&CW=i+dK%wY}BaddE(DFf3}9_PrPK{o{+iCe6cbo+kIwlb%$xsxKBJ
zJ9dli@lf;KMgy{-MMp|{J(;rhKmqk_-5aS)kwpFwQzoD2`lgE`ugI&d7Z=liCYXcF
z?aM2USwT80b;Z_WF2Fl6EKorVkS%`?b_ak=0NHY|)tMsOi*e}iG>b2&-hTX9rKsCi
z#eOc~tROsa2WQ`0Sx2~IxF#17eSZhPM!3yB4%-JHP5^T0rdGfZpX*7et7blWcQaUS
zA@J6(=Mmgk)yOQckF#W`G)Vft<(P~myCoxu0TT&+_^np~R4KvX^N%0*5|WTL4mSMb
zRa}wwPwUAl#$Ycb-d4vhofLcz`ZaF3UTx~At6|<8Tk8wX25_o%JpRWz*f0(KU$+ZW
zN(dN@g!KPxM=;|9@Xp(G|E<w84?1Ao!rQ=OZ@=xQZF!}Mx!V|8ecPE^fL)Dw^ccV7
zu&(w_1=<Ns!;+soua*~9G&5DxJuOvQ@N9{p3jA~OxqH3&s?V7Pfv|V`>;2%Z{hPZ5
zQE+jdmO|IXfX6t*bZcAN240clE4PeOsBcOP1l;8RWa|M{ZV91gpoM-jvG~tD9<^IS
z_FHe}-yIRF8FNh8b(B8N{5EPv`C8)iD4TibDcwitwn&9aMxuU$1<rhIwA|)0(lu7`
z!f=kEK`8BTBziW9tF&7GjsIOBs1CE3Sy;l#DUK#t`JYfU<{go`-wv%o--pWob_BDj
zS#a6bDu+h~3ng`0#E9dBgVkZCXCgud-R!bOxy5QzNtIvjpekVB;d6LR(~DVqJ=Rrq
z<-$Ik*=s+0CKC08Y#{}_1klmr{dxXO5(TFB*cx_rPUO{nJ9m){*DO>0usYf_yx7!y
zd%;0lg0!Ia2REL9BPwAIhbI%K?@4`|Ok{k{q^au2^%n>#Zx)@9=Gi)jEB7;xET+4=
zn8~4gqL!HaVxh{3ewx=@ByG=v*Vz~j7c&n0J+^(E#Oj!YZNGVjLd$UBSnpl><j2*$
z2ZC=b8v3+(sqiB|WKG&wN?i7?t+w{A{R{y_?rv!w!E%8wGVC}zpIC%<P<tXLZ_TSr
zojQ*5PXt1>|MVq5^1SP<w#4jgp7z5t<XH(<XI^a=3-71ErZPra`t5Q3D_fUU4EFUq
z462(kn)4q0e%I1&toTkqD&w)kL4bc7IIzE*m7`clb&t3(bh}xq#V!^PzJ)XFY9sUg
z>j_(0$A3Avg~dl422$gDJc3xgjDo;U2EMQR`j!vz1#z25(scmfzJ<DoCF};44?fk<
z{OM&Mj2#AQ1KLbg?tgmAzXZGZ#lfR7Ij;}L^hq&qX&ZDKf2am?p@TV^INzp(98Qc`
z>Qt0wN?sd7*cE1@zIjeD-^B}K{?Q5_>1|P;Vp0|H{l(_^5b^-<uJ6uz^vh5Bbw38@
zO~wJxe7MoJ{kGhPeN1mE0RdBE{58i&s^K=>%y=&A0uT7Jsg=}7<@tZ;S37`%LL6)!
z@ZWQ$OgkW5AKY3lAlv?%5VtfJFUrk83W!((gA*?tI|^v3ff!8~co^`P2iiOMcTMd8
sXqzqj*`{~2P-kmdz-Puh*c!k9+b8wWRy1OO`R}#W^{<qu-G21{0Erb2U;qFB

diff --git a/windows/keep-secure/images/intune-createnewpolicy.png b/windows/keep-secure/images/intune-createnewpolicy.png
index 7f894c0eb00e7247714025134867ff3f9d4ccf9d..26ab066343d153b89b1defec8d246f4404d91104 100644
GIT binary patch
literal 52194
zcmce;cQl+^_%MnTLPCgMqDLJ<M2Qxni!RD&(L2#X7=}cP-ZG*@2_cEz`%Dtu5WSbt
zMlk9`8wPizoO6EPz292jUF)v<hs8Uy-)BGj>1}(ht*Ly2n4TC95ATMmih?d4-lao4
zJc4*40^BEsizUIhUzhFWH01E`D&k47mRE4k*Pf{ud*R`ce!KX=r{Y$-SVZfsXymQu
zZs+Z5>1m7i%+k@#TfoiMn?*$6u7HHgy&z3IJor;p1vz~`^Uc$1^=9M7Kdxou>Ln*@
zJJLsy$rF5Si+eY5$HN8w%0_iO$z?LhrMuR~7{UpMfB+_yBvBwCGmS!Bja`M)-TT^F
zS36TMIUyo(SDq+-R*@r0sGxW-YIIGN==*%a<otD;_etBZv6C%dSit5&R=_sh!Gn|Y
zfH`Ggz~=q3mVV5;yudO|$xV#mUE1qcUwwUgmo}y$YVYmEAHSZLZ?6gc`uO6hOM1xq
z_afX=VnBZ9pI5G5Wj|Djr~CV)w3T@K-ap`G*ro0M0p6hO-}@KzUC;RcxzVn;)%I6*
zLNdfVo9}nc{YNzpl?A42#U$GQzR_!$-&u1M@xz5u@od*;oU@R>c1vQOsnHN380G#7
zyn@N_-D=8n73kW|`b0+A`nW<yRpu}9LQ5*~&Xy3eJPl1%(7AdUgy0lgz?l7zdRxLS
zV)izSAKnSlc?;>k*sBB7iOFyme`b$FsS^du?p6HwvamnCsV>}k+n1?@#u{&k=4^v@
zh`Zu+<<$_&!v_+QYYz)${dVssDSczMa_U|*VPQ5&w$Wr8APG;|<6KJF?^G$@KHHeM
z6o_vENo12Q4Kq6X+UmQcMHJ{sjXxQt#O{FkO}!PtV>`^8Tc_1BZB;gljJ&r9$)G|A
zhu5108V#9>3Cm7@%}I2!^FtXL4gWIEfz(YRYOwyeR=hJS1Xljjpk6qpA&43y9xZH#
z2_U<@YjxWDQ%oISF6y-wZ0~c%vLiDlf}r}&I{(IuZ^XH22ya)So&!R&W;99Q!N+q{
zXdNg`JUl|KCxS6pL~~Nsf|fQ|ihh}pzugAPRASuhV43>v8-Kam8UJrlNmD@ZgPW6L
zCr24J-p+IIGxLS}B#Tf`cuug^3|E8p-o#vv(3^0+hS2GJnV)!jTz-%8Gw+>uAGw5C
zXSz~^lhy#tg$bheVMl60yN;Q{!-~q!Oh>46I&#HNy#yMlBaUu4f`AF%K5|kuIkOsI
z&7hA>uf~gb4zPQ=e5qvd?D_uOBuLrWlV~vY8+Z5%<E7s;w4-8zkRjxOHxGqblS8vi
zW|u@%bC7LSr$mVfx9bofZDAz8lWNdn<XM0fNs2N6QJjAYLe&^BI*i$cLN*6};212J
zz(|*$zpt=s8mmFAf=>rqK6yRCzrJarVg}PjS6p5=1ZrA-86xtu!4C0gVg!n%fCmzy
zcUfjteS!;$Jw}q&&HkJ>>N3ZuzBz%!U3WhAv^jKQc!}Cn#F5B%VBD(TVvW^~N~G>M
zY;FrD5-rG+j=@R|<!~E&<!WrlSbjbo*qZbYr9)HiJ<>EL@Vv8#?Cbx|7MrkVL|~TV
z;jAY@dCe~u!%UF`*@b`9W}&<0*((mvzM3}1|7~clxs%r67QjT%Gg7F_A+V5}J&pUd
z2*ulX92{7-oGYIq32KSD5+9531&mBUuXqmR2(m|1s)<)$CRUM`pGsv^UDA@^wC?zn
zFW8-0U1PVYUU0us0jGmErKz51q)auBrOLfU!fAG5Kl93LYUM@+K5=I?d$`4^<Nmpc
zdZ?%xq<?q?<jhx&tsTP#1D^5n{8F#0*2k<#KfHEI0T>m(1Y<GT%hkP?Jz_!xY@UkB
zV;$oh(t@xu0DLZ`BgW9`VIvPuudkkyPnQSAZi3e-lx^_#<<wN5Oi|P)Rzc3oF4ia1
z28O(MA|M~jV*2IqDXa8^^(Y_u)}D2n7DxGnCg7|4zs9Nl!VMYBOU(R2lj5Uk{&Pi=
zrUb;tk;UP$6dEh$_b~1lfn^;=5gC6#eoHEQKB9w_6+7uBsGMU#`A|qAMbpp@qcZRE
zE???5H`bIF&54?o#a7rUekMP5Fm72klF#f{dMT@c4;YTGlCfLnaEtn=H8A7=GY{Hl
z-DJ1HvenyFuQbVM)7D^F0-;Pj4uKVoB4V}fmOh-8qsa<^wjj-+E4}9HYV;&=tu_K(
ziDY<V<ln|@)^NBd(n>Y!-4@=xnw=s9KdgNhdbC#wVhYi0-xmtE&w{=9&W}j9`ekDW
zvsGqDLVR7-=Zlf-%@|_<$HvLjXhb)gi<XiVdmE2rG-LPPQd$2MOHR)DL}8#a^FpC@
z+R}|ZXH9-Hu87yOR#KHm;z(coS9Q5of*hM%aSa?pGZWCTG8CcXrV&A5vF&AgmkjwK
zCa3NWOhZm-{%Nr5n7XpRX>{9s`zy<7?H3BxbXA}iR?0!|MXot^@-v6<&i2n4shF+G
z45^Qy&Es}%TabZkr{Uz*)u2z#vO>T8L7waarxwBXRMHoo{3{hA?m<KnZ}cr}y9{A3
z-@a#N9nscI+c>V;Z%~=g4ms3^D}Uo<3&|7;a!Y(zwc1W9L=KMB=~fB$jzzyErC=L)
zxja#>QF+?tF}4y(P#L~|005a$R#lC~xoc-c!XqKBctq8CKcYO2H9y2;N7t-PD{qV2
zF0DoF)l<Lz%C4}O=vX>qhlzZ(MQ9lqsTBaHLEd+SI25^Iew`p8h(Xqm#o#IC;9CA!
zqS8ztB|Nn;DDk)dvtgR+wWC;NvQ`nMyYv@enB@>8Ib|0j7`8dC90cAMbM%Kt2t>bw
zk1ue?109q_=s8Qu%cjjp5{+bt=e5t6a&8X^pD6(Ej9Oy$d7g3*t<l@-P+U=}0JX_u
z1+Ns}f80qO`^!fwJs0wVM;P`#$BUuEae-uTc-h&mzPN5WKc)_J8AS6fiU1FzTT$9Y
zRLx$=_wc30m`1u>%V8~$$bE=HFiKVjZ{sA0gpTUhW(!Cnl;KKTkZXa8iZeS<h9DX3
z^>{4v_eM%Wx8Tb0Y!pv7v_|d<NB>XP{r_8x@W0(?MyqnsT%L$E^rk%IB_x}!(H-{}
z?y>q2y#M;F*za$qa*_7oTMQSAh*&oV(Dxo4#{OEB@Z15DmV2V~>wOi;YHaU7Ap5UX
z`AondyHzOpF91WN0NH!qh+nIS93%b@wz<<in5TTm+<dxXa(It6FnZbzcDgEkxcX-5
zUr@rT2h37_<FmfZlFv89Spx~imlN9+BcbM>{)1xjG7f^?uBz<UHx0h$K`pw||DNT}
zHGYdXQ3+=uD7~_ge@~L2Di7z<o1gF;ct8$3V|;%y=KkEJc{SoY^yB06`N_K4^O!E_
zx~-#JX6)B6rn+?@99@PkIbdvvKf>a}$6gPhf83m{b0lXvC4_U&v}70?L*3WMm>A%e
zG?x;3nd$^it=Digx=ISjevH3=$Xj>Yc*bY7G-KOT%D=xQooevUwxWRMvRBdHZ>#Pl
z1NAPoHaRSja%?sH81tIJ!*azM$KqI^Vm^TGrql)t8cF$kFWn#va#_;opZ2?T*6cSe
zBTfD<BnmEwAUqW-0J?LBsdEe)e^u@{diy9a9mhpSYgIU+WwR%mjmDyR>v^9EV7k<_
z&h?O%zICE>rk3HF2>0uhY2SE{37hthFy&{XoAsE1G?aUzRcA?nThq_a8Kf*NE9oXr
zMRgyd6dW*Kkz3Q%DgfB$u3bsbK;D(iXi>F0J2gqvyktXd*yZF`jB5F=)EIPFAOZ0a
zI?HB)gy!9>K@tuV@<sq+`sbGGbVokCu8bl1g+;^Gq6f%`<(BfEnRun2ci)qManqK=
z)xo@^s%NKX_XK8N%*U~Ne)M6h#!4t0x&k@kwqhAeH(-*7WIwBop>G?nohs6NfMnCk
zPEj(&XWyt6OmVCRQM#Rk&lwVS=i>x2;ei<he6kfiZuV(y*W+Z%^=LJRu*g!ll|A_(
zZd1_sAW7LwOL+@O&HhA#FlggF>X1pCKLW@l56^z&jVK7CvBD^sR!a_g%zM!TV4FI0
z7UbEC&0jO#39ccB>Y3wpw#5>Ia9WVBS%<Xn9#pJRc6PJy-EH3`&x&5YUTj7hLK#Ok
z<nl<U0)tM==0@&%yqg_TF&pNypEW$|ig!&(JM(yFm4KX(k2|4#YF$o7J2r2W#l$un
z2_^AmZm~ZdYq2*2wJ_dpKy78$FDgl12681;AZ1TyGzz89qn>o!`#zoD*GJyyKFqf2
zvzvMS8>LjFr$*D}^qw7@OcXIcHivGNC92=D3gxw07k4?Sh4!I2WieYYR}P$%Mh@Cy
z!oH>oY~A+i{Ism&=U26CdTm@F%GgfsriVl{b#te3PZi!~<VzE_?iesl|M|%6uZPT+
zT&^3IlGx4=UJ|}Bf?)T(-EdOb7x2CQS!cXOy>(x~tY9N(Tq1RA#tX$NEiDGgK01zi
zl##)XBdFqZ>S}ToRy3Yaw{mcw0RYq4#Rp{Hl<!LNHi6=0iw34{!>*9qo}@E|UO&9y
zf4ab!Jse0K*_lyH!n>*{Xz(H7jG|i(pUG6gX+a+|820$~{^3#IDW~DwvoXc#T2o)t
z==ipU?`W3B^x<a9rlvI0g_g(wz%@95G4%TSL&PM=d+Vy4FO@Q;VWLCW2kx#1`oi@b
zCoBBj+>o-Y&Ar)Rfuff*_AM#nFyTXqS^JW&pP?wR!?OT?!Bb8}%@!KD4cIOvo#gxN
zh<JYJQKfUxUUOK<_~si#BFs<htQ1=b%E5^&2zch?SOwBPUo%PGR)UXLdwDcR&TF}2
z24Qe50&&jtxG007&E(*7-(b>qLZ)Ok96Lfq;V`sX^2!dS2Ibn+CDHFC8iy?@soD4`
zi)-m3fY3PN%`wfQv|Kq=nidE4{ff!X;3-<QDH*(k3ijim;kncP7hl^A-DY_rTpix2
z96-tl`CdX~sT;$@qo6Vmx8FRtA22R2UTmOxX8ceAMs!NK;9L_pxxI-X>$U3czxGQY
z>@audk3!Xv%1<qO-}D|WH7MO&S@&H(sE$eLTu6#Xsn9_6jv7S>M!KWTLF}Tn%dO$D
z_-%R%)~^_KcMHRhPb#eIHm1uyJ+Iabg=oQ<Z?elo3?Izj#F^1W$13bvtNYjw+Wo`9
z3-gQPi;=1KbCli#r9+tJh0l?9=eNjiVfA`_eB$8nt}D|BnxCwq$>}JWvL}V}MCl0;
z;0Msc)XtENL8c3}i_J0$I>o;&j|a$xXk94$8@y;Ws5ECj*L=@RQ#M4__qUg_N!pP0
z+bM0@E?7;5hB%|U78hOX5T%Ark}phx2-&IOq`$r4<D@+0c=<hdsE_Qc!Mfl@W~K$$
z>4NY7ksH*!3V{hbU~p6<Vznv%-}}*)TI^_qsF?CU{!>#6a31g-k$H4XyqNaGeQafg
z=pWy__6eCR`v1zg{(s=Z?O#H``x=BBu-w40=(<c8=BhM#!!wlIvIR7->^1@{OPm?B
zb%zH$3y4T~b(ub~YABuY>`R!*hl%0ua}I!<9xs8(I~bJ>2|pt=z9#F>m>S7F@dHlI
zK&U%4po{kS-)Q6U7<!>k<zfB8qV^9j(Tx;6yt(+Q1V;%<@`z)2Zg8e3JT<iI0mUl8
zX6txj{KKlFFV9xH2DN{loeT<o&Ix8D&`;4~8Y<p%?o%V--j?OvyZjI3(!!A>cFTAN
zG1YHd>W@0!op2}<6LpbqUVXph>F|Iwu(R-r>O<6{2BIki%ah(<J#I2*Wx*tC2-!e-
zeu;4~wf0=k9^t>xvXDyyB22mhh{aaeW+KB;V`NPrVLVz@#YcoM;-kP~9OF6Jl`k_)
zSC&n%_r|u$BfOreeLvQD0Vfn!Se0}C8#!4cvuxjwcC@Vla`FHswJPzqOUAxe11z8=
zVhySGj*A#PVGm-~_wi^Nx7pYzq8D)%{4?IB!h?4_r}z=e=H3>-4jz4lBf+B*WBiDN
zhdSVY04wfevI0iROa|ojs<HMmKhsVQHj_1P;K1u=PlQ0(S;^LqcH&{J-*g^dW-5H#
zlvw_#Y^h7Z(yv)WAcuSzPI%2vYKS`NH7^n6tIlbbz$)>usDth6r*eOy!5FI1A7{og
zXV_fk<J_jLM)hN=YM`Xv@tO(u{p%*s`w@xo);)rancF#pAFs4P81;oVmA;W`bXqQS
zwRMIs7rGD15EKYpNr-d}Ek&YURDd|zRz65NQ!k}ZCu}kNiA-&ZKg!VH>{c9yMN#ZE
z$7a$8No_BFyyH4029~_*2FhGFA#ei_-01xr=C!CbAm5o7pTve*M2c4faUv++`N0?@
zk4qVl4NTq2zC#2Q@AnDznCv}z_?cD4k22>o+Ko?K2Kc-Y;eC$3)b!m)5q?74u>w;O
zkp|8<vDdm2vNc`)wd7>J414Eyl}yPxrX9V{!Y1+3P6LjXp7KyAs`(W@*YS96L9Bml
z4SDx$9%ez2Zwr|E&BSXBlW*bIZ7Kf>hk<VkxBtg0pFB=l`dbc+ifZ~t(6F6l#GfJ{
zhmbwwJWuvGPdScpP=E<o@;kuRh%RZ0GlL$^!OL!dMIXZLf9JDRxT;8eqyfV%-u?Se
zG2<5C(?d}IAxq$-ZK@-p8jE>^3zjmQIFF9!S~{}=TpfQVoDI{&u?rx4dij~N2|0ew
zm~A3X<F5gK7Xo8yjVh33CUskDTHwZdA2IIdgNihcHA1->;|ben_xgo!g}oZ!@AyB1
z*nCT4=2ah!9kaJ=fezZ+BKUWC@T#>^g%up!aW9M2N}Bj)V2S9R>e)y?kUZP*Kc~5J
zo)h;Wal${Km!SQYB>HLm*KPFg1d-)zoe6yG9?ytbGi%}^FM|f`T5ktx4Y6CbLj=R6
z9{^n+JLHk8G#3DaSDkBqNAsdoEGYENxKL0TcnfkBewa;&^8&wXw2S8fs{;(@n3n9I
zr84jWz@6S5yU%_OLrB#gt+%)5E4T3iWP{wHmvwb7#7wVTV5)v^Nd2EfN_AHq;cbz^
z5RFB>Wl|M-QXSS>8%89@bU8?6AHzS}#PBcLHn|<oFn~{g!p_$F&$iEh+G|POtvx!&
z!u!uxP%;=382X;rma4x(@dO&YrwpbfXvw!!$EO@~vX-Z(`Ns8{{-BMNk~!iZ3S}*$
zUIa5@+A%-e2Dgt+wGdaA%Fgxx0Pxn*pheJAR4!r9-q@q<Pt?CEvR{@8eK&*9he0Rz
z&Zl8Vz2^sdOR@cDSh&nN^IY&j@@;ayT2P`R%jel}>h#6!iCx)1z9?C>?O&N3gDAWX
zdw6?lz59_8bL6X_J?T;GVWvx$sSh^E+u+%1h=nGx$kpEzoh9eT`htJnJ4fyMgN{P-
zxM<uDcWDG=qp)O9sXp-ex#aTrB>-6)dQ;3XeeqJs*zY_pyswg9cFJBc+Om47a`{l|
z7@n+WLbWZQcmIwZ=KDr##CshDgvoCq+$W+wn?Bzfmi02U#-c-}gU+@B5ZG{p5_ar-
z7tTe>cyt7hpYKOt!z@yI4QIU&=N|K43Z1Ap2he^1@b{dH9Co^#ZWhhuv=FIka&`%Z
zh2PvF48qu?$=-l7`<PdQE~@n2%H=x<zu7|Yv9>i9DJy$aCANLCbN=%OBCh$&-eNau
zRt#6(!%jrVU<D6n&@_ikkDZKjY=J?9e~6Z65=3cR*fp9^g?@t(ls=w&yOy=NdqzJC
z<Uto{HBf49sMUg*wz65A-Z;{kQ@R!I--r9=4HQt=Du*lw93Mx7=Bo`wV*?`RqhG+a
zVl2W-82xk3Dnhbv;+g~2L^wh(SR9X>*44I~#BZFA6OsmEqAfzl&NpeGJ0yqaDfuu=
ztUDIF&=hnY*P{A@*&z*r!2gwihxdJiz(&UB7CTEH-kp~}%xg=PKM$t+oVucKUL<X>
z-*}y<^v!MyN60-i`3K#Cv9Q3H*8;b%>d`&ncaQLyhN$o(Xh>R`cz0C@hwU&P9Bv6@
zEU?O2)~cVEXfI6R3j5QAZ1C)Bt=Xz3_Mpu#05TZ*$Kv=Q0w?&VF!jY{XY-Tw)03nm
z)&J59UV*)uR}+ag#n?5nApy)3&EM|~U1vR5nJO5OdC((HMjBP@DE3)<d;`W!t<i}6
zCZoywwn5V6XkMoRJE7Pj2_6GFS7P;7IeE<@lpscQ7hLR>`||A^4VE~77Fi6DZ`U8o
zQ=Z^h#veomJrV;)XUa}B-r-5R3@kwUKD?-O)LGu^*haUcbPAT}75gJyqLE_v2R16d
zzE+1+gVwl7?<8)}zaKZCX;q2~#6Ap~g^_p9lsw*ir9kAIKZ%~cK8G}n`DI#uGL-Ke
z-kv;N@j5qF#tw}do;88@%bx6z1f9@;*Pcw5sjA%xfjDBAeuaOo6ERL0fCaCKU#!ww
z;zIKFsp63$*IBe=BOhDL=aMVT`wL;fCvbN!q*cNypGaxt+zO&%x1*rL5mU-W!ITZX
z=oblzk@JIhS7hsVl&2QYn-|;9ozCR~sLuz-Wg=x0&yEdY$6gUzAivYF|3w<QAQo>u
z02TyXElL6Q`-#gZt!;zTrjyFLw%+j6ctW&^uR@~adX$sw@v0!r(zV8I(qRXth7)a_
ze#ctu0huA~v(+mAk&=7AcrW-8iD)?_8_yc0h55FVoTtu;fp^Y>EU?FC)3C!LSU4Jn
z^O;=>OUy^n*$rze=g-<3Q~@N_kKx<FzbZnlcHVI1FK=#9g%3vM7tk}Ejv|{6L%5+-
zX>qn{swHaA_}4BUN^=#Zm!_4fVa>t%@bQC?vaL<2vrOm2IF0G2%jK3*LJwrJL$%c0
zLd7eS01)P3H{+R)-y&iyj%|ybfBy1~LiXhR=UIVZZ={w;NB?&7mi@uTN!{Uje%mFn
zIcx_Y6${UBt7XhQ6_YFjtCzh0uZ&dj!<8ew>F<2<i8XjFcvma7fI(s}c-+`mO?pB>
zYN&YIO={s}zt-wTD_>((2vzni%JUok8y{RGgtj>z@H6XZ!j2`r3My9eyT!fXt@yNp
z5x!9AGd82Mis?E3P0szJR%d}1OSStlXG^s{UEtvw=VYvG{eiB<AOT<)E&0cW8J8mO
z9p9Q|=K96`i}Rel0(-WGS9E62)$g_(GUfau)wnoB6v#Yz5f*fqcEF#{?Ue=`!cbjV
zb+eT|F}nwW<ISkj41|X_0`5DTvKN_yB*B@n`pqw!*MUI=iBhAjI6o585TA``I^3_D
z+53Ltc3zbVh!dOhz#fcmwCvK5&Or7eZ^E^fErSz7kT4s#1|o1Qd^ii-UP<soTPNc!
zdtCBTry~XvcJ}2`b{7tl7|ZsP^Z7%q8Tufl=M=jngruNVt#ghwa#l#$&|MNYSx?Gb
z!YcMl@bmBY#<{M_TIIYK6~ZM$HyHj2M{sD;89}+5ZpZZYIPEjz)c4Wf(1-e79rlrO
z9NXU0=YLde;7<rq-M#@hFU=#8e#`X7R9pSd#bO80e+=XeH!}>Z?Ak@8bG>&Ay<Lyu
zmM60#{B1pNT+|_mSaF*BclDnSE>@aKMGd@~#8F^d(tCV&>2U397p@RU3zWHl^&kiN
z>N-ETb^qjSkc8%@io@9HA+ux<LdylZ+hkF`z?@m-(RV*!t0<5-2iY%F4Z>{`>irN-
z7+8nJ6`Uw6QtP)MkCMO(W3w{g;nLG2cNOUEUR+J5HT-u{OKRtgiJ*zUIP~5ux*rH`
z`6RV?g`rdyR~bd0<Msrd9YU8s2gETQN>B`S;WA}W#j(<c<(D@k_vVjwtvlUdPy48)
z-;)2?`mQq^Mu=lV-ZtdC8D1CQ+{r2&Z#g4yYnQCw_@l|0Z&rgjeHs_8Ueh&oA0=qy
z)eT{APkr?JwEo{+0Owt^hb+Ib88@x!jFu$jyvSfTerC6<Otqn5sNNfbbDnvWS$|-p
zZZvxI8;4B}qc4a*<mG_L*@nRU_RMejb3Eh5n7B3fg`P=%Hw6#7`l_AH<l*ptiDZ_l
zwQW7F8Q=JtTL;Q~fWqEHt7wV)oE@8qZAGS`$QUIHuFMn?6j_~%mlOQXyVrstWd5!f
zP2S08r%*|nZDa7POxx@sW7BS}B#zx5Gh3ebfBj+JxcMU09nr8&+D%8$=&q;0FG~+f
z{D><)!6SFK8|_H+Z>M=0WSU2@vSt(R2;r?!J%n@N7_CBBRfBEXg8rgiAq0#)3bZet
zWwjWUMYWrV&X%92OB41_d$;1c*vu`5v@zh#IFmRUn9Qxx`jvF)t~Q?TG;17DBR^q6
z7<|9Xw;<V-p>I>SS6Z6XEqN{uyI4#ONwB*JFn@_+?*ux2?iEh(2KC^uEl7{xK#Jes
zH(V7%;-GgCKWjU%`-yA?M(N|Z?CG^WIjb#2i$m9_w@7t=cx*r$`qd&$<F*uZ8f|!X
z+7j`vBt<K4%dLLhSp9^A`N3n^wq&TE&oz4dC{eYeFhqDi%y_GJfny!kn(#1_DhR2W
zaAG#@;t{_jcxom?;h=VV%YyS?5tgpOGB<deyx)#wI6z?DhneA^$X2`{1((Gs<B;)#
z6KX%l5F?~Rs)9C&5J>ig&-y_ez72bwXlDQR1?SR+l|JU7M?-zrQ&ChAWs2j&YfOP=
z0Y_B+52cv>@72!l@ZENj;RsFG6~f6Z&4tVsLfpv~j>P?rwwQrl8cAtw@n+CRzmN{^
z^8=heau4EOx9H}(?O&B;LJT~sd^_r?Vcg`1DH*^C->_9J1bjFcK<<B6(%%WAB^h9i
zLmj6$T0t5?(r1Mvr9*dCC@<m#C3tF?UyHB&vAqq3Im%PqZYi<<F4_Llt1iz}5@ZEO
z5#w>FVUFdv1Exe9g#-K&CwWd7SI{AeC<idRO;$W0kNO>slHq;z{LC^iHD%^Pq?S^!
zO<Wo<XaJdI5;R;oh&IVZ-jXk9$0-!9{c)k*Hg*_XrF$X<jy61hA_M>%51=D(orIgh
z00+!pKiUHke9zBuF!r&;;R*4pjtDRapDwtce5zPKb9A+`+d)68$EL_W(7m8NXz>BL
zVG)#a=&TaLmsa05CC27=e=mBV=G8vcvn5pn;Yl7kym0n*`T)o2ntF;{c8eTnZr*pc
z${x{2`%W~vl@Cw{_8p6A9p7>vyU1uWKh$Muz{`JE8NFQorJtPrcvV@JKElG4xLO~l
z9XNaT$L=mwf~e{nrNuv6(O>VF*3~ev4tX!<2rDg=`H^eb{N5pe!!`u3#%DZo!pX||
z^+Gp)aZF|jjW}pRLo{y8H&&RoXQ8#Liif|#bhWF$PG+Pr<7NI^+T5ZPwqaERmf89#
z?-4YD5#9P}>TXJb8K1!-5G7)4Sw3TIlwn|J?7Hr4dZIh4)!>m!nN|S9ixNHk5xU$+
zu-2S}{9KY%J@2)ARrQchH=B|*loqGY0b4B>a`oy@lwt}YQ=ojv<|O}KBV?8H_1P3A
z$La}Fag<8=Tt^&%2DF~z27B?4Xjpz8cj6l|uDNrYWmU=1PiwmQOWUTU^lK52WB)N}
zT_>Mn6EpJ+nvw_lJeSHgjiw*Mt;VLxu6tgoGIGrrox~TRmA#(=kLEdPC9Zg&LVbw=
zXy6DWz8Os!ke;GiR4pJsyzv=uOJ0QvDDyYB$wMl?H2K1+G(wbZJUEuFa>dl{eLD{z
zX+*=!^47Z2wD|SxNhf`cZ?1qkIuOe9ej>kL%W#wdwTK=4KBt<$5D3cOH8ed~?YwV!
z32{VhS8*&FXh~O#RSzq9{NbTIynSuFb`xE?%(bacHVwQvw9wwTwu$ThUAdqVJ5FPM
zwF5=*pWp7i)8UFq<i5col-oGz=Os^X+os;8)2yM?Q^wVFzqF)DDc>Tm)n`4AIPc?)
zRus@ITFwj~1wn{6)gpO$49s_8N5bi;tK8ntK7XrO82IjV2l%{7NzZw|hQLjLFRguj
zdXFIl#1qrJxOfdvZLZ>xe#71j%JBG#F}Ngy-*CTtlY$~?|C*kI;A0|I?J$MgEBA3u
z_#y+mtRj#u(}^?aY<F^}$f@$lhoc*5MA>dAMW{*_bCBoQy^P9zTcfA*@s5rDoPp5w
zWf8Xa0y|8t)tCx5ie8n}^*C0)(`3j26U%pJDe<Mutm1I#=s0nGL$M8Yk^6AjCEgz5
z(An30J(FXYT0lD7oze2kxCW%ie`4yTHq#?Uzr#LxB07<3(A|Iwll`c_!6pM+ds6tW
zg*>7Q8$wbC{2pfFtKN-^VX`WoM_?n2`~7zzMeYw+Fyd0+pEr_}?vNr=s#(H57$ayX
zDwJ?tR*m50_iJ8{zoX?GKRhXNXmds-nTtoYc}GW!*~u*zTPMUq5cgx=Ygk+vapr7a
zx4s2}T9kGmZ`hi#ceAdy>G1b&4y{$Y7csBr1HcVcw8|N|k2C#Lx?aAWv4-v+s83P%
zA;scu>W|49m#$lykSH0m7(5oxktf<6K!1$^Fi+iZj%bPwV<-m+`K(IDn0}WZQ`{n#
zVSX(N@60}!#B+Qr4V>`WdB&a2)#!eUrNQBtQLhq9-rMc$oW~fz8)w2ro^xlNp5vY9
zgCgxZ&~|04h-Q9?GvAnSQxCmBgJ~{}Sncx7k%$V8nz(NX^bEVPT0>|<;pmEL9@}yj
z1NDyh_OG8xoy(AmdqpG9Ul<w)I~Mxax80zKiYQSCd3Hn43;!DHqgN0zI~Pnjrek}g
z4;^B3f-CqY?7SqkNNt>jxTmQYy#WmdX5e)z4*#G{Mau4JzZ&y10qRPAz5?9Wan$+n
z@`J4Yhz6;ILscspB@B>&e<oNr<7&6zNwQ;rcj-)j8HlyLl2!x^I(-CB8j*Bz<JgLe
z#U&~3Q#HrHkObpi+bdPH>KWX(fG^rDWuJ;rRL*Rly08eu?c3@rje5TDeX}Ox!cu&I
z^Gn=klm7U(<cV-mBb|xNGQ)8xA?dl<8Lo8hx7ww{F~90*@Q^f$b<h=qHalDU;U*81
z;XR7KIf;wv@ROno`h^7G5#TSp&C?^*GDeCmF-&)mqk4Rz2dvz0?vPOZysdWz#eS~7
z&o<iUp6{DI{4iNURndZky{@&9`c+hsVv^PVSCx=;n^VtrGDT5@xaPcJ&Y-F7ILMAM
z;6qHI>w_--pH4*_W_5KyUBt!V@+Um)g|bAW6*YTUxYFd+hPPCFp)VYJ1n?4K?wb98
z*p`{!L*5|R5O%iUl_$D3fR?l1XHJh3kq0rc2}G28Va}kf=v|>4T;oxDFpEguIU&eq
zYU%97f6hZ_#j9kNAN)FOptR&=(A~SbK7667DzX%mKGUIEA}U{06f9c|M-zp=oIq@e
z_w~B*UX}uEF+-6SLpD!qke`dG(0V-H(H6dPc^>029c#h)iTS~qB~P3<W-ktKJOa5N
z?NRfZx9jj{(*D{OQ<(N0kkzwPjiDOdmgdvaE09X;!|@w0li6b+H{~5Li8!`!-2Prd
zsI%3Fwp_pKNtuuduiFkw=hE6xF{6~RZ`JI^O}AL7sMs-a2X#)$;Nn#rXF3*R?6c1<
z2^yu^WSzYHF?J8|+{|}#tzQPl`g8Ax`HT6ZHzcSB>%g4oVRd;$$@@xhuBC7M*}be`
zNYuiH!$~jB)Lz3G4r_R-vcvpLL>yxa&VbzXb;qbg){KLX4T5qE(44Ua3Fn#WwcV`}
zIekl~{Y!Qczl<Jz^u4Up8D_udij@nfE?f#}661#XAuz-1s2{Rc)}X01hz=kEfV0+O
zkw1mmLt}^l%(&<he}i$0lwJAlj0wS)E*-pU6<$2A83Twqf8@PKE@@MQ`-Fx{@uV>Q
zR%`z6eg|vz&GXoM0?lKdW2Sy*4K&Zwjwb-j3(gnN_nouWqLC31dB;1JuWk;39WYN1
zAX<>H-}sRjou!8jP5Cm_?-Oc*x9ES&Bm}+q+>up84zB|x`sjhTQ3eHDr>~Lfupt=$
zECQEar3D$ulnKdqt^Q5P?mYAyG`b9jm3q60AJfs8I~Uv*X*t3ReymEED|_mVIhHMW
z^==%%?6a9oL{V7w<1I3e`U2FKl{8}$83BRo!8Ek2Hr{_jsS8`h--g!cOMX;eFD>A1
zud&M6HjaYCgD`9sJ7ib7Cr8lMKFfcS7JLBn?~IdxgC;gCvgr<WDU}>^Dv}F<I8pgt
z+OPvEQv8!8RD*t3ovtOAics5O(AQhu)}{G(-jdYiD=^8P*k!(&v;$#o8jC<D7T^Lv
zTp#n&UoVgIU-TqZpa8q8mIZOaah+Ul!BO=@(!9hUwhRF<pkcJ}kzRKM{y&N5rC)<M
zzg@&dfQ!qn{)?za_NzaE|9=mC%(zsE)#K92`PB7|r%zojEv)^Pf4RTrJ1JL7o#860
z8Ed0a3d_5j(H2W1-#&&Z3r_ZS--?dr(p>)<Dp3)+pP_4EV=A&mFRYcxxYn4la;26y
z>crv2p<|d$u9C(38M^O}4Z~YJ=FN>Tk}6z&&baD<dES39ogW*`@VkF>2xy+GZe|oz
zw=^M^Tr!1P#-EqG_qrZUQW!gu;cPR)2|Sx|emsGmCE{YWg!b8*8BPxR4Sq+ZoYo3>
z)M*|OWZ)H@Rx^H_IVz+!IAOcX+95Q|%S6+<did?g;#`upReewR?KcvF|8Pzt+nOID
zyQtn<Y5p2WJd9?y_9Mwf{=f&o(ym!Nz4cUT%NahjWIT-K8~;K1e}7jBfs9DqA6|Et
z7%-JHH#y}aH-Cmq@x9;uHQG8&rZ3uaRgtJ>5zalg&e0h)YC_Eq^V<cOBsZc<c|IhR
z3#~Fds*%j5qv)QPnX&B&dR_s-2Xa5ms8ndz-hVgrU^LU|jS+|L^@0j=ZL_q+clDX_
zoUZTQa|ZO6_J1o#i_6Eu1X-T$WuUGOm3Z6;PdvKvVm^dWgpR~IZit><_Jyu<cU+sD
zH`XXyn?=;zjG8lrKZ3r4J<PTDIj4!F>Vx^QTP>8ED8urxvNzX8i>ymi@sR?Qc~1NV
zZ9=P2VO5Q_L0EZPrJ4^#G|r}votgC^Y|E%8p<nBv@^^%n9}K2f*z`)J#Td}75jZob
z7SHVsSxOAOi{Z^Antk)C%(Qg0phs_%T+QG#j;~HwR9AC&|Lx7st1^%)E_gwiwZ1Zd
z9CB3A<5X(_hQTG9(<Xri&&dzNKz7SzE}zBRJe#F&HTtGOV`ZC)L+%a1HImhp8vFQS
zF4|#gk{)m?5)a!cn$HFg8S3VeWAWTf*Vy14R9C766TWknzS2JoaQ$%iYQAeax8An1
z>VPI2*-!evMc7}`HrnMJ)siw_uCmUM)IzbKcn3gjP7OB{nny%1ZnXfQNmC4}&TvxS
z+9^#?Ns8gRpG>ok>Z=8_widosl8>>qA5q*UwfIL3M~0T|_bD2^+^?&4SGqld+1gpN
z*BBmHWkNrxkvxd5=Vvv`4(nI-=<A^N<|)4;Tz-tSOc|y$)f>wbT#B$Xi8-jD{yhCS
z+Oq9hN42w5E;O*KLetf9R)KddQsaglnYU}QB8t9B5~W(;;>fQ)<maLm5u2=7wLq)|
ztobTN+B#qr8@*OnSzBIu`jEfW)+H{;q)8by?cVsMQHjFSNsvi(+@Z}=J}t~Mo|oN2
zqupDm%=3%rk(G+*ZN9P;>w{OHUJ3EPe2+&weYw@Vt=c_zE*%!c@7lz21nlO~8veBM
znv%2i<wW|pr~rq{1Bmf<yC>FkW-G<|ZjVyB*vHG9e0<dKRG(QVlW}<o3&UQrx!AiO
zf_loxhH5p&KG{yGxZrhD;*uG<ryRUDE`|S2tFG3S&b2MEHd}QVRwwMR^qV{E@Gi+=
z(CrmDX9V;fWwTqhBSZTTWV1GOs>9G#*<m<77sOO;4)PsKfh+j9_O`gIe#^$?aHi}*
zV*+LZ1uOc5d6a3fu_NY_(Qo!Ns2s0P0Nz1d-d^d+Smda;JN-tz77lOy@;1@>QbKEz
zRp?kjcA0BMc3FO)kTxX|`z|KjN2l62@OtChr!DO9BZ}h=YS6m4ZX@o}EEcBwqEF1L
zNo8pqYjY+H@@(0Q17Xds>V!#FebH-nl%HZ00%UzCsDyY@Qf<HTWaKgDX8X0Wd0RYv
z$G+<Wh!v=IQD7JZkRqfz1)So)ofJfQOf`pE`K>YihyYB8oKlax4$%2dR0Fd7gkmW3
zU9RgN;tqdpqIZL2@hd;^klq%Xi&MT7Dq>LFm+z@P>a<bmTgyhp^UKbcpJ3lQqlSHM
z<(Ae8I0Q}Bkaj%zR4R8|y3Fuc^9f-=o>Mczl{|{KhQ}z5VWRTOjz0a>>wk)yZe}g7
zI~8_4^}ug<EM8+#_1e%#8lwf?QsZ-{C;2Eq0Ixe$jp2jyBw(#IXVH`DPi(h*T&oSn
zDQbKZc}s0&o$HdOG+)#@Vj+`5T||P%ij9p-z)Dx@t}>V`#xAg(&5T)#xFgtZ@N;(D
z!t~x1m*q3H1aILW3p_wh+0=%@+T#raD~zzHH{jBji9HSa(P*mj5FDLnN!qnu+=npV
zG0)sIYV@yIY4;Aif3yGnozD@+mQVDxN}LhJ+4Wj{fS*HqMC__VH_TR>HFFhHTDRck
z`<dFCD)g#RRITdU^&P5Vu5V-|Kl-d^B(^vh-6B+SFgp@?=+hv~K%?*#&&jYXubC)=
zo~Qq~v?SkLot!VnKI7OYmVfuNm03;{v)6;Lb@WwJ%}P`9y&`LY{zl#)rEA>o?d#4@
znBIPO<A9fGv1ZAipbPB)gr?O0i(nVwl`$TC3!x!@(ePE>1o>gOg(6o4El+2@@mX-d
zpgt;q=}^!{v2m`lvn3{c92u87g7%s8m-_}~BwiE0K3+EF(_Wl-yuoWkQ;{EQF+7%<
z{jNw?*G5!is9d-<$&$w=(+J=B>l9g9g-w@BTG+OZ2m2n0^V%^|N0}soirWDCrEV>t
z4sfttoc^4T?uV{xm80q-XD&6?9qU@AI)x?i#AqKvp%=nZpD7~N4JXoFX{$04xzZ{>
zRPaL#fTHqKzDT&_dzqMUoPbY0GkNh%g@$GcXMBvJ-<o|Nj2{qAt{xIDW1E$rfQ>8C
zQ^9**4gehlt6vEPS9h0_wtG&dAN7hSy;XWI&LA0ug3M{Ja+rH0ndz%?18-uxHXEIq
zzo@x<97QQ7jJlcLw0zw$TYkZb_e`j%+6l49YJdzy?CG&m`c*wEv$nNyv5y?Coq~QJ
z-10qy%-#rBT^%bFrwY$)<=ZK;=L~d)I7SCE(!FTaZPSYXX!Z{E@#)zA%8yHBJZhNq
z+vc??Z_}C?Y3dIz^(9bO`=gJe4S8(B$IF)A)TxY{h<?jZ=!)Z9impj$mLU*%e+q;P
zS;mTGQd!YS@ZGEIKuW2Y_k@V>xm(vNKp;Gqh?FaX-xNfB6%i$H+3`q629(6!*hG1Q
z3bzW~lZ{vXuhP#+xP%5-nmuTdim6OxL-^=7`>efGhao?_w1lVU_?j@No4}23^;O3f
znK`l?pb8D*CJky_zPh#$N@Gwxwbvcx6m&g{8$bALjdE5ds?a%qHsB{M>)K<`sdm3d
zoab)Q7;beVnvS@j?hWA+{$W9qp+<f;6L_!FRDv-(qQB^|Z%kXsYppz*l6m)?MFJv*
z!OCWX{*KkM39DtJ)`=9<;8=N*-hr;Z>dsPpePSvS&@XT|{>fKWV`lhn0EYyN@tF>N
zDi+9&%r94i3L0}$DktmC0T1l=^(V{BGZmMv)bye2bce6L=z0Eaa{c8=V>hD^cShne
zXX^n2Wkp<%B%FxGtAa8J&(>M7pd`PE=CfX8&U*llny5xIRdwFb-KW26NG{J%>l%+6
zKebdPWqvhznk@Tdms);`&Qa(`vImS`T%CdY?jW-3ht$1;=&xmfDf2Pm;eXpQV13*i
z^5r=h<w4(O9sv}p)KYlS>N}TpkTDSgMv9HfLozJYV0W}`B5Q!BJbC0f$Um`X;?L}W
z#)_>eljO|d>;Nd`r8@H_&3lgy9`wZ?>B;Lp#Z_CC!ywtxNLfq4hBxSV^rdrynq*u4
z6{&mB)GORfV@cV(j+hQw0CQ0kgU@|b)bT%pr*~PCc^2CC!?bA&MBBtDhwPgje;2=8
zlXNg*g1WldrA$J0VS<14o}B*XGX*Mj$V-t>qLw;P_QCJyUD)w&psr`53Xd3sdr9JM
z3LR<TzajL~ei%ISXm|gMG|lCI+a15@sn}Z`LUhaxi5K4Ao)0N=J}1IkmOMGOzZ8`E
zYb+8e4=0o`KHF5@f_hK)^*1a}4O@64aebcKA(u%LU+nD60v+aX1roMT!(ztJj}nY#
zvNtk={FfeKzKr9Bz2if9kG^P^Oy7fBEY@xB+LwnO>FF)lqZ8hCXsu}MM#L1sep>oG
zoq(TCRyy`o*C!dCq4bh0tnSSrnuSOp^@mk=&SzQkacN6eE1HZ+;uy<UdJ^}eOcr;?
zQsk<pG<epByMStiX10!}G9US<4b_jVOEd~vIy^<w#%Hd>kSAg)K$*8=+s?iLLe~!W
zT{U<06mIdoU2}Tl&1mRpd!6qL!B_ajA+BkPlZo9L{B8{xLT7;uEoQ{+_yt`z3)%tu
zeGOMYF<fddZCn#A5iP{k)e_y{WQa~0vOd9a^s7EY=6bPW9$*lzuh`i~Y}W|nWP-nO
zsq3f~cuge_FGMCcghI%U-7u)<GfAMZ^LO^8;IGF_)Z%;g<j%euqdh-ylkt=xsSN0M
zE&aPdm?@la;gLK(diI_y()~w_@-57oNwYC=*vn8cbaMOoWw-eBd4RSjwN|Fe+}dV}
zlt1}gpw{}ijs?_t(N%Y_aThEj%kz%w;MG-lrnb)Kr%%-ei+$tl&dVp;UyIafXS=An
zPITLZOfZDIq%DL{b26sK8Oij}q{ZqHU8{~vQl$Iv;ES;AW3H&k8~tk3m%IXWw9Oc`
zH$P^cIQq_bL=;$A-ZJoxu#5iG)PG4nvrxqC5}&U@WNRF_5WY%lS>RR;2mr9aW_Ho~
zK<R;UW!s7{!rOj1nVuV^9}PM6Kbc+?>My<7SIwz0q-6ZTNI<%{Hi7@C>G`o4L_qWO
zv*_n>E!+L|RE>(P*!CWCth0)+pjPL{D7m%#_1Mr+0rRi{a3#M3-6H_~CmS_+&DBp+
zHI`S_rxjEXU&21)%ml8BhigW$2>HEkB93Eh;FI7K>O`!fa9!e=M*my!uXmudh~b?%
zL#QuAO$SN?oGKSnxj83^Y^mMJNZ_6eY*$Q(+-@4uT&=i^&uaA2$8c3q5oXoMZ=k`q
z`c3IcJ8^_va`%I8#<JyieZ|OCJKF~<jN?T$a!44=<bcV%LbKvw1MWhehF<{Ia{I-}
zq9!&l2Swp|Wm?DeuEW(K12OaKQ^nIMR)vcRPLfYPIMjO3F{$@f=QG+{7h3u$zDbD7
z<Ety^<u~k|;?cTRn_tsje6yq8DDK|(k$%qnK$06JRPF0V3llDl!77wgt~;!`4EkH?
zvkp{FaE5ir>|{-@J~b~7bwr_FWU9skR0lp$Y#}`jLapOPow=b09+1iLllk_CULL{E
zYC`%oZ#eR^=XDJoY44uaT(rk)r9XP@#7VZJ$!<5^li&=A`gt4!{WaKFB(}Sr;48-p
zwVpKb5$ADiu4oXuXYp`%8+5Sc?1)fgfm$4kbscAXKsq=VYECgoaL<i1gs(f?E{w|+
z$r__>mL{To!(7n!J<52>ek?k~>J2^Nyl`Id177yW>ghgIj(dxr_&r@3M$$Xt(x+ln
z-$f&QHBNX(1NShTikJ>tZ+;=YV5s*7aHy<Ar#nR`ugQ~XCO=8~b9|55nBY7yZT^Yh
z%>X_U_1Ud86Xn}tvtw8GE)9GCEE$<n^Z^F#_lT^ot4z5UIi1)R7({ba#kHqQee!gP
zjZI<qHH?hSb-k--SAtl9^J`m($opR@)qN9=KWqU9pHYo-Zn;$)eqpV^w$w4HX&UD=
zii%iVj2&DER2e~Y=ZS9__vPa(n!#${Fem(Wn6v-A1n*hk!&hLxHpN~Q+|{<ZE9|uS
z_jRvV7KME#zB~}jY!~<(a*(FW?^xo6Cr~9C%?sd+_8wH{qooqyNQ8y|rog-Gl>E~+
zIa~Wdd9(2-JBHN3inhl~b3H2Qkc#{yN9zL<>twZqF0I=65&2cKvkjKb5sS@Ah1uaU
ze(THD!<pZ&>`~osxehNA%<1PzZKvO;|6HWUjT(D!Ut6hc?)W8MQ!N7nPZ`L!#;Dur
zjm=#RT*j~-Ag7X@i+q&@ys-ION3jpYW<0g|!Q+6w_&pYFrdS6ruh5HmxoG54Y>D5=
z^=;SPS#`wEsNRH*rgz}N(9fLPo@ZuNAaISy9Q&+q+DmYi3uwvIl&HUe1|!;xm;R=j
z^Ba+K-Z$ez^V|M|t)5ahk^!G?NcOfE5t`g8W5JQdjlB9)9O&BMNZkFg=k@qA&UcYU
z^m?_H)jHQ}KIIjNTI<^XIBZdgcwU`$7n!diTca{qY$22_U}ROG4#-<5G`@a6u8P(!
z(UHM^Q$LDlVJJ4$QOaq9Tpw2t`k>)#dJolP@QH$(&~e;miQrhWNF|~X;)q(Q8~PaA
zrll~<eXqxrsz7@KNLytK;VkkNAmV;r*g!7HFy(RDqwPA#0f<FSb_5m08Uc6sv~YIE
z?9+waal)j!PG=Z3#k)2gMkCo1GtnVR)eREzxUTH4I>M9CI&9ZBD<1p<h;hMgI2UqV
zHjp9GeFwc|1ceoBw?#D%zW<sI)>lDj)I<lbMc!vnvS5B9(ezPxOrD=f(j}{SA-tr}
zg^9lt)@d?jKgAYGr`m@ubcYMfP=03jxK#!ZjZxlggTOz)cMa?fvw_yix@ONiheRc*
z@*+RLAxl!$v+GKJQMt!dKOOS|3dTOcD0+A~EnOcaM&2l3tb!|iddpweO7&Bsw){q_
zHb-9_AO3`YmqQ3R62V>6hM8g|o+cilDK|QQnD(5(Od!s#U`g;QC+Dd`RCP`5i0c#0
zftK*24=SaxI@AhiR4gU?>sG!}YRY6x_~kK;kMCSJ4AJ=>e0T{9hFJ;FkRtsLmS6Tp
z(Ai$ywF;AgE|WgdMrSK#bsU8tsUJzsHUFWUW`)@73yx9fiw`L!(7P*d3KvQ)+t1yz
zEVVEp`h@Eq<3<UF`)5<Qo8tE+-KgOfFl#N(9zy!Ti|Y`$hWs{!i~*Iw5_dzT<L1a+
zP`|WZnzL0eBtBlKTWr8abrC76-d%u9Uib}Z`#}{7_O;OlrD26p!6B1F?&=md5Xd0v
z<%01e>)2S)%=-3&`h)M5q~^@hb!qHjRE2TS(e<TlKi1j$&QQBE@>Gac_@yoJ3;SUR
zmo0*$1t*%-`I%oYr;q{9nqQh2x?5e$@g&e!gA$OpB!9Ryo8zufGn8p*V&-p2{v`fq
zoJbCLy`v%Z`RU#!nR&I(@OP7&7YN~~<2p6Nh--ql{2R>Sq;D3c>eV*yK9p(rKR(8F
z12&H=D$W)p7zCTw!%0LD!3v%|i@2GY_`l-$Z}}I;kFRMclk5gWh4Q&!F;jq>`hV=*
zKegjmXTY=ErnoaQL5Cv^NrcDBajUWddixtf{4p_$Hu-2xF6Kh){{wd%{dH`XkRmX3
z!W4_BGu)g?%}jcz=xVifLD_$YLRxA;&)R)X*2z}E<7udV++D&n)N_`^O!?wzk7$D|
zW!zN6ztdK72mtfOM8L`Lcehg>6K3w``x;&+0BFwtAdGN1=-Fy%o_z@nx=RkamMI_d
zB9Iz^>%07ic<6EvJ_UHP7B^t;J&lv3y;*x#zo|)v?EOW6tmm4j&3B|=pUcH~#lI(7
zw!vKfJ$m+Mkn4A*aN!iT&*%UA>jc_ZxqoIGumagPlgPEC_eZ#7G2L1**NMTq(H0{;
zp$Sy~F2YelMM-M6?H0I-F$;uNjf5K92`wi2TjMXknEDW2yp??vdVJEA6ZQY_CGI9d
z*B;J(2O0nB3m!LQ?9HE@ltI_NIQGNj$=J?(mzT7ORj{~AH;0T;8(tg<UbuTPxO*oF
z=Rgv$nqJ!b-=s;1$wA%{4#dq{DMMf$KcMz4ekA<ZMiWw1%{(N#9+?$>mo&vr07%O3
zJLfb%!mt^4%SQyow-Sx>4ZpDbi^y%`GdgGAi>p9yk0ltMt9@UEkZF$(sVa&@_T&BB
zm9<~{HNeNp!A=1OS26+Q;9NGNzgvOCq=FZnaNNL^GufsH5PF5Q4~=XBMF#P|F=#V>
zK}{6vY*71$2^{QGP<X@`Y$r_cG1eT1d!-r<cR`4|r(h$QhH~Q|8kxd!h2!zATnk&e
zB7QwodNi5m&!Aj)q$vD+f%$BKM4*0tCBvP1kkJ1E{m(c$LXBjWr$I~}9aBtQjO`cO
z3;6}yDKyu)n7mUZx#+E4NK!(~M-!RQGv%OV<yx0XbY*JG#*;GtQP|n|IZ%rdCpN~o
z(We0tIKpe^?sCA=_driS%t4Fxa}K3CP_V+Z7J~lb+79SsZH{s9w??QajR3&orDo@g
z7TD-<*x9~2Xo&%_S0L7c1h`{b5GT^O46Tb6hoZR=6idn|&3$_+WG}kdWIjc<&Db4t
zmM3q8`Qb9b^8{OU@-J6a_+@1>hGQTX6mq(tkk&>5`Nfu1b-2ck(A9;uZoPB~TZ8-I
zdL$K#dGRt)ZEbcp{f#x2xTtAxIftp~POScvln=Vikt7<vN)%1q6Hga&>(c0}V1aGN
zLcj=N*jfs|^W9`Rtmh{;WtI*3z|*Du$qJtR=fNA|6tVW54_oQ2s_1JSUxao)zpr~P
z09M7(ub86w@+Xn&w7;5Czay*um&shzr;^97Z<%j5K2#KXJ6g3UL}bmV$`m=}CxfAs
zUs3+Qczer$DBG?JR6&$Rx<#d9C@Dc&y1TnuT50J<YG~>1Mp8OPQR(hcIz~FrJs98f
zyzl$toImF;&WzW6U$OUId#!abidgNics?~Dgs#_U`Z}DksuDj5)~LVnJDD`4NXoL>
zkFQyF+vGP^A?WH)9}*8#5I{pCH`#i0miK+UDp(IJc-}kbO+NxdNfG$dc{6&Z0x>w_
z_JydAsH<P>te%RGd<1w{0SRvYF9|Bh>fThV{xEA<ngSW{xYpF2NfTo5B}Tp>_WWi6
z=`T<<_h7KRS@C1)aCAopPRr2{FxGF_!rby~frnpTnh8VfqvBl-Om<qUi`@nu6mB|v
z0wiiudm}ZR&z7W!MUC`0#b@6{hGGM|l^p^4b`Q$u!xiI=<WLnfv$#igLsF~R>cZJ_
z%S;pbsapQv@Yb4)UL>mRDsZStX=Pf}W)I4nE?UJ3(dj1jPE;MXF|h)Cd;K>SXM?*<
zT69*?I;NzB9=;zeq1#Lya}&m@MpH;YdMvydp*zp=xjN#j0)u&A`gx@3P<76Gp&0ho
zr--C^>tm+m@|*X{DQ)tq?MEuh0<!cpe%L_mQm+x{_BCRk2GnV5=WkcE8j1vn?b&~#
zM{KyPDrwkQ6=Q}pa8e-XzO}F7`3rY+-vat75{F_~WY-w_qe?s+j4N9?k@-(>hZ#^a
z85c;DAY_v3M51kSY>$XZQA4Af2vi+cT7sHo%9PQ&3k)}SxPCqtwIFX{9wxZPE5+mN
zYVnZ`36upLE^O-GC4a+qe?w-C{e7iNLYYpo{I}Pd%gM(n6D?6>VJlYgUtuOO{NEpp
ze&k_VEKdU;JiiOFLL;i0xWo*Ot4E@LmbUNA5{^&aE3V68w&yRe6+#$F(PwL$O)khO
z)$dc*YCglNtH)iO;}xC}E=mqXc-6$5z~0}t3Sg+wQHh><1Ql#gAXqA;EB&MLW)d{A
z>!q*jiJwJjnBb14JMbN>=tAi(d(p-9-@f(lRRW5x-@Lab*CU$uyvO%56(z$ILK+DS
zh*-Yn>v)dS-Rsg4*&sf8q|^6xu3)Q9Rzn<z57x^xN`j&}V-cLY&qX<~v{fraJlS-l
zHe8)b!0=qTcP6$whx{w2VPt<p!SmXw8e^kw>AngPFcT;0sa9dxFbu*>#;!*-)Md1f
zMh7j`vEf}pm=D@C|4>dZ^cF!&)<Aq@@Oa$9R0XUu_$2zuKhJ^^Y}KZtN1h(1OO@UF
zUh6y35?v*S)+^zXsn@I`{7-tsFY)~FE1pR~6edmYu|gkd?v=#K5gR?aN_J>X)_5LX
zwYq^MtKI2e`tJ>{khw2Czu&OAxQFZAX(<-BkDxa-Qo__>hF)58S(1g<Mi_OEX@|Xg
z8^|veGm*lliG;p+KJT~IF8bahUv8#_+c>O;SW%=I8#ZKSu0_+}ylG0L?=s4>pF_5J
zzom3HXi01$Cfi6K!<sH4evNcsat9L;Id#viq)d&tWJkn|)yL*(wea%>nXaVRx(uAn
z)jAnfoFZzZx-|ySVwB+Bpoq7i3xrpeda|Q^R%*5{xI`54p_?OsZix0S7t%=|^3U~t
zukIbLA<GtIz6BqNclVf@q`UoYjU?bwK%in~`sn$=H$zVseM6aNlLZ>2`C3PW6x`4}
zj3dowI~LK$#?i3BS6>Gii|)EG`)2r>^4mgpOKv2csr20+QUgqV>g_RHpK@wwCd?hV
zmPV!3vPJGHg0Y%)N_YFrt+)rA=7%-{{S&`1Xv%JI3pB(>mKdeKEg8tc)w+9V9N}>K
zX8JXi-lFB*LXiMo%18hhumO=Mur*XI_4-c@>6pLG<e7=hwl;{ZS<Ers?%k8QlXA_z
zZ`T*M;YV%9e=fV#R&DP;&hVo`29JIuiqKE=gaaJD>KI|ZdXOT{CQ1GLP<9^XI^X4m
z4<aZ{NSL%p&st*9=I|4>qGir)*q(K)ov0nLvn^~6s7M+b(DA5TwV)ClH?h+wP~Ucf
zcy$*=I=xmCng1%UHMN-Sq`r$RnB?SV&ul++cdNSSkz|OHUg_yv7VV*?{uxqK#6vn}
z!$zOMDAo`|@P8a9&$>F|HW_Q%p7t+t;jqu!xYS3s(s8#sCrD!tZ`yF{_h0Emd}9qR
z;8OauU<E8GNc6UM(dCBDB-)(DB0g&bY^T!$eH7febpdYY1J{Q3A{;$e9}U-ux`TPe
zYgn~gRkYjxedM_ByYJ~p+a6di#E}4r^&|%^&HRMVk&Oyc*U2+vU+(pm4?ozHk|}Nc
ze)nrC6|RB8Amb=ed>bxezABX|gAY`fH99le;u1y5Isq^oF{x60uuG|_2IX*YL`kX@
zKi5RP{=Jr>p~Za_W+m#VQISc7MQsT;G#$d~@Qz@!kI=_&_nP};nJDl)mGoI-Us=xH
zGqrB7TBPxss28;xf)3OxaTHkSt+rQ6cf7_PnLA#<?GiY@ib~LHIl}6;&#df_&UbgO
zp_0Xjr`O;a9@g7DNPEz@;V21RO2hP)NX(D0h*z3k9>k@k!si2dM)nS&Wz`7GLlPtH
z<U7gK{@oEAr20te=ew1P&rd8q@d~35>9Djrg~sX(zm<{ib7CC6&e4R9tFbO;J|E4B
zrUP-)=25MgL0B9Kd7J0v8NN(~GAMnR`!1s8T#Ls=wbtk2OpHvw(ncLKBBe6DGggL0
z2TR4$!a{Tnnx)wj6UJA#l~&%~bw3{zl>J8|faZ?=6`z+`>Y)YI2f%s*Q#hNXXDoTp
z{cORe6jhU-^s4e{=dc7WQd0Av-gI$cd*wTMmVw~~eh{V}J^gpRuXbmStVmIn&*UIF
zTxxuz^7%Wb(`rA|D7=cdL5z3ilphQ+fF|_q4az?kOn)X#uKD-=W+Ns%;1?=tFOE;|
zY?xR$9X#CVfKJB#{MzGYqmk}0@rCC3GOIFrORYN=6W1H75?SdP`U<zoj*(&twTH$@
zDrvcKbgp@}C2kD@?n~^e$UCj*?czkvuKW0L^4^2z=YH(9GklgEufIQ#)dH&J-?|kz
znvncZ#6#f*w0Mzefd_H-(Gr|heDv~jbcWmU?ncAqnyp$wQt}=<)8e>Y-KCjN(jwC|
zd0{h1klZev1mwH)pFdOy>d<o*-cc>mskd`zw1UVz7fD(C)>0@iotzsl%_K<Ypw+}1
z+~dA#w0g(u!k<D^Qlq>X>MY3?IaWKXe!uR$H1E+4w>Q@-z+oo@^&gF6lqY#7ho4|7
z)!^ENfY0irphd!6*oII_fc|y@g@VMMnuv;<w6zwc4}G`_bV$_#d#1XZ^-><fQr>+2
z<}voJ5bW)fN6q7sgc39EKbda~V%HL`qBD5vo%9Ed=E9vMd6+cfz=A+m2XGtW`qdgj
ze$r+U2R0C+X2F-nHeg9mo~s*iy2q$>WReAnAbY@2kaoP~JkxxKys#v2B4NdS{34sd
zgQ0ra?^CZkt#k3P5(-4;TKv*4Gc|oY0EfG4=A~^%S;i)&diw0i79T?aF)Hooy#vuC
z<rF-SZ_$6e$uEISz64|ZKK51zuj4TO=9HoUz033-NKnG^?1Sjvitx7B`wDXo1ZVR7
zzxn8=SSap4e)O3R#J!_CYncy}9`$CKv~p&!?-RE0{Lr2#9d9anq4>F=%Bq8vB8jh*
z*jo&re8z`9!aZHX8GPO>Kqfzz-Jtt<+ZYE;^Cpq7;pLH%nomd{dk00v_HNAmzRc^s
z?r+R#_FXlf<_U{{aTZ|dYy8IvU?JRSIR2%Jum1pRj=$b3UL&&5J9T3zDWby2OjUS`
zu>->+#hT|B>16=XmlcucDzs%76b>a|GStY^vwLF?_D+m>nI>Tp2K#LD?EJrr#XmK)
zwgAz5ih36e)G^AgVRcqWAgwXsmSb#;arg=;nlBsa5WLseF3^=q&0><c8IVZ}aj<+2
zNP_}pDgIW<8);BcX;!K`ob<yb)j_K(>1NX8pIIozku4Mm<i-Vv@=z_iLmA#Ex6qTL
zK{>ZxF8eCoQ+O;$r`mmI=-Yc9B>_&OTIVRn1ty3KWX!lEJ;;G8uaxqn_GH*%A#(R!
zRkz2}vM*BPVHh=5g(7a%>e?fpOUckT`##mYQfl*W^qLeiBM{;5zwfYGXNJ-pHSn<v
z`mU`iG<#5stY_Or{IM!M0o4Y#;$nT#_C$?b9+6~|<cOOwz7#cL6+D}kPeMcLQY&oB
z_4p9!45)hEZ3Il>0*F$46qG{HXVJBhjMsM*L(t`b^X8D2i}KyaC+v>WXc%_@yej|z
zm{zn5+Yxf!-7}zXrL&ZlO-eQ1R5x#CU>hwdLJV?K&X;eamDG6=eXVh9rmVKEXQ@8&
zZOR&^nykgMmBC)n7M9~jpS$D~u2m;5cMihI*8J(Rxw~~Cradfuwvte9P~oPV$V0vb
zi7Ibaf&L&H6Pf9Ih=bOgH{#@tjic^xCScIQcs%e9ylR}lsFFu&PK9FA!%kY&zTza6
z*06m#+ZQYzcQDyc{2&+YsR?G2G1qinea*fupp`N`U&5CKjyhArvy*xEoA0E@f~&2c
z;f_UpAL;Rgs-M8o9e4})1scu`^1_e0N}k!J3~-7n{bgC1vK*RKG)8wlz#+a?rMJDd
zK)H)w9T%%e6asBU#S+B_;YgJYXC|^SadOI0QQifsq{!zfPtnk&(uE9@ls7NZNOA9t
z703H12f1wWbf>0|A>{1Q8OGb0CW2#NL<LO6ijjpir<T(KKFCl8&M%f>op%l^^oGno
zsMXhH>WNZTgl7gF+8_#v@jtPIK=*~5lKHOcE~{1>dLam;^KS^zQOj~VaDP74N7#_*
zoZ8TTDtKQv-h>S6SFgbxBIvPK4InX+b?t15=t1=}mvAiR*Te3|tu4+oU~0by@sqOX
z^v-6RcR8irJ~E?JhuiuLmRv}q-JXSgpifbeT3&sn^o1DO;5N>tMN(=i4TFjL%efuw
z%eXwk$WeYq9FjVTIKTSsLdp#fzHFfgTp7NI2qRWuyVBlQ1cXMs0ih>`f}i{9VRpfs
zF%c>(^r2)B`a>+p$v8xtvBnF%e!Xsr$rs;h=9o><p{K-<)otj!{-tQ|=Is;X)_axV
zgZcI2p}WX(DN`@o!n>wtcDQhswKEc-AqU(p<RMgJmCTgPl8K4seu#2h3svQ!JGcip
zmio+EB@G7<>1dvoV`|h>wyf#s9UW$(Y#`=t)I%4Yx2I0p4mW$g^C1K&i7|eGqc^w3
zWbGXmsYH#2{oS0s+!dn(+YQmz(+v8k5uZ+jRXK1LP~sTI>sAb|4V8|+ul<Y#6RMz(
zxRz8_=~I*okvXqJ(um_m+B58WxQm$BIORCFBIL98j<^F}qIP=`N_$pNNY6OL7wEW`
zcvZq62)&K2KlP9?oMW<z64Bb$xu#JQRKMd-er~qcbH<Cn7>ev_nxj^VEPNv_Ipqf$
z-N&6=h-gO;BjG<6zihv^*}Kx3$CxlFpjV*u9)p8PV*(Io*mW2`)f#_AotNTx5I=9g
zWnyKTvXm2Ei;}0O(T8h3|JuR-YpC8hwv`*FvoIoPUTwF>2WK+ZgOG5*qcMG4#-?Yw
zo<#|@A=mB&;~h%XU#+~0-IkkvW{M3RFNz}e#hBec?W!*bZ+39k64CsrLtek>nm%pT
zunup%=xYRPoA<OmPnkY-3EOIZ5y70Dn`%=Tb7033cX?ReJ~ngb(xIgK7_gO?*%pGO
zE?72as4)Ie<I-`#W90h8`>D5$jkedA5Bfx1lo!PH)X-{cY)93$<D=XI(IX`75WA^O
zu{y7H8f9O;Lo}qzvl_zUb#c00+x_aRsU+~hhTmsoq#fRksd|`)5G7YXJ2_Zv9k7QX
z6|$8NW{8ht@Y!W2V!Z!~%kH@|jm4Rfjw^Tf#A!w%pIJ78=HOM0$jbEu%SM>L48K0U
zQL5BrFTEJe0#DPcj<H?c59}H*NE?w*FhqAq9r;uD>RBsK!<90HHLG8lMeza)O<JnK
zDba8rs3;0Lz`oE59o&GMif7z_Iq#%g<NTY$1rubd;TG6^Q<`45YWWs|h7&TRytKA`
ziuG!Q6xLt0=oWmn*cVTO;0!OiDGb2^?2>rXh;UTVL!=4>%L=awD^1Z}1|gl9$+i1c
zt_LUh>`SJPU}Rk$BJ*;0R1DXrA7edPueLvX{O#+IDI-RU6~WGFvvwBDrV^pzU`Y1r
zu`A~`uG46tW3E{zHARRSi%%!w_;Eb>!9Z~VLe0`LVas^Z{Jw>0*k!V}Scl(kTxeti
ziCq>LzH^G9fTH;F(3$&<yWo|W#)8vDY#P?1=gwD0Fg~~8)|F=d2bh$&g$&eR<^wlp
zzRvwkq*frts~0Ia`qXJ16Pu*3%N;T#1!~tpnhVj8Ji&YTmawX_ly}gG{;jvoR&UaH
z>T5nNSwxBB+YS>Oy<kc!c~l}iGe4t5wBZzJZJX$phdoxMWJHibXssm^_F27DwO|9q
z#HP8~tDT}Fw3thO$CB;(tGwjYlF8jh$_>SQPKXp{w>GG0xp#uZ;;!Pv%uzrRSNwtd
zAyIg<%mA)VB9@PtLDoR=CwYN!Jc$h>OH@2^>TWthMS|=Pnp^MP{5Ih;S_tmg`5vG@
z*RfTGv44Rvxd-QtoSg9hkL`VdIUj@|a5KaIpg#KpV0?4irAzKf67&4Pu?E#C%Gf4{
zS+~z=ysBY(C3bitovcA)de-!r(OvFP#G8|q+BL-~ciL<zilN<@C&k9LBrC_D-Sq97
zw40^3+6Q-;4cOk7)Gq?oa0b{C3d!d2&=5yyA3NR#X|ogtF#{vRhWD{9Mb*v*StI7n
zNaN#MUFAaKk%;Z1#zo@ZpQzQ@iq*)@r-NK-maaEN@Y4#GxVsuN0aZbS3aJq%nI<Z{
zyQBi~UG8Fb*!khmZ1knGd(qKc?11|5c?;Iuo9pkSUf<EUcSnN1WB$$wfTq(1KW>dz
zrG!899(9S9>PqoKkr%JBhfaVEFTOp;w~^&^zo)nuLzz5>0m28dNX%*$i$O{T#Mxw;
z_@uJlyigt!iE%YlNdqHPE68|uv)HqjLw4RH1gQn)l6s=y<7zz95vF$zOnE6g<<Byl
zc9Lp;*0NqoPk0`z_GryAMXJk8NX&j9iOOpIwJrg}0Q;i}%-$Qoe0+M@nPvW%GRdy7
zn?k1r5o!D3!4*rJHfbs!yyf$Y0F`$FoR+v&&z>;a4Vux^Kq03tdDdrg$MkyK>E-4G
zn1m!Rqq5w4k=sIZldBT?qKwb#*^$=k1hfrDu_!A|)Qk-h(<@>%LcY-zGuJjCfz%MP
z&1y{zYysR#JA$?}gP=(T`f~0u<da7sppXf|26f1fTG#o*el4V%!=DUT@F>)DRjCQ@
z3eo>;g{U1W_<l>Idu)ZGn#BGS5Y*hlK7jM*;rn9mBnl`Bjp_lUPj;!krXV@Hile;_
zI*DG%0nxkz3SmpA2!mx`HCG3Pj|)#oT6_bKP6bmW=h|i))nEj|!t(lJX}1)~lXW<9
zr&8aEqm6^!)o#rAyS$TM+)^8&Z!s2sp|vr#Usx9_jRxJmWJ32f%5rncKBqseg+Aqo
za{G{l^ebP~8II9y&>MPDdCH%5lLu&fMqodP;nW2{Bf1CdV9_v~H#jHZ9e2K!>YJF0
zF?#djl=k#(VbVTlC<E<UBI52H-nfzv2QQA#u2p8)2db59k_qDro;GigSeL3Xq)-m!
zGnylc=d^G86seEw*N_G)&1Rij3LBq&D|BT&`p_ai#1BG#KJLvDb`-AS*xnSVYb4kb
zEGOKd&NE!bj=jh;!c~%|{v)x9gQ)h`%JB6)66~IFUfPfOaC7%Wf@Rh|Jf`Wq08ty{
zbTGlc*iY;Bo#dZSu$S&i-?=HIRx-n0-mD<OAWmehGf(IBv5c8ZKh=z<%mptMf#xlH
za!rd0txQTp6m7d^zAznQCT}V#5y+&}sv6SyRK`Y9vs9_99zC3JHKzQ-@qDq6Yr2P}
z9StN7?^u<AVD?GKfod95LjcQfDtk7Rp<4fqbnuTp6|En6W*q`TyfyhnSl#m3NfY=*
z*Od#of6gD@;l2!-gV3K`^RHIz+|S7<8Yw=InzL+hPHqby*>V4L-~RLr4*${wzFT<q
z1X9UJ{*W8ygwj(QC+napK#qd>0}@drMj$_~t2;xu$v}WqO=dB_ke9QRb`)wx)5Il`
zCZdCuwIFG-EL~mllu#9K0+iroyFW}$ho(xCw#fq?J{b|f5)_%ooHUs!le>F*%y#m+
zMk^y;B^x^PfU3j82d#wKHH^Vz;@REjj8<CrqynVVGSEhlONuzqlK~dU1pfos73@XV
z@4-6uf;Daz`kC~O(+z1cbKWc^R5^l`e=>{Ts|k@vIb<v@Qu1C>*&}TMz$#$TbNf`V
z_{u;7IB#9Mule4)pSh)rT&|nVy3cz&V4vJ+f(Bo?=S)0&33w3PHdu+-o<l0VyQQ6i
zz=D8bS5_eyYr>%M3!cGB%kbQ*g#yw;7c^&<^S{lzK`jB~FT#q4KSO?f9th)??H4|l
zpE(Oo33w9M>Uwp<;T)!va%j>Q0xtg1uv#{j7qyyv)5*`D7NrS5cshNH1YMo*9QI>g
zH`A(YO)Y6OBP@5024(QMpX=`ztYg+gt<4GJH9ww<R>O<sLCV4nqB+WjC=Se7bN=Ge
zoMjJ5mVv~FjjlMWJERV8AUcmc*0U$0KW-V^oV&NKl0#~|*Z~n(Kc>D6P)5u8f+)y7
zTr5~z^?-ZkV>5vf_Uc%j{X~JEb3k1!IsRp(-jfV#_;?H^r_c8O*s5Xz*%gB^7ggJ!
zoj#h&@XHk8Lk!~=uL~R0=ST6*pY#OOqAlCC8Q)}IcZu|WYz_g&WSj!Dw>bA$vY&tN
zd_Zw|SSWb);fwdRbLPdIh2X`9FJAW#rWJh8Ybj1YhFo7(pLFbb`(7`cwD0Nd`RvUu
zUhfKeK`2BIt$^Mfd?M=szUg)Cr0&+do<d#KcM@-73ub(ZU(MI#gfA$7C78UPPChi#
zAKfO$l9mqkbV3MA<8cJ8wvfY_&(;>DY{5g6XJX~iZ(XrGl{I>Mn0$K}LGJn&Gm}2o
zKNT<YK{qisYddtZKn-{Vw10u#K3T_JJ3M6fvy@%3R$!&i0KHS`;kFe-AfSzM16oHG
zAr6k`rI>ip5zhE*{&RSE0(isknNmxnlo`~xA}v*E>(i8z74>VkZ*s$O-iUM{I1mXv
zpV{}Fz>}Na)?JmZg*M893Wl^!%|)Aeodho|yU#P)HYl4#yD+!Hssw0VskjCTGEk>`
zwXLMME1g)2NS{Hv#EwuGV0wg!TF7xGi1$Yv`ak+*YItjrY|RiQoZlB47vGDsf_9UL
zT^=d=9os436X%VOFqpYFv-42gs8H?9N4>EJ`s3{0`%mGdW`LfsykOE_Iqkf^jltKk
zm#>lOvs+-1-gx$aWhPwI^pT(s1uDAm!7p<`ct?RX<Zh>YP7huU-W+wo=eN>`jL-BE
zldaUoW<~hQmGhHH#flj&a7IP+mxHpkq$HwBIdDRQLpr*rb4I_K%X)I-KS-?mkJ6rN
z`(LF!ey!|Q-FEMe>e=%L_3s+k0$&~|M%C#W1O`I2eTdYmx0M@<##vdVnqa9L7J6f#
z;N=;GY86K_Q~ic6Nlme}aS}&8I*gVj&qn;vs6-hhg7*fu*i35~(BVzCW$H+KOD6#5
zecZOakb)%XJ1^3Y$AOG5(ws&O)$wp<EML(dBloEkgIZ#j*oB!0@@7F`7Z1}9wE^N1
z%UH>k;_I?VqvB$#r^F~#>CHdY07X(SIrM9Bp4!PQ)yDUXl55}aps+tR{L*a=KMmds
z{(<GV4JicrSt-LLXv*1SaegolarqBObuP&*YCn+@U?knm)+W6nbfj3~MYMrap_vF(
zUC!vY@JkXI5Kf=bf(6O`WF!{CD|BI11Qs$6oN#he6e$eyEwcd(0$z}7#!^*Rm&8va
zUnwe;O4=AC9!C(wO;eA3VFsWFj<Af-7Jh$&xI=%(_dG^@WdBi*%fjn%<NRgcq{BZ2
zd7~G+Adlmse%qzo;A!ZiKWG_S)yzrHBD`!&)!Tjw6Ps}#8_SyLZM98T@9i_8JXF=L
zs2FJl9Lr75|B%Lm<tmv3k>4@czDgCj{$$hE!&A&aj-6taXss>GM<c7qSj(IlQ-@4;
ze}fl9(Z~9&4#DwLHcO?Ar1XVbLu~Vh+p*u4$5sK=RouO-i$No3TOo1Bvw0g684Mk1
zC;ziPZh8~MHWf@j>F|gM=SZ&XbF(scr!`>6o(sb<$Rn+M5Hd^$?<(my{OKyC%XrwI
z$z7B#$*#J}OWt%w!~j{rzq@L)?~MrPLiRI6w4_UMvm+gH>OV;unLwwln|oaK-eaWJ
zYhnsH=jw^YWwwuV+mia-aI#Fa-&o0{kxTYee{<n0R39$2ZCEc#7{0fcRc~CK0sDGc
zGZpHWU#`-qQhkNMO^!ZJXi45+R7&^_mYpV9<8lYL`bwl$J<HRO$7a?p1*6u@6;k?i
zr0U2gNUxd5^9Q_FQ~ez9pbS+j<9m$A`~byk@+V|Y$ES%!y)MQ{G;tE~$tq$Jyd?X_
zqp&#!Pxi$jdH6Rj1nL$DfzhZO@WMU;7M>5*+jjbBO*#M09h~+Qhh2BcydwDEK;;GT
ze;~#^JxqcxG|ZcP_fXGx(9bIp6zau>!qE<BJ0xl^`*s;p+9@Z2ZlISx<0Vf^dMp>K
z-;>LD%oO&fkAT!mwi0v$FncnNFByk5TSQ~_I&K~S0`LyDpFr8D*Y3^YRMEcSxAyow
zK-Gg=XgLG?6~KIgU=Sev>}tBo|JlpGa~Q!5pL9{5>(1zxRc)b33cWA8xk|ybs}j|h
z$Ge-0Pz{g6%%?ptVI|Io>^k>_2Ese3fAh8hwhBtQFF?FH;?WkUdxX-&hyI8H@l~ko
z8ej-aWRCSsf<$e9S}4+Y_+S5H^&X6ohqBVTt)w-aGkrD_VOiz`n@RA=*_|bw{duvj
z*K4@`UN5Q?(4<e7VlQnFpOgmOnmrX}wxHl(nJqRsXRakf5j6!y%+HoCKXX6E_>kFA
zxsL&anOoq#hYDoS(LmS=^^A8jXbVvZYl^w-!L;0FuD_hpKNl83rM*E`e3)8phEv1v
zDj$BvU26+`(r@n-G}*!Qw4^;__64dlK+Ub!p6~*&07w@jNy(nMCGg#fS>PQD5irH}
z+;r<R7&VjN8H4vrh{Ik*Cv1xcQt4}_0Lc9xXk@@s<4S1ST*NM9mHVN`I$zGk2d_a1
zBf!WQ$vNPkrAL^i&yL0@&(3>4sJrW=;h7u5Td+dGeGtXrB<#t0!5*@s#|86Z)gFxW
z?TLH(XY9WZ%E1KKj@FZdDe%0gzreqHsOuvW@EJ^@z3O~s`e_MA4M3Lwu%Czj(?WYP
z{PE7JXUw$PZ{Ey(5dK|3zjjS;_<3Ur*trb`wT{X5z;cJuEFP#(045H07SQME`Jj%{
zmgbg_uIt(!;{zF25|E&21G?Wk`~Vr%UyRV~?+e4+yK}T7g5gjDcSttC$fLSJ@DqPk
zMEf1#cQLy%9@|O*+=|urT2$Yf#^h{s3!#jk4F))qir!Td_hRm7Yw>&C@$8iKe(u#z
zp*x8Ca@gzyua<8oN1$4i1kQMZhaY|N!3#%;xf^G!r^8KG8U{a8Czli+!QO?uAcHCb
zzifK;Q{?o;l0e);_D6s8HQnat;27?0st~~15{&+)I2-EzD(Cp(0)-guZyV>CH^ld|
zjeh(Z++Z*62@7Z4C0Ey%4cHI+LDN5~A`DWWq%Vf7HOTOvxaHdYF={#o``&!vPyW9z
z!#gm4wCF&NOpGp00RPQ@{aJPqc7@9q<GZ1weKWi0GnuwveHI^))UkoPcs>#@^}S|A
zPr=KTSCrgh+ha>*@qB{Rry4BiWLS7T?r?Jk{9zN~j-S%;dQ)e2ALC|cu<-rq%eZOm
zsZhmsaL3R`AboKt97^YL)YZetWspaKkbDZf-!b>mG@iegdCY>O;%r#1xREktnHQ^+
zV<ecFn`Gi4p~8<gdOpD1;2%Ng^C4*Q=Fl!zf6S!Ecr*+X5@Mo;=R8+Ehefoi&5g@0
zct@7t!hVOv-PVNAj3e}*b*sa>%i(QFi8rz%6xX-+RO04zlJzuf`jy1k3AgM|nGNw5
z*ZGxCoj-spzmY=vAFnb3XXQKM|8tdk25`*qFvzQ?T#Ws|F+Ta^g2Eivr?|b#FuhmX
zV3xP$5YYaFCWR5m;t;x13pG(;sJM(MWK|9I>7Qz@z=gA3!4$s_?UZ)t#SfTDTd4E_
zz;$MN2(58<cSIO?OP2aD>toBc&gG*MIftkmH))CyI@G{Vns=@(?3ElI1XDdP_Im82
z<jYTvnuhk&D21nP6Xx>LNs|j-M--ni%bfVxw*oMW$GxceL{X=mS?z3Tv-$MW>7KXD
zKCUl{_uqVZh9yda<EAMyzza!ElQ><J9+a6JIto=$msK5~$UZ>CKd<+iwLx*w>zJ}N
z46X6v$zQFbjuR!$PJD@wa-c;6VriRnHz=7}8WnS6T>XAg&fO|?aTFg%h9_fzcOfQ~
z8S`kBT<KGto8A*IiNu9(lCCHDk&B8^+O<CIGWvH&b{XQ>g|ut6{eJOFe|PHAQgqrU
z2=~I=sQ0d_?s-GFm+8iY*~Ki^%FMbLWa;055uVgq4ry0$QI~PP#G}N|dg!Q{ihGso
zG?91`rO9F1C(eOuPKkI7>aW9OIcDB)GW;%TFV1BU;S?QI8l=VvEpY?6vT5tcVoWAs
zi1UF`K|eI{#P6m>W1yqh%(-E>Ug=WVQL<!m#e%O4QxQN@PuCwus0>EWE`exMR0o)v
z88sG?dbAiftT~5~QFI<cY|*(-9IV*32K0zV49&!QdkeZnF~x%jY;8f4YST)xkjJh>
z6&0BY22;{_y_a4sEPm{|ghylv5&{45;2SzVlem2HiC#0|!p3zSp_={<dB!F|PfulW
z@l3(t1X%UoLQ{-GPd^2agUiJ%aPqw9TS6_BoEm1$>x7fSgwOA4)=t#ZC15k0=QHN$
zrmQffGE5d0Z<*R2krf;73}j<`LiNP1tMj$*aR}_VZ~BQB+5}S;nxv|*Zhp^Prx|-p
z-NM{Jq&;cJ_%7n!s_;xn2)IM_gO8U@)H7{k)@r#8>;dC*_KDEX%=C}5x4t*bQqYVa
z+18Vj7MeFV^EOF(#P(=y73Z{mo~$pHS$hU~rJ+4S;>7xB@W0NY#iP+i{Z`$X@RX#}
z{U{+!Rc`Dcj?+)!I)TiGI-jI_t*Ll(sK32tdqJx9ymhK3vSil$p;>?!O$o<LGKSM2
z7xhpgJpr!Vnbky#y=7r4rJjcS8ZNW~Kj;dXbBB8p|09v@#lsmV+XrT>FD}D2E{q2{
zsedF5h@fs|Q@p7^=_7N=s1WB={D^m~V{l$#=ZHM1y&9?5>yQG<dTFc3SFd+$My023
z$UKUPtuBOPJ>EOT5V4AS;bxnjy0LkFK>HSO0F;Ar>gnwV-;YSFYz*e;qx^e#rn}Aj
ztTg<@s=6Q{4n(lEBRzpnSuiAP^hM;$k7J#>opmTm?r6oBt5(h}JaIV@r(%^wg^3bq
zBTDo}`-#TsK9VHYohXbO&>HAqxYN^iA#5)6%vBPUHdTVE{4E#q%Yw%uZ!3d;2!(g=
zm%EiW8(7H9Mn7id8a!k)&>OE5xbBJ1HbDP)LZ?JwfnK*nc(-jJJW<C)DI+OLf?$q0
znaUK+MSO$H3Yb<@pe>tOaIa*{lLb)zC)eBL`CyzfKD5wFt5%1&2K8OFt9m$;>7bRG
zjlLA|j7f>JZ@n`_cU-rSYHEDv@AAEl6oq=5!tDhQfqQ8_T<#z5sSXw{Gt)hme{7Y_
zEGkU-{wu=whxufD%T*O}e2TJ8LdMUEsL!e%+LYUN`i#qRJUPIz!LT5;>npJ_P_wIl
z^p@fUW_~hDR-1%FJXx`Fg^nFtP;f<Q_q%;YrjQ295vw<vs*SF|-Db%1SOzoNDI-r<
z<qbYoR()-d5K(Rypcf=kl)t;|5z97(46RC6Vxo7=k5oWpfhsIZhw`6WS>pwC7WdC1
znLF3j*-_kow;hpQA7+T|F|pHbK;2T&6-?kBr8e28v#Ab-WQ04TLm|{K$hgy8%ccm4
zAx)csx-h_p=NG{@)3K;ECh`{)6vJ=G^_}@DiY9*7`L&5j8B<emDb_zCvEZuW8wz3|
z-2g)QiNbayzvUTjcz;9)9T6j%_Vp%^cKjtAeBt@Mdf*{gVKEx`Xr#}5knhnyW3&Ys
z!yYAEckq3?1uzt6tNfq;Sm1DWax)iz+;nZD|C8i$P!yhv<dO}^z+>9REq8=CWawf5
z0AA8IZVk}O9<SvCZm)3CKce>E$pt>%X=sWKQwB2FU%}V6FB>Mn4uEFnx^QD3mH%E4
zze)_iCbt)<)mokB4TI^*7luN`D)4iwuNz&b7XazIE~xkPBn&Y9iQ{ILf3Mj?65Te9
zY5Kt68kVHs67Urg#@6_#f^JENf0?<z7ne4ca?7fzOPjxDJK~-zywJE0zKH{Ileb?y
zN}S7Y+H1d<+?~3JF?ek@BIzL7&krBoZA%w0Bl7fs>G`a*$bmaJaNm6goXfB)zVgvp
zp2eSOjto-?6cI5REMxn%NA!Dc@~ej%t;*M8kwTSCuuVlJ0M<1ixBX!|SM0$@lIFH^
zQ(e!u3%^CHdUdOEHmPo+`>W&aG60S`5q5v@A_~YCCD`mNYpP{anZ<M3>egiTWC^=^
zHYlUfEimEk;>}1YfOuBs?eV+4uqqFEB1%sFCu@G`3%W5qUBJVORtrzyS6dE32U*%5
zXo@MzHv9EGp*_U!NJ47AiWj3K&luv#Cx0IOLrGbxt!^E8-7k%4k)QY}KUi-y0bfTK
zIYoU6MhPX#%bj`LtEKR`QTrQ~GM`<sr*dt?K|f;E{*+0~v>%9~Ez65YhQ6Pf9Je}G
z@tf;ZRo6`P7(*4><8(O|B83m^P7S(tq-ysv&LdC<%8ni@N9N6CS$j}@y#?1>;O#)&
zZLUEDks-f5Ugv;<-42T8OuQ|lb<Nuo@GrZ}0n~vfd_;?1oR`<1$&mk5t!Jy2M_1-z
zGbyejCEXarN9oclYqT|0{L}~$b3|(lbv4pz3)vh?M46E*vLx$8(DJl()>Tbza5I-d
zep>}bF>IRNRBO^msy?~wjpT*d!Pb)OyruT?(^1Z7L{hHdX0CXYVB>ajDHGnKFNo{d
zJ7{*j;me6Kb}}5imIm<BU>-JZCqYxZaPxcm;1t{2Udy#lQl+|je98J7xy8wIasR0|
zU;X#GHgZ2`)7xdeYGGFiRD0KKM(HRST|?ga!GtZSD36N@@9XkQ(;?nq6<Q^6)T~z7
z7j+gRy4hq^URwrPXRa1VK4yW`TiP?@<Hk}p&ECBUh=4M&I)_==J1D}<7U>>o@G;K8
zhLEn1T)+NWl_R}Zj7XbiHBYjG@K1f0x6(k<C>Sib`ky1cWD-O;>58y>YFZI1ZPe+$
zY&tAmup`kpDm%s*Uki*;O-D|sS_C(OS-jSZKA3$S$u}ofnk^l}LyK8EFTHmiZ16=l
z3QAjk_Q4XIulF5?QMZnA>+$oC=hn@JsD0LF_UTaN$~%B~y$=?DNmcg{<V*Bv0k$gB
zq2%30!hIbyyW01z)j0Z&J}+X7z&RaGJgMLU3RtiKr<HgqzvJ8uN8CQ7H%*wjHlm?d
zmz>CA9MR>?mH{_{Y@w-EK+313B$+F6-oK)bV(OQs{jruW`0kTTyiy~{hD$o)ilG5{
zsQb^05_!@Ex0nI`>l_Jl?FhYUWswd+Dc8ukhkxuq@oUb$_VBibC)wV!SBhnlA+zp|
zYz>|a0u8lm_{!f6Uvn9d`sU6AAE@qy!e^n}`dfX=+Dd{Qbv@eHI7+k4f=6szJw7vY
zz>p$@D~*{b*Y@F*+vx^TyF@3U^C*f$eXqfNO9^1r?6+JJheUhABi?Nv(L&e@gTcW4
zRdTCg6!8g(U7*G*?qFQn!*b)7BnEH##jfzZg79!FJML;;K;BD^8drp$x`iG!y4x%*
zE_<~vEt1E3>-raTPA=Hc%6t1((|1OekiIp}GO?Yf%p7YanW&PX6z@oGVd>pwGO(|c
z^mg?B@;1jySXXl~NQYl%?VaXJi`ar%5jsi>SE?GD12^0_KFEDCotScb&kS^_@a(KZ
zj7x8l_?j5#nDwL|2G3IJm`v%8aZ#nUyPix7eS+SqtrDlKOrK@S>0FMTdc_&F`qYf0
zD5%iEBED|Ltxy0dW;TfRHE?AoC3L3m?nO8BZNsgd4-f!WAHf6KEkTU9s)R5ju}YSO
zIH*r!!SSue{!H46^vB0Laz(I5k?w^nRm&L#X~Df@53UVLM^DCF3gg&VOjuIycWmQp
zavohpkp{k1T};dMaEUDUT#HYgWZx?=)BTi@q^`i!@j&+K$ob(bwKO0m2~<D(vkOwP
zp`NQ{Z<DmedW7y_w&N5fXRd_fcer6xC}w#m)rLf~2}##EDdh{?U+Y19&b0W5Nf499
z{Ja8md(!o}5(Ouq-;vmqJbKexvE#luu2)jFb^im=d(--E?WfV7X^iD&isaMjZc^HH
zLuwq$aoYPC!n2v#MWewWf}T|-!D(`CH0sZe5w@$Udn|<I=^4<ZS#2ht=aOlja0yKM
zcG6lp&l_bYNZ6F*yK&pIWm-ZI1^>`~IJ)h-9F=%iIv>VNSJNntiE_6sakVxr@zy)2
zmuh(fkITX8^ev-kG?4@t1km|p70WZEh8a`aC4UwNwUv);aCz{l9uS-V5#ay@Oz+4t
zxdBFZo2S@#6#}de3vr!E-SY?IFgOfB@IIFQ=1%=1Gpc!x`-}e3w5U1J*<>+$GckpO
zgmRAl=Xe&J&(!H*{xZETk^_%L_r{<1)k0I(2O`)cYljOXx~eHtw9SyhfgZ9|rd8YQ
zKrG#Ru5VyFx6hG)OX=2kX9VpL0#?KFGjeol8#HBeuH_&4c(u_YA`&>HWswYPz4TlA
z2nXHCQJ>X-JTm%9^Udcvqo!tiWwA3nKKu~wA*7{OdUR&dQT-?OI_Y)l1Qo&%mZC~7
zE#l<{<q?@wI!#glEf<AkI<7bUjViA<sW2ZbJzOs5-wdK`jbB!MGAia#Z2Y(=0A~?1
zLm&Bw4LL_0>D+#XHCWnQlnqkmVz;sRI!Biwtmv*IXTkw4(>ZMKL;$4flowu486w7)
zW%H3pp;$jE#XjB9sC$&Ay7Zmexh}6r|0a{cP{^bIsd70hS5nLpA{b4o7Qc+#jG9U?
zV;wY7=I1A^mbIDN++0d<K~vQK!t@j2Rf0w;Q`2KW_d%5X{$V)yN|`DIXoNi(ec)aK
zKyk~se9th+PvD8ztq*`gW)?aAI4gPCbij}$b(<<%s7S0myGAzGeIrh=0e%9r)p3fj
zH=tx$N@L%tW%J898L23-%1*`Qs|SmrX3)4{OwHz*<v68ifx~vvd5MDw=Q%K2%g7=}
zW=>wm9+_AsYq-9!?~nIFJj?GA|LiWxV51hIy$z^X63bC~?n9@TQ2^mi!IH>~q@_5T
zBm&Y}YqVV=c(G{-8xPEuJLkl5CuE`*b&97vJc?H9Ugt3CU^Zawew#M>B>fFkDfv(d
z()}F8DK*89Yy1nJ2J@5X?zg?GtqLF6vCcuv+)s&!coHRxi(N;*QNVU8tCs#%@7v>H
z0vMq<V*o~q^2ewLDPl3u*4C|r3UwbuJ3H%1>`ZkACjvCT8n3VO+O8eyVlx;ux{Xe}
z*@n<sR05UrsF)p>n361p8ahfwKYiN+j79$_iIH|}Ecu}OuHr^_NAba0Q~rTSECfC3
z3+!l@J>R0y)h@#EHooTCP__Aei|#=8N~<>HHI&kc5f}w3pftn!p$}U)V&N{UNJ~P5
z+4fBM{i_6@`&OSt!EE!0oDpwvvt6zKu|mb~NpQ5P;f1Qb9%LNN=*_7dC|;uMBu3Se
z+Bacs6e7<r8sWL0R2+`ze@AR6v)#2#cIl)hQBPx3I!BR*Lj%#sb*MY1nIcVQw&s+g
zz3$AoY(kF6Lg|ikBXe09s9?nn*YeH(P>a;a6xhB~K<gz5VVEe>k<U*j3|09FvEOjI
z_^RS+aA$btCF^~@h(68@^+AG%7TscMpX>Tax3pROqe{-q9j(&LZ>1u?+YduxboX_&
zP#0Y>ZdYp~e6<dqhLQ6tQPYq9D|Je_m(kA7@4+5fwoD?A=G9vLg~7F^#_M8$TtIfF
zkO)g)!9~_hmnxI?;9Dsyg#oiBZaU1{iInmnAhRsdIJ2&0vhc!MN@#iQCx{r^HW0om
z+|T~CE8<aDGaC1m*1t%?oB8CZ8@7}RkW9Ag#n2Vhq)pxDoFpcVUL2upr<uX1BbALh
zTMwv=w7?4L=y0&pf{b@J_Ershd4Rk4G6>r49d|7P*#q3-6PGF$vU-od8t&L!D<${1
zpMBJ6r%-F`AB7bnE)2sfjYW`ek0Me56btbWQDoyS^nrWhO<;wp?8!kpt7`3~@(CnU
zD)jx1E5R|7rTnzvPOgZILGI<`>ve1tK3jRbo59qZAp@tCq}?FsWU!JvZTg6jXpaev
zc#-81!vdhAGoGxklqo9?!X1Vw$so^vxO>Oyt1nd%UUb`f^~EJ6F_Zv{s4M^u+!sRu
z9<yAFeVb@+Lx#->nHM0;u2^)JjIlcFz5};7gjYQ0MrXoqAaW+QbNeR+V&;;emIPrX
z9tfkxKkBucIKBr?w7aP8Iws-N5!ltw@T4+G&)o5!lP-vwIHKbs8<Fc~jS@FD%4V;p
z?r@=)hdDM_G8{5mY2@?vzsnx2W5X-WK4q?p)FDQwn*2p+5)5AnxY?lA*qQQddGs>Q
z?VRHG3;#n%8I9kAeU=bI%??{2K})NPOJ#*{pyFaQY+{4JFT0ez-wq)o;ZLt{j}K)x
z>eQM#OvTB2*nS!_!gE45!@8M%kIwWx>qSBC%zV!PxDo@^{v6*lP?-&risJ{W#>9g&
zZ4i!4(EZXYOcJJuUoQ#Zwr6VF(Jo&3V*rLz8d$p>H&X`}w<9~eT?&6j7GDodT4W{!
z`XjFk?=FtBjG=)y(Ks3i*daf3a-uH|k~KZM!7kr|o~D4h-_;hrdg!66DI1<G@u?p;
zP9Z0VG9F2>HqCF&gH6GOb+2|j&+8%(&>sO5T278z#))tDb)r{NjJ6ct6&CsV?I{oJ
zCMrr`ijFf}BtxirsuL!k)*i~py|gJCDB57!Zv0Hs2D=YlXOv3HiU<mV`IcbDjEw~@
z&<?q*E0N+IfY{6PFepi!Uwwb&7klw2h%5gXOyQw~?U0Nn4xKd67Bz3vB94UWOiC@E
zw<oMi_<yG+$DFbO4yn=EA29BiYh3~91<!4s>zCzu8P_4hrhhZqTanFLi`NC#$fpi5
zU!)&dIl=jqA{_OKb($9Y!kURIs*VW)+#}N(am*-sEqhg>7rPH7M&hWwW`fCY?g~9i
z3&wW(oSacsh<lPH95PYAkpv<=Kosu*VESf1wlBVT^nh*$d<<EZlAjJzb<iJK_H$Ld
z?F3ye2mS&hZet*v0<;kZ#nL(*xbvTA1iX3qr(N+E3IPz5zdi$gK(+K6ak=ffy~JY5
zeAjtvjqnHY0Pgt#rr^I}7q}|}G2Ax*XmtY?;x|AKuc&Xq_oiLcogdhBaUECR1Ki0m
zZuao6=bTpUz;Bj@Td1SnHM^~szPJhBQXD~*8Kh`EC1HH=^W$r{?eu>-7_>L>;9W+y
zM2j58F1T)ypOEpj1J|<fv|KlPOGd1_YhJ%c4DrU-Y)=;x8Gf2)s_?Yrg8jF#g`_wz
zIyn0Dl@GWhst0}wywgr@PQ>15L;yR0u@WUj0v8^jitZkq-L>#M5)(iW)h75uZ32uR
zZZ+f{=XwHpx^wf7=406hgmXT_Vq==Y4o{FgPJz!O>ipN|&o6YZ0k65YFuKu378o|s
zc+G!}2H?<9t=&yq3(IJUUWj;^2Ce*Hj)fD&5W}Ec;P6%ng!TvCxc3`)x~lgIyxEuq
zaWCBO$KP<M^|~kU;ISgLqqp|;3*g<u^-aGJD!{|z-ZohdR!iH~dfRaua2u1K_5v)^
zaiIWU8bjz+>oR-tp<i%;)$o7sh7dww`x~13jmi8EK<oeW68bZuI-mmly-fdKtf0G~
zzfc+c7Nx;IlVAyiw#1WP0qGxO7Xp&p|KEqsBL|H&_5ZU_bFjc2O@4&Kqw?=Zx&hM!
z$Jbra7X4v7HKtUB^6!PdcdelCKcXy@4-V4Q90PnCV)&0Wb<={TD|?X#oT5Az<>l;=
z)}(b_I4Z{!BA>&1y#LUp!<+h|kUc|lumKKvV_faMD3kYO?JfG6KHVe@faDVN-=FmZ
zcTjOcC@zwA>n=Y4wur?4g7xgr;+T<3G_1`IG||}OvF;Bq^k9pw8vl5r!pNWuiRm2C
zH=-Wh2eb6PB*;&)Oqr>FY+)m>8~xlcSi8j9lIl3W{H$(?^c`2CW%GFCCM_;Y5A#mx
z*pJ-@=`Mtrgak|w>2u>S<w=Dza`$+Ah(mG{^XoOwjuTH#{LVX<S{YXL*zeG-c(V*{
z)4$s*{@?}iEj#+E`tlxKDyl)kvs#O1uSbOw5(qvC=ChK0qr!rU(d{*@Vh)A{shz$%
z25D-SWO+-4Vh&A*v+;?6<5+ypASU#jdO+(&vH&oh1^SHTLB^lHd9)P}o|@-_(PtHe
z55^<vKzdBr@5GHgE4KX4BW<VdOdlQenC5Z$%<AUl8&}7TQz%u1$L)(c*`0sTgs|Ul
zj2q`nAz0S{aE$*@8Y*OVKnTA87|}6W$3EI}WsunOdw|b+U|xK$$kLFAVq3EAYrx`r
zKPgP_sqaWq{%6Jf3iQ0)&a9%GD}nR%-1bPdgQ2Za>8F)O;?_ArG9{B9Gj)6u^=6Le
zrKjn6TTWp^cZqxk?4H%QT(<bjQ)NZXib#RJ98DTf)VfHOGHuU&!1Yz*n3t30n*6y!
z*uhh$&g6fi$Y%Dn5(wr0q`1Jz(A!KDAqD>OM=BbO-rw;3<-%X-EGscBw#$Rx0=_Qh
zef?@8tKT^LZO(YjEvloM%r#8Uu!&hEzv~y;iG!nklhUUAT*zsss%V-Kf}k3-3yKSJ
zdBQ8Dqj}IT1plxMxeY+IP#KYQ*|yPXQX%4l7w=x@y<s35PU0?%gpOy&G6Vm8l`JrE
z(jj3`9hHxbWF$-_k9X>7l!e$HfXr0MHQu{9l&|lvFkTH+UE!hDIpQ73fCdnZQ`=*C
z+gtkTsH`Ds`N<C6L|g+aVHra`5qfSEB18E$z=cOSmLFWLagnY{{%v#cdr*|+(e%le
z#i0*8RpLuuXJ=s&x>hhz$m3DmxwoSMNqD?yRoY-aR?j&;Z5<GlR<QHhVw@p4f*Q47
z?1>%<pU%6;ymUP+z2dDh?`x&-A22l2-V&1v=K8&1kVfyR>sq+;?&eEVY6d=^87lzT
zvwRU<pGu>jB0`qN>9+s?s|Tv2ck3>-gnwOX`FF*8S6!Zc^aMSb|1YA^fuhfa{J;nh
zQ2};P-4BCm|F1*N;eU=Ce{hFKc!=y=EnT1s;1CLMLiV-__9(@by>GcW|2*7TGZ&#c
z#@GKDf!;+yZPfYN*Fx2t{x~cBjp1Ctow+$|ms$p9|NXU5_p@tO6yJ%F?66za#%=It
zs|2%j^tWB>>`3IoNLS8U*aoLMUGo9l<@+db+um=`>voR=Pb_s=aAprlx?w8b=@1ps
zD=xYLhy{W)#N16~aHK4AY7l<$=ihf!cZsQff`t%R=f5Ql2Nc6HKK+w_^m8cy%jbMF
z^HDGCW*_8xc|O_Uvkf-5tT~fBooGF-i@Xd`>Fe^xe}{EHkwEBja~{PbUsx5pmj$_F
zZJ|-IMDQk;k)7?88JwGv&eTC_;MBwL{EzYvxTUD=2MAyki(>H~&S3kkbgYu^CGWeR
z8Lu65B(V=NGg16NBbRtvlV>hYp2Q*BwqbKx6Mn<Icyw)NMNcy?i3~gy9RHIA-f83`
zsiWtAl`epS94mo*rJae!@@x>eGBZem!kgoooN8hA1M!DRmkZk^P{%pcyGYrg--L3x
zme*8dX;T@94bxspf*zV;R;K@AVU0>a6duJnrZ84{6+dmaS0kByVrsn<rviN8r`4G=
zyy^BAuJ_UMIY4h?XkkqS<U=wfNS|P%F%LNbeW6SpYv$Aw+`E%-njC<z{7cnchy`X5
zf8;kr$jp52?9pc!#=#LREW<kBv6nyHvw(hDjC-|!*Q%7ijm-a;q|pZu18QjFQK0GH
zI~{&;&3~tjcYja%ZR+_aZ@6R@d<KV&Z>e|AhG&7M4}i;03W1v#|1&{5?U4uWTY_Ii
z`F{y2;N^BZ{(mRAx54mVdBy+yuEL@@{8r+BCPM-GIs(PNjmzFeuGd0+f2J*7p7sk~
z1AU>k)r>u_A1w<(J-7-l4o-Y;PCQcI*}{`>pZ^<}hs~MqMWZiT?M(!h&;HNMn@hN_
zRHgTh4L}P2A+Y}ztMy`j?;1GGi-M2`0piQ=`@?QWk&_9I(a$=4c*Wv<#u(#!h)Z$0
zFCnm>9rO4gvEyPhUP0h2+PytKN1-P8uj$e4qpxS*jx=yZ@MugW^Ze6~r4x$l0SStm
zDO`%HDcT!YrNHqumd|Nz=EWs&RdJAe$Hn~3mCoV_YTz2cS^FLLZnyb2QHbwlF2&VS
zh`?b!i#JmE&1rw8-`36NMS-I+!j3?}8(<#>t>4TqdLLZ@#CF>EuSFQCUR*a^pgwvt
zyP7&p`p9>dveN5_(j)7|wKTaymYbVZ>I@lTrCax=wj|RjqXGGi&r6)uC)=xxqxKQ)
z;&)25OBYE0GQVyoF7%Q1HDDujycVx;JuV@5o#cB|{l#ndr@{4*M*G=khimV(Qh@j0
zpLx0!<Gm90rO)E9-hb6Drgf%tnKGvAt2f1)BSzXol<Z#EeDae?hzoR3tGz-v_Z2CG
zbq`;eSjxh{OiJ5l55VGP_u5}v&B+0Vws)SNj<WkMb(If12QK?^I<2eaeqU>3QRaRF
zXu&-I4>l@_F#ZQvG6E%<%V>?e$Io#lXgm_gIPgo&;oQJqQy2oi0p{o@T$S)Z;1C=6
zO2yzZ4%MfVu;UPlbqzJRnqRz{_r0pTQDaPql-mY8s|-K1Da^r2H}JHtVSv>baKF*@
z3zs!IS#tg8I!&J!#UBT-C6^MK_|hMR0m@||Oa#~LZOeORj}Hc7wHKCRS)%Tkt|WNf
zANb2LeCYtXVG+2D{eRl~@^~oU?{B;8*(*dSC1b0ok1~-$5~XAxNg>NbA&eO%d$LAZ
zqKFo<X0pv#vQDyQXKW)&8pb+|ndcgP>QmqE@Ao{<?~mvC{qyUuUbp+c=Dx4%oO7M?
zKIb}bBjn5>7`Yk$dPo#8=L~}vQPlc)Iw*}Y;Mh0*t)!0_FX-WX?}hRm;~1vVfje3c
zR1tBIuAGA7FOArnc7%&Gle%TkfR@kYVe!`led<P38ebgACCEMF-kqHy64EVSXd{MY
zhnPQm>AKw9Cp<Y9GAg>$GuM4$V;XnIu25X8pX2H2A~)?Qy{se8xJxgpzMC0P-VEiD
zQV2Cx#Bl?Ltv*Xl<x=#6tAN$7yR|Q0&_d}L0}|ftmcSS7<OC;+d4I2c{S8y2{>wm|
zD5gM_p7oNa8lYrC5&=p^8~J||OmjilH5|AWl>RiRgRI(^_r}#}fbhEJ$hAVnDb~+-
z_C#M)=gdXA<cGT}=*wKkYPZMWl=?-hA3xs%G3={C=z58q5HT_LrR;_kd>hIQ&KeqY
zJ&rko&wGDhO+JtNS`UGfYby9sw|3S>v1!^PXDGr&uYO$j{!HW*+#T>07(^l;zpjM>
zOxxoV$$iGj0bYUFu$dUh(73OET)=MSsLoaLeHf{QR9$3K!RiomjaBt$=f<5t+t6v4
z%?Li!1f04OK@CfVBgT_a3(v7G8`GA=Tf5)aOG{uHAj+_=aqaZnv)gr|;;vL5+3|1?
zIPtgOa~Pj!o&-rYk;rcT=1W7D4yt+CJLHDL*kyKN8z7ILX<x+$$a}VsoF#+>?~K``
zXKUl&ewNooTod4s!^M+lO-<ihai$t)mhg81iZ<T`D@_I114{+iXU<#h2bh&aONk|j
z19Tki+g1N)GtH`O*7yQl|36-T6{|1!g7&o4e-wy38-)r_TbJf7N5<_d&J!vZP)a?*
z$TR6s;_%3^E-AA@)>QbbY19%SqPVA}p6wtjLomNDys%f;45|0PYoe8NdBHD5<=}qe
z?c$Rv=hYt;O9w~pY)VVIEM>4cb0tKiW=--+&uXWV*phQcvF1BxsEpy2EARxsg!c`2
z>P3mf5itmqe+g*GD`)|;v+gdnD3OuX{Ugp_Ad=~J7ZtdE6C^}{O*2h+_F7uNpiHzG
z2~~Gr)pt?QTPP}C{H_fEccyE0IpYZ%pZ=OM4A-(HFb5~zHAuAnC~umcZrA&cfrMjk
zW`!a%UuF^;ccF`<&V7wpBQjr}8DAZ7QFX`ry^@};DRJGge7gQv${Xai3&vanve&q-
zAzxaOU&MIG4uA76tBNeGCW&Pq69j0OXe;5=dxG=w1yGtiJwR^+sf~#h#p!DIJAocb
z%-7q_dqIQWg36X3=02OiykAoXDEV4-D~h@ZY)ub#<$a#NqGkl`yEnFc1B&4ZH<zjr
z74Mmr=Upxq3f(Pvm+-cQKZ7?oMO8vyr|*2-o0*u&Zbb=%wIle&*t4Q)C2c{Rhx2n@
zT<W`V?3hE9drC{Nb^MnFKbIrN-Il{iL9QED%~YWI>kSX}o?yI$CX>~;?2S&DC>F&k
z?l({~*PKt(C2`zL0^Y2Wf@Bp5D74A9K_;>%j=jx0v^>5b+dsfuv#Noi7n@m0fPs?t
ziQU44jQd|&SbyRmz;H<-{$<B~upk3^bsAAN@wCckyJf3M$=0P@M10YUg+sNrz+9SJ
zXqq$r^c6xi!Tw#OiVL~gI`8Mao!XwhQn?ZRFI%)D*{8q?m+0VOI$v%3@MDN~N5eff
z-mP75yo4Ej=pSbyoipq>w=(E_<E~V?YV(id@#_9R@z?L}!yldi80NQLDO<PMeOAD(
zLFVrDQB9vdZd>9S5p!D4jsJdyq=XtfMB96u&Xf3epPj9jcml;;F<+)(FDmBLkSepF
zB)!?Z`c;}%Z!_|M+;5f8TOQTNK?`IY=W6O>OAHNVQ=U#(W%<*)uzQBZDMgkdlIl=w
z+q-;gy=iAhtF=<`A}D+Xr6|DkKvHBqMXl+Su-@%+3D#!k7igc?*@mtV>x_5%WK!}n
zCRPX8Zys~Zy+JOB>6d$u$v?X-L`_Y+u`9DW`fjpfkUv{~O&)TBf8*%Y$UdEah~fTr
z?iL-$XJ1!*_xrBBIa>ZWuOMSgv~ZWEz{fj!q3IEmN$e3lXPh2E8fH4A&RPi1GWiso
z?X#UH9*u4DQ0Z#3JvW{s#N7W#?D>cC%oD15Z+qMHj>Vqccd|8B;;T@Dpf7h(#LzTT
zz2f1{U2+Ej(exkF*a;x^t~%2bdGsTC*1jl~&o?n#oSP8n?z^v#T=1$NG*;bTF5}eJ
zu|La|f%{7r{vKN#e^PvpR-kHtuZ)M6J`SC*cP`?w$t_8jMnDt($2w1Tkx~;yXRI#b
zz(L<+BhkZV$hw|Xf*e!o#HE`r9dXNNsyG#}fAK?u+L)}cYKDb?fAj|f-QPzaDl9OW
z83EeoOa$v*hch<7vm&IQBhDqBDQCj*v85o&UhOZ;y6_3DaJen?glxtG{sij}?VM4k
zdL!&><J5w$tnfpi#U|%uZ~DJ9Oja@%`IphfEs?KFFN_6g>jyS-*;T&ytQ}Gw$PbZZ
zaaM{xKa;?h6HlAABqv!#+bFQlZ8&jaDpKF5zvzs&xno|VoTG&=eCaB^(usB}bva|d
z^JfI>G5*YN1v`;bRPt>wui<iu6*acV#-sEl%!4eVkKTeRKc<*#K2=z=jixfQngiy<
zAD?`n@HUR%km}h@u=JWKI5jxLQppVT%09o1)HHQGmf|K|c=4wvXu<+2*%ISLzV~5o
zbIGEX6Nq#rngmTh&F=?)O>Ml{G(=K&EnjXNyKo|OWcyQJ<y~7iS+ewKIVGLU^9V^c
z_*_QuNO=h!(>q9q#*MlY_>#dP&1B@-pzFSMJ@6Dx!2btJUyLI;F$BK!mgL_`O?60J
zj!o4--^KMf+~xH8j&1l_OKN}k?DqSLKDh)~f_HBFFFf4dl{~p5z25X(WEbO)k@yP`
z?ROSkw!cR?+;z;JU!K||2vSJLqYx<g3LN&8-A_rr#2jN};H(OYi2e>{(sCe@cZ*<8
z$9~9`As9neXLj!)iw%R7aU}<`O*1QwAGZpvIVj2Tv0tpkhMLP@t*5z-Z(E(nKL*PK
zjj(-zRjvC$_M9wzgKSei$G96#&Yz!X^3yn&Kx|!40p!_AM6l^Ri2g>8aDZpHkw^4t
zZNigNdrqv4%u4!Bd81an@f!}Pl}I?^l#yU81Vm;GH)!8Pt;>HOoPkr(hWB}5-l&{2
z`7{nJGJu<xx=B!Au$4FPAa;TR6dgf02qSkSVwOhvP-}*8-_BY-DCM=0|5+~nSh>Zk
z<dH|U5eH2WZJ;-g7X=fk0Y5!<|E-&Ew~<TfQh#!kgoa}FLrEBV9N;7O)?#oa&fWB$
zJ*O)OA$f~1k7Ja9%)#;xiJsLSGYOLNA~e-DM=~|$8L)j|X4jp_k|2J04nnF{<aaK(
z-&a3sr)0%46tp4+G-GnKNf7Bw&F)4-gP7`un*!<xD1ZaUrCHZ8#5Qa1LC>Y~&;0>Q
zw-rlQdKbc{uuC&Tc4VbtkBl2FN`RXFqow8t%HGk{n@I>ioT!o!a^3W7I6*GNv&g7p
z3g=x(AmIomj9Z~C@LcIZpfSY=Ns2>JseIIaF<R~34b=M6*_Azt8uKLldMa({9&iNn
zcB3exA(GTdu;ZCZ$*KeQfS5qLmKZ{uMj?hg_0s$ZiUs8N8g4N~HK2Ku0acsQjl$6R
zVZs3G5qs0~P^1>QsHo1HtWmdo@AYxVBE)tbY?UVTSA4gjF}whyj__$N_O;T$dyGR%
zmnJ*Wn_YagPh!ZCY}ELYGmQ+jM$L*Lzd}!dR=pdNDB|ickccc{f%B;!XY+53O&n<X
z#sjc#GqdB**_&Up{)+Sji)=ofMjy7`yq3Zhu|O1zojUg9(b3xI>2g9EcA9N!!#kyv
z+7^?s;z?b_F5NsKQ94}$*f8LOsO+t2{jEIJkt~P$>aDrn9z~tjz~5fLpca;9ZAw;+
zo_(NoiF#2Jqn@o2scG3TKm24lt;f4^)nAg*7BUQ4I6JX609wp>`=V+=InyZ&=*PBC
z_B|wlSkGNxot1sQk#wcv3Fr$Ya%y!CVt7A$+(k2_;?|jH6tP;SwH%>AJ&wftg9hGf
za!O?aYP2Yu59!%5^o*$jZGLFgaZ3vScE_F*uq&Q<8z3|#rBO$6vtgLk5ZYHfhFH)F
zoli6xT3<1;SwZ=appLH)sW8j$h(*cGX?iq2U(4ql6dSIX7rfI#)69(+S3r5JG^wM2
zO*#+YT|IC>d(fX);Hlx}Q}2^}n!rzQL^fN>)YKDLO0T5<v7in(T0`P6<&+W)>$X-K
zHMH^wi}~InSvjSCzM4eqn>^*3fZvy>m1LAs6|p!L7I*X^>;iju4T1U4MJYtGV(8HX
zquj0>^zoN`#f?9szKde^Go5bIgkGInDtEaH9SxnyVRC^D2ePrx--qw-sfQOs_9db3
zCzPC5DQUZQFU3<vp513`Lci(JkvqC?PHj8vb%iK>F7rv=@|gOr6U~$Njs3eNIh5t;
zsn!i52@WNJ;5rF!kOBnagtZjeSGnhBmCqKI`<yT!sNuYV{kBs>^212a?((rnNvp+V
zB6RURZS_zIZDM5u^=>XqLdEvPEf#i2&gaCichi-H#dD<ijo4l>`|zT36<m7OhYVzM
z?8FT^^pXkXlo$RgS9b2|=!oa}<ZbUzDL&9Aq;B}!RYk10+_cC0fhw}vRclFxbEeD)
zwmeF%E*JK~+06+#yyQQa_d)AL+6<<ZUh_FpPKhY_PJVQ#CwWZf5vW&wb}$-o;)(O`
zp~c4Z01UMReTM8CcCcFQ#IKrQ7b*b~lvXe&hxHzJ#cmQ&*tu+YrIl~Rm(y4U73`1b
z?#@}=%MSOPm8Y^K17D5~?|W<*=#o!S&UdVOWSk|Bw<su((Qv-JYffz^w*Bzu04KCT
zhK#~F^WHBff}$i;_zzqfh|Em!yB6hEUJQ~?b}ZeOT1c~To*B8H?(DPG1O*BEm~rgv
ze0bMzyyK!P`Oju5yDcy@!z3(qikJ(fDA5`s(R<V+{r3vdl>S1--Dn$QySG?#B@t?t
z(e&~_j<9o_^&Sw+oe$EmcPe}F*pMe{IPB`(+sipsq*KzxCc@wK{3&}O5l#m2nJR1*
zoBGafkFJ5TU+o?3q*-Bi`L2hko88|)@O)fB^2wNbKf;nq`PJqfpjm-4wD9F&8YKip
z*?^Pd(Ae2Z18SbxElqfRL`0Ygo9?-;(!)a|?_d8Np;b%Ng;l<>DElUDTEN6AT<gUe
zou;WsY=|n3Uy?8%_Y!$9o#L23u)cQU)t3)XmI)VczTs&LUUv4Zy<0q42*Ij$DF;7!
z=Ls75rf|P4`Vf8iDA*wXJ}USFkV0B$28^9rLeT*D)TpaTdYp$K7{Jy$LZFmU^~z~O
zu&LczMIpqN-kn5zK6afU#MgpT$C5`uA<5*-WA0<u|B4MQObx#r=$3T7xlj7fu&ept
z&#>$32ltfM9|PCd1ZN`5d7Bb&JcVXAQZF1=aBv6&HOYaK7cN62d(Uj7_=+B4%-Dj8
zEveSJ#M641%;k?MzeC#D=mb6t2nsiQRx7?v5GkL*Hn+W=R*u~$CvFx&H|o_f&$HR}
z^C>fOkry0=rWj)p!^wL9Uq&Ti1D_wZ_H3~eR(Q<e7v#F`LeBi$tbi)GtLo790Cn4O
zZ8iKUI04vaNd-j!WRs&^g1_f3(nN9Z5kC7ISS7h9xqW=Ip=rOUoooNVW`Fn8LC1VL
zAA*!0Zj~(HYj=LDGU<;*@K!SM4+Qz|-01J=kl)?wpFs0}a9ea70sn#aIoYlJ(8Ap~
zKduuhfOzarfEko{V;4Uy`|*ko-=3fMPJORcB;9%(OG4qtjEz41A~*P%zb-7GEceX$
zf#cQudXA<OSp(nc;K{iK`rh{JiOC)OjYf=XtC!0_cAp@lf8_|1p|0Xxt*Q9mbKr#q
z2<a(IOQ`>V+VPD(CFO#K(crL~NKlZleBS{Jj+FeKE~lg4V)w5aEtPKw(LEl(>-}5Q
zsnCmdt>seeO=mw44L^+;#FvcT=TdWtV|Ph;tu8VU@TslPPehLvwlyf|>-k$VeJ-6r
z$lRSl{|4CIQlafvLT0^1-fnILG@YP(Gf=uO{p+x-NEa3tlELmD5^-f)_cMg-w&|DQ
z_juL`(9juhtop$O->+jeAg7beq1Aa1U!ItdR(3an;4Kn3COSQ4iTeHBrxFQJz`sIo
zND0tZ+~^l|iD+0%*xl|3G@ari4Fz~2JocyTMx|wC#+=-#zh(!$HEQZCOP^kr%t2?g
z1yY$froVol4F`K;wqVOQh*>iP)gjt?RIp)g)rrX9pa5ab6qiPhb`Qlen>6eZn5P03
zd4I5SblidzbLQ%$FjgWsw=T)c?-BaIT=VSNU2UW*M%(>sg^nXy@)}J}fMYW{1^ZV$
zIBW1OWRec}%zvsUmKsT;3oq8TPVlSXM5U(27GhCA6pT-wKLNhYA!n%Fk^CwsmgEC!
zasdARTX9X4f}{su9i7CY%W8MOKFI36AjZPe*p1f!vKXJY_%aiXpg0+A01kF~==7^t
zXDWi=SE_yhUQC&FJ0?peJ>cWLu=eo1#zaoMPK~8zv!1>M6+~gbRgw4?Pymb_9BP?@
z{JzhAUjm<&5oymV=nxQg?gHx4Lsk<U`>O~(zG4cnguhAMx*b{BliXw>g`XYpUWsMa
z(4DML-MHmQ);m7;Es`{N9!-$^%R|U|Bsu}g{>P^&Dd3;IY9C)~<IRM9v>rQ_=pyLO
zuGi~Lx#dkxJwBAcm&pJ@@d6`2KQZ)!V`cZ|5@hEufargt%>S1<|6jUor-$w8-bAY#
z1sef3j1q2U|GSOZ>2ABaa>V%^T}w+2IAIE17lo%{exI!$=1q(@=XN;sN6_`Rk^8Z`
z6pd7UpPN;K_XNr(_gI&?4y+g`mY&1(H#|RXag7jj4YqFim#o)p#!*v&-Ac!j(Q^sn
zTY@I>rwV=>E~)z@=H%|)>8rG4%6(CBS`7y)ax?hEHQm;AZz!R28(lj8<srJ>&L$H?
z1yHuBJxewHfMZ5AqMk3u(gbPyYRks5|EaphD>Jvrg82x;#V`r&#=)&#vOgh#8!W}c
z&<maR<UQ6Xy9NQ{yE`h(F^_dDk}g{89-;^Cg@Ek-#|b)mx~zrQPg?S-^mmA4FviVr
zy%R0Hda;g^9f!}!CATsN43p`VwXzz2m@_NmO_zM`f1=%=JM?XOh^0!W-TVh|v!Y8n
zH{i7V&8GeE*8iCP|KnElyASZw%KryD*8i{DWYqG?@2oN!<^^Y_x+drKs#%n?d%<C7
zAC2Fw&yRfG8Q_bFy`?K)E#TFY8)z2*GGof~Gu=lon%iSv3WNYktXTXUn&LD0G||R)
zTEcs9;mwuGaIji{`Q`^4(Gq&8kMA31A{HlmsWT!42z-@FGj31UaZ}@d1?WDnJWIiw
zx#sB8pP8H;2Gr;)cL+dB&++e_dvejk>vXD~9@J(Jo|J%|3S$C)e+%e3e@vsyMVvbC
zH<1H*sDpU3m$f9q_`OVZ_yB}sBRU|Qu5dP85ZGE%8l?%po{RTw^&1vU>*ko^pbzpZ
z3o0|y%*&bx@2mUl4Ij8)tW;!$Q-aD0rHQNMnGo3#b|FCaT@(0nX>)k$+(#nopKmbZ
zr3gcx!uAN`tC@w0@+QO}Si407Gvv$b^e@p6z=`I<bqv6CnS*u^KMcsunEe{Or<?cS
zvzG6ZeKQC|pnto|S3NJ_c7N9Df7W|I)8IijT~aF?Hx#jSJN?@iOZAZuyiAikT8T?#
zEtV5v-aC9^G71%2=X;-D-OInCBDHOE(imew2%sESybtv^*w(}g2Ka~QCcBD+lk@7|
zf|SR?<eq_&&Pcg51Su|!lKBT+RSM`$^x%^uAjA^N*%XustbtL+MBl6Ku|NG&YbWE|
zA*fPf65M~*ax06Fuss$6${^a(sMBdPkW`Mb*)((hH}ZclXnpWZ+)x7O!P*Gua@N-h
zRGZM5Mm?+pgHNA}c7R_RNDO<!`P+|xLt#Tk3X9o&Tb;<h-%fK--eJz}W?%Vokx|L?
z%^XhWa?tid>7VLc3u?K*c0*6}+w1&u@p=NSuNC<S9J!^NvBuD!pAc*~M4F>L)ER^D
z)3AC>jnxjCi^tdkV?38SNeed@KW`HtHOrtl!814hsY|$HraA1$C-K)3ko0CO?!F^A
z?K*fVU648Df#0n)+Uzo_1Zn0hf?&r#fk0L}sd@vnZv$ceW9OcCo9eVl{F=8pNE-uK
z83($IJQ}v3qR2`#LboNnl8|7Dq^+W09uq=zlk>+gw3$5WOpNYs^3yc(Q;1~=h0;nx
z43VIqJV0f~!<-Cs0_~l5<*abt-MX5ZnrA2csPlZZXrPgwerhC7GT_sSgOcN58}DHQ
zSQJf(Qlr!bp|wi-K?AEB{{nRgL_hq7a>=O>&=au78hrjb!%x-kJ#3-5HjAas();E?
zH$X6O5KB5pwH6uSS@S1u+}@hKZjz+mw*uJa7uY76wt~mZS`%Z%kFf%w{`4!c@UXYy
zdk1~PvTG@WB$eOvf)5nBEqa}p(mAVUfsxguE=1Al;gotTZIy;`BNM^kJGjqu10p9{
zD*%|rjeH0|idAp_T;)Sd3D}K*tUZIy-BuUG4WpUM(Q;{we*t2@Rb5KCLV$S1>=5zi
zLS^vFPCVA73jO&;^9g)X>tLVk4h&NXCn#}DjLgAN>hviAU?3>L;&}QCjNTbzrpYq+
zY@i^-r$j%DxqP|$+1LiMv260A{C=#fWuunQMsYsa&<DJTHt2na_txczF!2~P37b)8
zZC1<B)P(`+n$hrQTV>TqsPAkV2Gn`<SpFsX=lcNkEfHmF-L*b7`)>bPQ%Rzh@J8^k
zB}Vv^h3cj^`CthJjoqA^59|@pE@VZ|m*Y3xfL?%RLXGEsCK_5o%Lux(;J!rYV`o^I
zfwpp#I>H2;jc8@7(+xd?LjfDG1c~3Sz1~d6l$wl?7vK9oef4I$wkgZc6+a`J07DGD
z!{d9je8_H^n>SHk5@=l}Mx&LBg5X%hwRzR$Iwj<Ve}C@ok&u{(Am)jPtR8;%kk>tF
zy-vjlLEp^1MeQW~DL}Efz2lcwojKVuS0H|fs7G#l^a?6|;sBf0Dr>(2YVihSvcISP
z!mt93%ZSPo2zvSeDY*7ifhUE?V=z8o&Oomrw!rEsu+9D`iUH;eSPF2hVExxr94H0{
z`{@I`<@<RXD7^UBCx2Wzqv+lrg-R|M(-VnP@%{O8^mG&$z#~k@awjg_US($ns5tsn
z0ke~vO(rot_npEAx3?hE@T)op{K6SUElX?jTSKNhf9?VxfdgLfq1FA8vci$FT-Bdq
z47>`^bZAE@i>v4LYER4S|Mt^rmM6}LH;qZn%x0a||Co2~*IfL3ISvcze%Xk?bb|Nz
zl`NHi8yA8SimlUXBb6^4?A-BhZ<7G!1Y<jrht?iD{rflIB!leTw--~~D9wj|ul@P)
z<%B5h!lT<Pkm|_myME6`f>nqy`1F#1n!(}MGeS;{ZKkc0Huk>%3%tjtNCK^W1G@Zr
zl@_!6As<%tH%i8><!an(>O#)1g^MC)acLccgg`G0<@M@p^~IC;_c%DJyw<RV)Ns1+
zXy|Km>WA)99t$e>-_@;KOM6DK0HkzxA;A`<7E?bOj#Y)dBZx|zpb+5Ze_aQt{lnQo
zwti5j%K57j3y8>sz`;U_ZLjA5Vl8TzmaBw1i*XZmFU}k0isBaDtBXxQu0>63*V}nm
zI%L?5$ALWRB>tMo=&}5YQ?&vfT5v6p;|oPMB82v;K*@;yYG%mAzcx-Unozs4J3OOB
zWKGajUmhnokq-fG5qkCY-)sKytOE9Q#Obz{vn@6EoY12Zl@~s=Cly_;GshqkB{eOC
zE`#=b1evS3)xp<1bB}~i?u!U~5=@AiU#Jyf3A4LTaA39<G4b0Gx0J0tz7Qw^K?VOQ
zoICOe8|)3wpO8`uq*OVxyT-=`uEWVIr!gazf{5hqbp1Cx40Ru`w~!zW`!xlQF1X48
zIt&+xWMI$b{oRa$@eeYu6;fm~J}8my9X^js+w%(;0eS@%%8m@VVTDF4o`1gJxB8JZ
zdxQ8IU22EZbrL!wJX;wEM5i;KlHge%@A}w9i_$C<=bBGhZ(#fPC6mTQy_iPuhZukQ
z*nYLwE7WBEJd8nZHX%v?uZT%uBcf0<_~Gk8Z8zrPPCYMu38tj-qnsC0qmK8Nl_Y%;
zb`?-qZsUNq8@(2At}XAOAzozX-ciy;Ok+FYv~$9tGyjqJnmr{j_g+POmyzmtYNi=*
z{Vb!&WgOWf-%Z%~m7K@K_DDTOW3&;mFgP-EX)TGsJlmg?%l9FY{!s-8W0-@bO3qAT
zIR?jWAu!d~Z}h!`<go2;s-3@$hOi}7d<4pTCr*La?q)*Tf&WNNxVuTZG-=8ITz@~>
zLQv-a`JY+-o7B75Tr)%C|E1mID7akTENy<Se(HBR)-AacaJ{Z@Ft*PA;qE`p8L&I;
z;8fGEu>Hq|@L#?ZXqmVj5CUg1|2&bPPNxUnt_^k_hv4sG^#5+#1DKT#om!2g|Mx*O
z=!y)$wKH3H>1k{!iOkkrnV@wf2w?fQ2I%135|6FBwmF4tS%R&*9u%LVmx2G!&-~A%
z{r5`RR!P&AV+A~tA@}~&AL1EJ1_;}h*fv(s>ow>?Z$C_j-sl%q;dF3-e(@<tKmT~*
zlNg90ww{=zV>4S97uf*pK))F6lktTVMeRK_>ux_=|6U!1uhTGEbf12gEphzLThkvx
z@Zi&~Uk}zJET|x^ajRIU*ZBV7RMd}O+bJ-PrnnB2<ifDXjg>iH@zUw6<Y=GeFIQwL
zz2^FZf>@g*HI)4hQ)3e=>|2tK=y8EIw#QdN(`}3D`be=O=w>e1n)ZQ!nk0g%f9_DZ
zx6Idm=e#fD((K1)&09Nin2IOGgxUZgD)TC6CKk$}>~ZIU<S7|Z>pK@zS;d>@+d?M}
z-(OKVaN^ZH6Ia}@L%xR0JF$G{lWkVI{;myr<3Sd>ifq-estjZN$M1$PMGvJNN#*C1
zWuGQmqj5}^_n~#cw3JmJ%*U`REPJW#iS?FN9vcupd-EnsTh?Lcp)eQQW>=!tI2v(>
ztqD180P~$6(P|055%meDgcYA|Nmhpsm0cz^e7?ub-qsGnwh%ymRBo$xumquyCc4XV
zkmb%Ej-2;amTM;6)+~z8xE%`EtNP=MT+iMkH8C)F^s9M%OPARxRxi~#&A=KUnR^*6
zY{qCdzdjeviatV=%gA|h?{eXZx{5P-AADU>kldci@~Dyp#i?|6!G^{{({i42-?=ht
zks&TUAPz5j4b-XMl;1us$XNv^!^0ka*K_P1c651kcQMwxw*=k4U`YkxX^^PRwlBj4
z*Fq)+5sNKH9~=xN5W&>rG5#K$VPG*wH$7?8&FxEK@QQ_!0k>19Gu=f(daQ2q#1CmI
zryut)KFwJ*@|@JzS9)8nBZOB%+hl6?&D(d{)L<U5Xbg3IHYQ;vBXGHflSyH3^y4}q
z9oAjd<^d0O24-%SWk_fQ)kv%ahVNi*8($k`3@K@dV=GEvVS8AuSH_<cd#*F8Tk(#w
z18aKqx<KDws|kCrd<wiw@+(UsSSaquc6s_uO2BN+-ZgGCH=y27Tn1+`r`C3V@QK%u
zV#Jp`0U+4I<FK*?U(Ef)1>S^ZO#YyHOgnzb5Lw~22SN;Rg$Lz=PWV1Xc@5T<>Q>0b
zRoI6`4Ma}gGG7IuHn%6&G6dR_V}9+}6)SgEYQ?ug+%3S!y+44(UP9!NU80o-$2p1f
zN|J0g>m7;GmB>wB@fYFt+OvdCCQbQtilO?@osBs(%y;^wDI4m0U(wgG2&FT-tflUG
zWxk8Fzhloj`xbuCvcaXkhtqGYm}5Xmb&peu_SF&GwignZ1Fs{XF)OBf>R80>c68(v
zhj~rJKi0KwVvG%x_qCdss_uN|_4(LW$2Xg>>b97rAk|prwp6PrO_Qo<W1C&Yr<tEe
zg&x`Ou-8Np_IiK1zlKgzZ?H7v8uvxqu7cC~2Mlyi^4@bX-l63}@oDvY_Jv8$fKfKH
zA`*{2u=(gd{;ZVKthMP$>XPf2ki13INuv)Ex?GMe!E$qY{n0gQ4DnhJeJ*#Y$Kti7
zReU+m4g@B$ko<Y0YfhTJN4hI=$geYQL-NbAb2Jsybc=cfxE`$EM=r5a_0aMNXb~c~
z3chS95e8O8m1CasVIoX+{;XnNeHHe3W8XYd1iv#T@IhriZWb#PEiQHW+e@2ajhyi1
zSX&uJB!i>5YOdC_5J!`)_VArprr=5=@~ZKjt1?=``gbiLwEE<gO!x6;o9H30k&z?p
zZsmo$lEI-wuUwH-<Xr!I^q>b9w;yr1@|L^o2>u57*7u;Gpg?v$X%sF2a&flp`KfZR
zIc?r9$q*7F!<U#~JnU9A>lJHH;jEBzWD!Xz_K=NLqOLE{4ZVzj!x4NOjqzvNJQOh8
z`8Rv{C{FOj;5ic}Q>%9jBci(q{=zQ7u3{bC$N{f@o3s5TodS(UE5dayxEQwBdS&|u
zUeC8B@U<m=d4J<VFX!R=@;mqhrf~0$<8okLjxD>2<r@ovw1xG@b1v%!s=B1a7L{!C
zY}+T_%s^QKXPcLI_Brm2gkJbmcIN7Izq|!+KB;@3K!S|`G$P;99g86DD6;RDf;61;
z31C@&{9wdjEWYJJm3eVkSh`YXOkj<g5@T-DYZg5JO?{=vr)z=`DSWq%M|A#9{avUR
z=Trms#w>7k1ij~r4ph9gKaf#PCO#39$*O;ChuZnfTnR=`MuDaS13Jzj+qE0Jst(?|
z%XbSu&LDo4NvS<HO7xcf*mkKsM6SCkiA8#i2aiRsvg*qS683iX>t6NI(95sk=&(TW
zz3z%dbj7a5`!d#AtPtHB3sls-hHjFxt^MJUN4Z0O6TOCbZ`yJ;`2+lG=l2|BB3upY
z)R{FmfQH>24LWLtc1vw-Fisy?nd0p&y`62Yu}|tf3&Q0Cg@l7wE}N3yAQvZFZh6}S
zQ2eEZv?5O#X0Bww_~h>P(#a&}==uik1NjQ}MAs;u+pK)5{+PVSE<0ALWUGkmZw8)m
ze26vfSW!Awtka=6Z%9@Qu(sDT!xSqx*<N-Lp%%UyZ(YArDN(!XnBi)57%FNoU>;zz
zt06dczY++v#)IQ^YdCFFJep5FBGy?HsW_H0J^f(VoL3vWHk@mEjhNu%PcHM|<e*H)
zh{vA`ejr}@fF-j%tCc^elLa4h<ja$=>I`Rmxk83yMS%FyUJl4#Ov_)+U^~*KxL&dI
zi|>0Mov`<`_3V)8FrTo@$E$_LvCNrthqjYN2}|mTyyB!k^2N-in8&_e{jk4ok^D-m
zBGGWcKAnmQDC;+s^_k_*$sfV{-`bx+svOxqXLi0aU{4?mGDYoffES`iyPN>?^oBfo
zS4p1VpP)qY-(2oFRS0S&5}Q@Enp;SD6{O}$ztyoE#I#~4;S?bzxPh)FD@Tr-u7n?a
z7hMdxQD*Sd^ce_fmp%_E>QXKmaje`bKh#X2{H#5{3is2926$9Jjp?U%0?+3zdAKra
z9Gt^3xM)E56?@-2AZHoZ!%HvmN7q+Gzlt&z@DLeMXx1xxguTx?-ClO)yn<QBQFo|X
za(r6E%ekC@tTxuqGwv*VA#w-c>D=;T@sKRJ*L#azDLuNU-*?eF&#Wf45*!_trN-CC
z<X<%-uUAD!iA)%^gs<&o>ae)TW~;b7%7~BQd95N?na+yhJT|qBb(bZZKG|*NE#z$`
zJOA_rKIvD4>?o1wzz2B|@@DGd{kApoXfw@bDM5!L5kLWo^Ap`F+;AG&<6;FB!3O<r
zdJTL@=kLv2tU9|s<7##_fGrn6+827tr!!`imxg3PFxK+bHeahsSg{rZzQojr<LrF8
ziE`rv2Z!ftu~7@aeWE_n_+Ayl_=>y&#NBm(%^N!!EM{zm8A@zrShEd?;v^-j#00AD
zKM+N%9eK%}q`lK8R5EQlgTVf<GhW|%?=5xbTF!k9NM!BC5!Jif6FT&)wDNhXJTmy3
zga9pau$>o&okm=x%3RfsTc&61cr2K%-xA?qwjRi@4UHHj<Fum{Dayv}eEI@Nk)yLc
zEV44XqK?}+F2zvn?^b28fgMK2$9d=FOn!~o&b32NLnWV&;JOkUs}4NPBU)E6*mE;k
zoYKcFI5D#3=%%p7+QhDpXnnI9SiK#SaQziVTHxYthujwdc8xjS_Yhd`DW;I_7`YYm
z^SaGa4S#8$uk^<0Ffp^Ku{CKi9gBSxnDtG1x?ZjQ<i<%pX^eNZ5$xUe>CdJDdi$Eq
ztTmD!4mQiuo!l%28^5_ZZYQ4;Xi+a_rI8g*_~mb`gIJUF7cb{Fx1nAbHo4R$v98<*
zfyRZa2{f$|pWPQ$cG=;Gw^$@Tj=Uy@CDdZ)oc#1kH#<JP&BIub)ZxPqRrSP=-m>k?
zG8Ba&3MhvmIsUc5JS)AM!21Pr9HL*de7%Y8+s5vX@|ti)?tp%N!F_fZcv6jhSQK=Z
zmUSi^yXl3{uF~a-uO8*BB3=FRpk5u`cdQmB7<(-lk{&R}o^PjVGOyv#(*NF(W27PA
zRQVg0S*9@AhI8A%2CBx$dqkK$;MC!WGK_mud*HTug~$=3r{!?nlfubKks?90+oTuz
zc}3A_29>gk5d8pq#tR)c*xQm4B8pC4J+WV{aaHk9p~|+4r#ZPU?&y8dB+q#1T*6D{
zVkgKBj5ky?vmKMk=o_>9LRIs|RXyHt@)zaIBU+pWfsKhwY;O!yY$I$X$n~>N_4ER#
zn8;@OxYtVMX%}7{XL2;2@paj8(xWYXx9F7!L&-1q>|eZiyu`Kt*wO1xfj9C9uQQQe
zkqJVBbBq;C1AcK8B{F;9gZC@4M_31KYIDO;j1A_wBf~fMn%MOEGy2FF%*zxoHV$xl
z<dmUs(JUS(D+BJCoa|VkUOyHI53;2IP+h)yv+eF;^y7OPc$+))XeL&I+NqbS=Kg{Z
zhuo9q@APu~#oXcvdU&JCB+s{0#fXJ(Ftpty<9)u^LB88~FQztl(TX<S(LQf@iQHRy
zhtk8zy=4)7M_CjMcyd$GTw>lYM-Hk=x2DXQU;d7w_B^F$;{MYZOX+*XB8~4kyRS{!
TP1_y@@K68rd7XFKw)g)Rj5Il*

literal 51547
zcmce8c{tSH`?r*kBq_2JDlwLXM2NB^RF=%xcd|_OVi;K>J8A4&)~wmLn9APRX(sCw
z#=eeq7&FgX%jfg`{;ubFuII1k4;Sy5^FHT3_kEvxd)>$Dhgz!ir`S$WP*BjTtKEG}
zL2-PSf`T%dh7$NBf2zbE_;t+fv8ob9X)nhD@NmNRj^-T-it=bWqB#}tO#4g?>_$Ox
zrse48SO>Jg3i$A%`#l499jJ}Fm$|Do#WQnzXLk{2Yj>U-B4Q#kjuL)a6cnA^>UZzx
zJ~vr8q^mQ==*_)OR?RojQp&ZzDiU-e;5DbL%Y&)!2-AujOZ9R`^%^U~3Sm^7wT3(b
zG(vUH`N5N+_qsZ;N2bolw{e=mbo4nc!UfkJ-#ew`FDI0x6ZtkKC?-L9^5ond6J1xb
zTa<VQn?q^G$Xu%L&ZJuzd5t|o4r8==8#8iHi@?P8-keT)B7X7o$-vKMVizOo!-$DT
zfBbrm=OT#z`uOPS>TSH`??J%RBk!4xKd+oVnZ4B+&HDFAWg(VZ;-BdT`4nvaOeS_Q
zSJkik@6=-VqyKxMjhhzOtn84e@i*35;wI}~Qn*8nnte?@!~Rl}*wPuzzQNEp#vewU
zUMlO;0y~cR^viBN05@N4rYCi=IF3}4drRwiknlYDho>dl_N@qiiE5AMQ*aIf%STAb
z3TzyT)~TH8o_*sw{!)0-XZ*~;Z9gy~n($5xl<|uNgebb2@#pKMqthBR{t8>=yFX&-
zF>8I-JGi{K8yPGq23bhUtb<p}rxD77Jc_qu8__Sd;OlV?0+B%qt-}><wTkjJmr+LH
zilP@EqZ1-@(A<2Vn-3~28Mde#!75?IIz|fuu+KmR-mMYv2`d)1$V}XCjwK=!B~iPc
zvdnxPiH9d#=mv&_?=n$UbnCq`y-{yj-jcqZ`T=K)@gHX?**4M06dhv}CKZ%sa7!x*
z!_6^H&#W)HZ3^REn610<yPUTc+x7vb#8L*FXUg#VOb12O`p&@5XG%V@HOG)-4}GZ$
zc~rHsd}Y7sX*A4d5#U!o;!v&Pa;G0VyHX6^v?d>X`9v}EjYq*u@bc!0eb1B(UE|7m
zo0lG&w!ek_K)|L4-yt-TXk7U@owhU>XW90_IZj1M>5NZ~XB;BBxgz$*GfE%OPuWFq
zj2wPiB{W@0uPsMn`|jl+_N2!u*PC$D=Lctt&zcHemXFl2X_%*p3U9dd_2&6}_-HQX
z=UMor$VMu`2*~4dB(p_ZAKrTE`tzLFK(1KJ;|Qu)9nTsp-UsqVIkfq_ig-7Q&Gwg~
ziI>cm!}gd51L_iJllZsB7ftfJC_%RAE2^PETXlfU;sk9UY2YPPxB6a#9&%N~D&uxG
zozM`MOmGS#q((U-`j{G0(bXy@4$ZXC#Fio)LwVh=YnQ1Ud}FLOrok_3rsl-YU5J+X
zr$HK5E8?J_7D1#~4zeR7CB`$M?%|(T>@pm;=o<?NW$S!l*a`k`x+at|Vo)Kzq)B}2
ztCIVpA$vD^AyM<sXR9sN)j}Ujb3=DAO2w0S-)Xy%JU-=$N<N66gTv#&2&81lFXeC7
z{env3%@;l<!?b~)wY7~^QS%mlDbin8Eyxyj;$uINfmR*0XRUiRCh~-gO)B%%zy}V@
z=JwD@%hOe_5hW}#trxATnswr1AH?5fqwUr@cg~NoKS1~HF~buxYL}DW-hS$YrIfMj
zPl#0p3vfUvsrY$$S2Ut>Hu6*B#HV%92{Rg_kjfo_AvW-(Ut$a^w7KtOvV`L4#^a8`
ziVDND4|EDFq8C9qbe&E7$(q|3CGWS0=*4D#s1p?e`z@LK1C^FF?vL8Y-^IhuG*=67
z(=uF7nGNwrB=JOv_XnTuRtZ(;VFV3DWAg=mw9;e*#&|-6N+*my7)f1}sgi8XXlP|*
zRdkCv7Y7Y_*VdefWs?~jZ4UnSHf$tIAX#YI?IA_ma(wrBs{XVRxD-o~1t+i7r#O=%
zlAj0mafxx?a*ejLOTa1EnoHvi-$G!c$#|t@<t>)rf#8o}f$geg!BxAiL0e<D_=6P2
z)^Idi;gnY|hYT)!73QW*b&7lYN5Kf4<8&|A=FzabHhyumAO{48M(E~<+IqfVruDvy
zR7XT=w<co`Ere}F8dWBr;~NxVdIA%HhGD2rWh1zA`f8O~OGMG}v*;aAaVdYXH^Qzo
zqOYsLe?-Gr-SV?bVh@#!>v1zqUPnzt6ksfpKDWr?1el=fVAe_)bPOD-EsDZ0&g&X+
zTRz8A8P0a&O9X%0<w~X`AKvv6C)(6%Sdg?rQE<@hGGpIF;V(N@{8CD(6_uT_4-`nV
zMrZXOQ*sGrSMM<T-9pGrDk5iF2R%F!M?md-;n6yNEMm{uuk9!e`b{NjT<$4ZG2CnL
zi$O;TJo^e!$^2X@Xf=_Aa7@jhTf9HY@ZF}#eWoL_^R$WF#Txpzs#OSaRD!hUjP(7=
z7|(7zW5FPKH8OZOc$Kfo3IwopZKG%1_MnMFTm_ZTu*2T++d$h~`8cEg!_e^D&EP5?
z#B2`(Z+^vM(didkLZO2Dj7s#l_^wigvDEM&`U}sst6}`bm(F#vPWy(RNWLfP8Txup
zIpV$wWsXC9hkMM~m(2Vfubkpmu0&Nzsh*FKbgY5?TzZ$7R_zH39KCC#QssDDF_ZIl
zLi>X3+v|QJ=sYNQ({y}fz9^t3Rwtv+zE;hvcTK?YovAks+UAvC0hz{Qa=`D38gQau
zl#h(kzEjhNV(};Z%9)%O8hoqrVK@zAWasaFgq?xf=+JIOiCZN_9J}W?9@_nb@!c0O
zdsNrg=ct4)I~Y|z_#t#~3&CK_ESu2r^J+B2PW1+xK*@))F;lu&u>7eX4@nA&5;@ky
z*HsS+JMbwwpVZC{O7_0vKNVp?2o2uTK4svL7zJYc?X0IP77+|(iK`SBb&fRUUH*ur
zO<i&ASaC!x>;#PEOBf{u;c@x<PMRvd3L(V+O|)k6oyy%(2n}@bT;FTtBZ}o0$l!=m
z@JpaKiyN*%+d^)tNGTouoN7i8_e*txjEzI@FMpk#nHYx4R%N6W+mU{HG5Fs9#f|@e
zix>WLAugVKF5J99XO(DpHSVB9Pfth#e*upTSvZzgtL(qOndryUDep!e4GM~Jwj%^*
z9jN>or6yfP{L=5s_v`%}c8H((d^6*(2?pswNHKTpuTeA$uMnme8=${N1-UE#KP=<W
zRc_gFhNEE`F?L4mVkL7e)}^D|XYHF%^}mZ)fn=V|_fPDOyAk&`n1Z^`)m@Gj5mDOO
zzQ6MCdSDIb`W1=`8QqubuJ3Z*%zX0nUy?f^l&B}Um#lU^ZNLBT&y`SDn11ZJ_TOTJ
zkT~8QNR2IzyKgY0`MA6#eRhK`kvL<0pkoAOg}p#JS?G`@uw$!}nYcH!nIw5O$Q312
zhO#^M@;&!0?&3@JJ_<t>Fzm3Cth8Q>*72C`v|7-i!vesIlV?B~4=A>GZ`E=dkNfVe
z8m>a*JlA}aFAV%$R`6q4V0a&=`c@@`>3B=y^C2z%)u!E=&2b81T6<MHAcGuXJAxHu
z0rCoSH0PN6^k?od_e}|@i3kPJk!DlvyH#322!)XOX3enf*En-RT;G>`i$NF174i^|
z8r-{mZ3rMkjYR`ON?&<m%27WPx9w#&`E<l@dw<2Jz5imn=l0HRwah!}Gvnp95iOU6
zR1R+k6gkg<Li#43ZR*KF$9xWqML!aF2A4{kF4*u<{kz^cekqJ2BX-G9e9riz`t_G(
zZ>t~r#9p4Y^*ZBvHMTYhk9+BR^3)za-SImeOU9U99H3l``ylMtX8OulM-IxXnETBO
z(<V}!%eZiir0SOO&4%ZW6Lh;JjW$?7HTZ3RzB+DeT(k5eO%?ZW>8>5YEp&A(r;}rX
zUB+lcL3USk(;eKL*g$*O#xjS<U{x4B&l$aYa+Kw36-54&*X^v`Z+D~w0lDR<XW+2q
zb8*{G9K2z`E@hoLx6CAqd)7N4Jo_RX^#|YYJy`>Pf7Fy)IXxSw;JHD6z`zx&T*8!v
z>*H;JzWG8|F2~5S((BH#m#U9i^VVyB(wY`1{k(Ehpvj1BcUnC8&}L8@I0iQsYKh^Z
z&2<}3dpMUw>-n3%xRs~AtVZ$1eA&2{ymIxjlxfo@Q?6WdX{9Qg{ZsFiVxO64;&+v|
z3#J(Lz~Xjh*KsHR$j{DV#h=SR%HG{)^krF<@mzc5bkJKrb5cgmd-t}2%QsC=nkuav
zGZcJ^kka>jR<9`H%5ASoDQVRs9mvEi+-40De0~=9%5!XJ%M-;Qg`GlA;#<gPpG~yU
z=(P^JeBZ8WM&Sh%e0H#s=K%J!&Q}tx*58IVV#Zyr`CQ<d6qb3?QmrG7dT@d<q0;WN
z4=m>vU4PWoI)RGrJ?s`qd-?(l&TeK|=k0rS+WB-R|3i56xW`sHs&@JI(z`STzkyzl
zlwG;Gu!%Y28izHfknOE;1HaiNp)*d-QT@It=ZzT#FunLjIWDy>eGIgksNY6i1p^4t
z7=#iiVWV5d>2SJBUw0BYf==(AXd<{q^(`pSwN7iIsV-~{hwG^in)1qA%?u1z1Em%^
z8+VRolejX*O})1x=Zrr3E^XHuyS2RB79DSV(LwU9#pdSo9Ua$vTp2<Hwfj_LFVzzj
z-8*q<zI5s;l4T5%XHPH=W7umy1K2$Q);9dN%Cu(oervsTceKWf&DeTiaR++zwsFSz
z!Q7U~zR+W>N|rmz$nEp2vhUVZqeSG_@DA{;db+Vv>=n2wY3lYKbVU?J{qLI8J=kVR
zf^#)YQ<kM8god<*;67|@VEQCD;I3N*G4`S)k&ka(m7h;K4_M+$?qJflCn+~VYVF>s
zNt=9dadv80%l+6u{cvzh@&$y3Q(y(HwUm@~M?K%9Dt7k!vQ(z{tFTgbitC<tvCv7c
zANG9>GmB1*Gau+mm;@*B+h+Ir@f}LYv#J9amieZ~b2e)bnvm^lBV^{Y1KL?$jLrI(
z7C$K2&x~1P^2(9*S4qIN_)oKoRGYpG7ROwlE}LV!lepA3yyC<v7~LXZiis70<*$3#
zpD1{fZvx|!s#&&aX{VTa|7?sWM3?wFi{wY#D>-1WD`Y=9Ktp)y*3h+|?oBuE0te)I
zgD@Pw-nGw>{l|#r;~2uj`&M8Y9rI))6JV)A#Uv1AYm+hccMpAURB2gh37Zart@10X
zIPZI>1766f6QyvwZvp4Q<Kqzmkh@@^B8((ZGVuB%v{6@p2|Dll-?P@%rcGjeX1yw_
zh{}-t?V&0V95>zPSAABq=HGyiV`c{0+Q!!El*@*lzt#}BRD|_8emgI)Mii&)$pIv;
z=J@IMVyg4x?=<9PhK&C=Pf2A!`kIMj0=O6y^I7Tt=mWc}aAopU^)gET_*<J{JaR4o
zlvGy6lMegL{Oh3n@wh3h)v&?f|KD!9I16X$wt45k)-D78v4q93{*m@wk<l7z!jt9i
z`5g>${*<=qNbpxv_>%by&r6k=;;PFb3eN_l1b2emq``Cr_$rNB4f%6E44knrf1OUb
zrLSq;90zf6@>uC`W~<Yc|Hd7~CAgN9SpR1&ZCSl@PU8ak6d$>5d52uDUOKa#pnOcm
z7$Hg<>%reoH5yXJ$NkdArRCY)eEGx8m(=~Dg_-^wl)CYaXYBR&t8H?r;&*FLNd)}E
zs|R23R1&TfJ}QuI6C>DA>0uln)rpx<&*K9wGB-Fwnx~!boa^6zC=wv`==&<`vr{<p
zmHB(F-S}gWH&v2!{ght~lSc0RBcsc<gqt@sL*h|7u)W$Q*W;!v<u$hJS2KcjRV!UX
z7cZ@LZjiGn5*xGq<=Pa0{qDG)(dq&#T!RuQLTGL$vi^ybIt}W*lI*I*U2Lf5?Uv9b
zgW0M@9uoGbg#7KxyLb^zIc~+vTD*6+9+BQT`8;IgUE2r`PKnaEJbG6v0hcl!zN&$`
z85~AK_Qxh)cxEShzUR!JsLQIjKpyK;w(mg=u?s+uXRau`Ad?OU-)DVmNSbGt?f2rJ
zxyQ*(+V(QI8TLAJI^JIToaej;N7B{P(FyHTHv(YwvHl%=PP|D40gB?!Khh6MhwBvB
zku%Ia|3-h7_qJc`2y??p{S1fw6JA)*;VDQ-3hm(zD4y*VNV~^;27kSYLbjG={@Bwy
zWdhWC4;o`XC=a<9+`R5G76S|$RsA%aOL49|vcFm`odu<;<Y>}RX(O&>e{2E#H~5UW
z@NLeD;QgZ$Up<-_)1H#ar!Kc!-}ly!ss!CL3Xwl;Na+lsr0*^a-kgH=D|N(1$6Z>Q
z!riQb3?_3Zb>xD_dB0D4zJRLY2hytigY23pd^^CY*HP4ilB-Ox%9{?mCnf$KCsv`t
zzRF!;<ON`AHi$f!&K>)zrwERd{!_2>R?0P(DUh$djY{CSQ+e5%z_oJo-M8Oy^VkU)
z_|nFvm&2{OsDs{dZ=<28d{GW;ewXAig$C}+fGMI`FcU^#gPGsq-fRE?rub^z+5(1i
zt!n2zgv7#i!2YMEC=BGN@GVvN*8D*BXs&XR$FJbIR=wP5cSC4r!mG{WXCJfOpJJVj
zus)Q)_wHMJ(0$+I1|)jv@%7u-&D(0Gegxd8Gzbt4;9%#V^v%ss>_)!nlM%Tba(6IO
zsE{YOG^*p!-zpv1crZdv{999-54&JU+TUKv*lWEKX1E(@!D0$4*Jo!MbwB<B0iTYP
zws}|fcf)trU7=H4j`B&q{fCJvT@t>>Ao9O6Ey1=h5LsQ@J1%tls^S(Pw|-B)sSVbo
zd57xXse}|GG5i)n#bS(8oGu4QfZMnN`|!V+%tKmSf$u}3xega5e9)In{Q9OkCO21$
zRa?VArl)<}tAN>5_+p-GdQc2tp8if#oGvM%aRMB)FG}GgG&5><_qacz?^iB%e1m)&
zwntAUHftk)Vvy^z(oxc+{VXyT%4G^8Oj)4$EZ!oxGg3rf#t%QWR2n^B94;c#xO}|?
z{X3aKr!O1BD7-?j&@p2iX7amw*~WKvS#-eUad%?j>Zw0$dvy1s-EL2YPfHn`gfS(J
zkPqRc<u2+DW^x9cK)}MjU4bt>@te(S0!N1e{Ea5fM=NC}+;9~1{{nG(pf;^k_r}f)
zx~#b2Qt+3#qi=4fQ+LK9Z<2{6`w>|3j*}Q^ABr8s&&hL<aMZP&ejn~bWr?fa$BxwI
zw49&!ZhD8`TCKt+@-V!Q2vv}r+*|HL&To=`Zrdp=F_v4PSdvb@8#T7eq9t+4l4_y%
zHdGhVekExwHUtDYy=6?!x^q6zrJn)Wm`+~R0VNehna1^=3*jc>iWMFDf5~Tn`|}t0
zt~9Vpx?Ot+mz?L*jWgWvjVa4c@~7}k;_e|**-xS$uPBTqUDnirW&YjH2QUJsdQfaH
z9^q+(Ag+eMU#tx4x5?U9wI_p{B@UkH+z6ZZLH#NjWwQcH9AJI-ZC9NmP34~-^kLnw
zDJJBxQ0%^fA7SQmAh6&gA|VC29v(-i@L3}(oZ%wsX1_ZD;VQ%RvHnU=*`=}#Ny(6#
z79}9^XH$|j&2AtPR`@j|2p4@z^tYPs^BL?xKQ0a__|{31@EP3uBZfQhc`{)Ws%o-X
zDf*%--Ecjh!*4l|dq2SkdKiAdU|lWTe;tIR{+096rwo7;!YXuTygR`!tVkLR$SXDt
zUOpd@Dz*BL{SHA1Gp(goyVK9eCm-cMK&`)fCR+kEXl4(VdMhY<%BpW6MVc1;wwQ%L
z<_!>?1u01QvDUcmeV%nXzIGPC11xD6g^3=>t@qT<OJTJf6T4*$TqHaTlBR?_CJOt>
z!nG%;4&P+Q?h*LB$fUG`3cUP(lJ*D$f8Q}V)lsS__9N%u(UedYy#Mq!4L6apZLTG6
zW2zIFuX`pHpIGbfy?<-(ZeA-s(AHx1G&>Bp^1*)WToUfUBFpQE0M~+9gRnwWD?R?s
z3<fP_wKM5|1btY_Q!<kXPtu6PO+MaJm@||64GAP87>v9^CSl2q{8~*@Z$%Y8C<rA{
zLGp0Bibruzt$8H}3Mvi>zuH%QWk^zRtxkRYR*Jer(DxLFgvST-g41$0uU6zu6et;2
zl68fX-M2r<Yh6pMmvyY)C;<B{zZ*$Ya44w;`-yCwt1eaM(<nZDWNK!4%znZNNDla#
zWZ&BBT2nX1Fke7m=aAH<#1!PcUT!DDgty(4pdq|Z=26Ht_JMV}5+;h<$nuEND@$AX
zK&&}AYAkirr7aF2%GvhWDsDn?Yjn}#duRC=!;JJHdu-3d*Bj3KN(Ou@2(0zG2-1dl
zRJ=;W`UfND=F_Fq$bH^Z38nS>*ux@tNkGQliYYNSVWm#$zc(*Yi1U)utyyP_6uZ#N
z7gh~^|6~kcjeEkSh{7T&?w+5)5D(OvEAEEc)&;gF;5Gc(_va2e(^ar1jIYxhMURen
zx8@0y=|>!c$bM|;o<f=TB=Xj?&dE0T-rKVF3^n*+k?CQ5i&v9#%RTT5Zo4D|_V}-A
z%&VSGL`HXAtmw-(CfQAu`<?hh^Vxah(q+D)>kT;6%1dI2?7Pm}9`~xb{q_=uo(HTp
zw#eO5U3I>eECX!W*Dd&1h)KWF*sUYX#gcT%fOPwSwEoo%GQC^sy+f{;Log7rYmw1w
z$U`6GzQa{=V;Sj!46*ZoJZ0<Lj8ic3@Y6^AmjEX4jL&cng3YTgy{}hMg?q@Xy$}n7
zYUWuc-G97vjzi<tXW!lT4S5cEMdvb>qMs5*<=4M8rFCH4G#9>C(W{&>Y-h@zBk_+5
z)-z6Z-uE={d(dd@l6^{=9l3=v!0ebG;To2`0HI9><oU%6yT}Zz$6?>{1R2V`r~aB6
z+JK`s6g^Ck##+eSJb-#mtk0_4qpf;?T6_7&7y|It*@YVq9;dLCoXZf?j?811A!cI0
zUiWW*zbiLby5=nRli>ZN9Pu-E)zNH0{?3MWzon=iD(QvofF&XH>HhY?3FP^aiaHr|
zVQb##913tm5rl9vLI)I%@<@=HW+-dgq92pq+lwB<@R1`i#z{ExXO9Fz81sLM%@vd(
zE;|61{ROhg0IxG}?7v}`j=D|S%F|q{C-eMch=B4~`2gYTFW)<R-K1)1)(c4d(o}bw
zx6w|P5w$DGoir~je#i2_^y9&7vFZtsDR3CtSE$#_fFfVyatYTj{qiLen|;gbw`aY^
z;T;)Gb}k<`c9^_AT3|Ji&(?Q}Rf7!tE;AgDpcEz(456e|H>vcE?jpp6f`G8mRt}ed
z)SEypQFIHiOe#l|oEDngrAET>HS4k!4vfGIKd8xD+7(;?ns<$U=top`$60T&+owJd
z*W`SZZPxitUVF;q76cs7tUu`9{3%HDLw{U&#nR`_;$rl2_JNe+->9bnsN}-;=EZ}!
z9x(hi#_WGXkJ7|u9M<=A7WGizZ*i&!XB?%mITs-Ee@wvV=u+Ys<|rWJ)y#7scuoH2
z@K=bV%1sQH9l`(i`+q+;8VTZ3p8vdc^%H)VyZNB?^})886;Opb4f?gh?SA~7V+iEN
zt3&eq2ptXojir~=Q5kjQD>dU=6Mdt5483DjtD{Z3(yNsJ_0s2JLlRJ73NO<z0<xzr
zq}>=-2J*%3u`X$TQ-)a@z;r7A%4F3ThN_8t;lKE1GlB0Lc^3FyZVJo}z3E3hfhP}C
zvcO2Y^5o!ME`^_N{5i2Nly;p0jOteh>7-YO1DUQwaU-X{co=S*-S5ZK0;Pq)mMRe0
z1Ylt_xRz*ZRNi7JdnWb;$FyfsDE#@P(hwfGxlBLUDVKF1b*I#*_U9Lm1m~uOGcq~9
z5?ZVFq*5Gr)7;+)JTR-<Q&GxY<aD~4Jz{=oqevxj?Uv8<X3Zpj@Eq+#Ev+lALBk7M
zwVP_S^Q*iQ)P1uGCbon?K3|q+^5%bb6;P{&i6D|}FHmS)@lq#^10uf@faAW^>@odH
zsB9u!8A`b6(M!cU^EUn2VgP+3bd*&>nnTXdh_0@YvdDt$W=8dAYsW#{KvKOX>+U{H
zf3ODm=+&})z_>f^L(CgnYuH@1blqua3Q6}H*#Y)#3BbDowlqMs>})yFZe4KTIbsbJ
zy0O;mDWuDl<f@-)62{BBd%TWb(fjZ8E$$#PP&&8=C_~~Sl!D6?sj_rjFnaMQH%@`d
zJzJSn?wf#3XYuWFG_Ku@Ab(A(O;>~aUN&->sP>6{trI8FakQMyW}x&+&}Sc%YLr}J
zg6-zyMDB<4V+}6Kw~B%Vaz-vF{*k**4bgJ<(w3QbcLB~6?yw@-AOF1f3qZha(##fR
z-;vN2%5j$q$O?zFJ$Ect@0kLUPsC|>FKPO;;RC0xOn7l&p#&kg-&)o$;pK!ZKuA;N
zK8(N-1WFAVwcD2&y}0QboyV${YJ?@i9h~J0G`j^GpiHfXqzz@CK3X_VE9PJV<Lps3
zEqVw5d^ZF{cgxN}<d47t?@U}EYc-L(-q9y-EtH*Md^<IG0&K&qP;PyOY{D76I(A|M
z!H~I(r@=P8to-?vF&)SEvvAl?z^lGH3WwYgP%UlR8I|^Z$e^yEV^o^JQGdo*JI`y&
zV<I+T{@4a=UGsYYpXdvx176;sh-iC5k}r@xb4ffU?3{~=R#sglWO-n0lEB387i6nn
z%iP;_`W}J7E9~WAR1S-tcR65l<`4l0q;Ouf5fj=O;&%nmzRsM)QXJN8S^h}<0ot#m
zHVO`TwKjEVTfsH`BuM#mroS1`ViSQ7jeg$brL>=KMc|Hby=gNY>ywD-ZIA49O`yY-
z^A~aKvy~~LN(b<=S!gDu%T$2s72v!!fFqx1@5@a7F|G-5*BbC;mzu7C?GdkW`lcd~
zQk48|!o&DLk-j=y?Ft(R$po;{>hS{%K6=83TZti0)f}OHlzi3+!?&Zu><Op<go3*r
zAt*-u4vP9ugv(R|W3=Y2tkrkASM>N|RWos#u9E^5)o-0URjiVssgjK!zHF$l<Rbyv
zVZywwgY@La>?BkhjkG$Un;AbBWtj#wb2^s#vuoGHjc9dIh;ay_M>Q~|ZEtBf36wqb
zoF2@vdNr(tn8uj6ZLk+og89jH<}=n7n=fZ6Dkw*&cvf_ctwLxOR3qlIxex6){F(&&
zAEljDq5yIK!j1qjpzwM>l6QU-gxiZ<glf<`MN&Nu9Q4!C_U&~r#m5crsC}h8wzyb&
zq5NBS`}LMLU;|c}G2v%3p(&0WC2MTfV)1;cF}6Ae7WMtH8Bn(ZO=&8yxVX|2LDjrB
zC5p{1kqZSlq~J`5PNex&r$&VS)UBl(hUOo}!3HV%HejbkccX*H6WaA2S?81TkQ9$o
zNb<amrHb-pj`eIsS3r9lgkxR1LW8M5o%JGMT7A|U8UA$}Hbw}ByXO@zKUK=pd^s<W
zL>eVzT6l04hpT;<L`P9NHP`Wj_=<-lgNw7T##W~=t--J3i_`Xp-39R*yCP2liFvv8
z>6+2;klRb>c+AedA_l#$pB#M9QvKzLkvk57MxTZC$83B(Dd^i9Up;*xZVfl!)2AM>
zFjFqN=A?1VBDN|Yob>Vj+@-3X(#h+*LBm<N<A3rFafly(9TkVg-N^MMNhhaJ-A~pw
zkklbw^}`z%q_XX+N?O*F(p0`(9!I+-eD)G~!afopEn8x5{Z4YoPUI0f{O6|i9mHf*
zjj_WS_PzEeV&UIv7wAwQaAe)@Ux!awxf`YWIW>x`LHy8KhaZZlc)3lAQ^<9UN@^Aj
z2)OB8hCJ$DktN#SI3(<~i=iL?{o|bv3hbpOQ)5(EH_o}7hrWqj+^|Bndw5{Nwj8$V
zwA^&f&qta+H+Fa`Zg<UW2ybYMsW!S`kE6n>Sr(X!r(7O|h7jBvFe40QmeTB1)o3H3
zAF~y4;NoUYBx7g7mre~9ZM&>ZrLZAKnI-&$+0)K_hY82}#Sr6!n3xjnL?thCC7PGl
ztngxG1HZ#wwEyzEB%A>gDmqlX!1FGZecRT%h2RpkzyWhthN8|B1!<WUS8Y~?&ll3O
zzOB_eeO#tQt^75(xg=5Y+}8$`3gr|(q3sR*Du~}wSl9EMOzqu)8i$^0N@o$Fq_)Me
zttJ1k3QBV?i%QoTw`Sw;S-hd@#dVKLTp_n-4bO1LS?Wo0ixLg%4Zy?sqL3tXi*}=X
zBhhJB`=%GunOMSc7N^S8@S2s_xR7WrS)e$GXRx`Adtq2sPsp5^UJn3C-)Bp@8Lu-K
za2{dfYpT}D2H>wXC#_g|ggZvT@&(0J&KF9aI~fnssm3Pyxoorxho)|yuK0#OcojRk
zrKeb_uU{-9^?B|9_tbduAzCty^PLt)8-83QLu<EYKdZDFC+fvKZ6^``nu&oHeD;k`
zckPJZJ<Pj$BAPK^bl(=Gr?C9=bHS<Bun~d#G`w68`NRsGa-;dmGq3Vz#}T4=XM96q
zQQ*#o&f8z+_y(*Adqb=AF|S6lgPTI4g5Fub`%7$)F#LoYesuI&M|$$KRM&}u$h?#4
z`6a#AZh)|jjzT3&3yY&+9^IuiuQWuS%(q2?WKZ;%3#(^mi{+qIVABrv1c2WLqw&`b
z&K3zwcTD}z#a3fnT=w-A8$LP+B~|Mv7)??0pJy<9P5G0}WR~)r(yNmo?gt}y^UadJ
z;U4@;gM&QdgV^<eGo}d*hX`nrn!#Jw0bj%872!4rOCtn%6jNgtS(__Roo$k-!~OP*
z-hE+Toq-!NGnqYHDCpO!8R4Q+cAjY$-sE;BJAwFAjgKo!BQ98#Ium+Q5CZm|!;@;`
zob2QR1ooGH@JjSpQ&nEnNV&=cdC|qFV0PnN#W?n0M9GL_2~`kTIE`Nw8iIdUGFVCY
zxKq8+*Grf9%VGi)^J4qGZa>?zB>*}y^fS97#y=YcJ|=VZ)m<bGRY{cS!$wq%U)wVb
zo$CLWeg?9?-t$^}JKqmsHmtJUUyJh5j>~}$uW4Ssu*s!!=u7ahceq!Wf>m3S&kvSz
ziwkRJR&fr|1f7(85^mL&92iTv-L;PklfEZ~y{Yx%N#-{rYYfbW!>1%7-{DqgF`li6
z-`J}bGB92}3wc@m-PKk+U25o(t#!;BP2PMbuN+zI#~aox6rC!GWo{i6n6jir>J#6s
z(M`HRXU_p)0k|AycWaPl!y~kg<4Z4&;2VvbmdXUs#)kuwG)fLJepaJPB<p`vyH1!p
z^!-K6Sjx-HO0_koye-XU77;<}olx4x6CyvE=+B9rdt|Vtr<rqlz1ccRX;W9qKhr@2
z+<apy;Rd^bW&Kl!V4~5fi79F0e!B_DY>!(!4*Wtqw(M^qU0x;i`k6A-);$(RPVY|P
z4?kM@?)#|n#?yM8UajbA&|gfb#a4fMjNqO>IQF@VQALA>w~E*q58^(@FozDjx@$ua
z^SCH;O0D;T?9QE@N@>p=ky9D9E(umZM~gT=e<kgC<lM4w_AkAUYy)fG-lR^imPg5v
z!P-z8$Z|8OK_bKZj>c?~Hgf;R>mnBP?r^mti>-c8nCH_7gm!x{SUyQP4!87kYresj
zFDT~puOo*Ny76qaMK#(O$P7XoYhnDYqbW#VA>>0LLY#_DC(!sehQo36<2FdUF5$|%
zPV}83Y~hvZ`&-=4pK4b8T<Qdu;tV6433H<3m+f_5E|fKzXb<3R&q7FY5)z0$RK(fq
zmjDxGjiUbGRwo<5VeSg0rQlON#^2hT%kR1@z>yIhhKN>Hzldf$htGTHGT&TsY~-G$
z3tFd7ZVAki>M`Jfs9b$V*NZIZ8}4u>(3plJ6apV2XOqC?#C6wU;c>^aN;cfUUYc=l
z{>V9!N*F$&WWCbJFu8NwR^B(w%~=ikQO|PiTPV)3xwGLta@Rv>Xp7X1&o#Br0H*85
z&n1m~fSFhZ#SHxQg1^XM6ejO~t^YZ1YwVtu<lVpJe%$|oI(3%9=7SeR?xD}UDTwHX
z9VE^5eCTW<E}IzyKbiHiM`EZ3W@L1cLR3ttbG{#c?2j*7eph}LB`w)^=I7K-!^bqq
ztc0_sP>4Jpcc=M>>8ZHNdR)h1Xa4W#nfh-k$rfXLgZa{GvO%5J311^b#%<(oY?`sx
z0F{3D|41Vp6g>wF5^*TmEsIH;#oN$jwUWeDm}Lj{wAD|Lf@g^+j!*MXv|k1LT``m7
zX|xmW#;>HY1|{91yv2pBJ9cgA(pJG$-3HTIqPH=~=BKu`^zq-h)Ry9(u<*BK3;f?K
z-|hNua`Zbu1GFU>9OVKgE$Ce7d&sQiU~=ZGuyFct;5WDZVOF~E<aFj~u9iXsP2hqF
z@nk-W3P{eo%Tp`O$Vl$ReFk*mn{Wdp?e@L)drPIfn=|iYOB>Zq%!+spIY4W3RVp<P
zvqc{*oVLvqYH7Z?UikqJjWPL~RUfgV+clyCf4Ivm54|NHm5}>^GdRsf1pA?btT!P0
zsx4STWwA%{`r<hde3c&k9X~;XQThT)K{b?yWpBSr!w4QY8BgVVM2dcpG^_SPy&PpA
zEd+n_qbX*bPP9);4>#Y+2;P8`cEw&r&s&SVWH|AkGOOgUEGIH5SRl65haV*(xLI4C
z(14Jq?FcKy8&owXBRYJYz&6j(Rm9P4nPZpNU;a09E#>;~Egk!;J!Kqrr92rWq&GC&
zb*^6<lV^Ukl;6+zc~55RQV?Xr^1P`>oMl@whz^k<4=Y0Fl)@bD3-UXj-fw%j)@%Ff
zu9TFtS5ifWv2cbW9c`7MM*OQnY&`n?>~K-*rPv#ZXca|Y>p^K3$zaInt$P|fX%nfz
zniAaVlmtKX!>zHUllT%B`d6`gR4>*)Q%kbaSw;=Au_<`mcj$_0wQ(mJWIW`NGBITq
zh%bJ{*3K8~)a@x?C=0&z1I^Twv$M@uyzOAEw7s90Vy#$BXRlk*7Ju`karrZS3_9Ah
zpr@eRy~m;?+<ql+^l=cZDNO7l=1J$>S4LML5{QVT{EC5Ve8y(Re6PQa$=?!IZFuu2
zm?^9A>3TJ)dQ#V;P+qC)DXCS@kd^&?-hy{Gjh;Jq5v3G`g4UR926KPtwq9<L_>;(a
zml~39f>HJIpnZ0%7+&YrM*pK4m!FXP2^rfCKC#<|AhYQ!RW+JD$7&rPMnYs=P!@D9
z)(tF$j}+N!Co3Z<oQ(*VQ0=*tqb!|s=P-8)51MKoUpzi2r5SI(Q_cVP9GOd8Mlp2S
zhWW<-5EIy@>ym%H&ijUijywEY{>62y@|oQUW(D<?@SIBP5LrX$6+iv2S3Kmnn+tM2
zuY;zVFKitjR!LdBRfuq+@Dm~F7`Q|Rt&X!O>sJ(x4MN|JjH*q)xg9wqt><vZmN7vf
zC#7;-My7P+dw>WP`tC{eN4bcn$pH>uy|=81VvgYh&1fZ$6ni$6RI>+-?GnjjAskD?
z%xKLVMAY|TvmHf@lwnn~cw=R{<5xs`g;iunp8NNkNy+q2o}&xtn>{YRVs<cofP5Pn
z?6E>^;R3RB+Zr2HfMET`sL;}JF++Rvoee5{2&S*Xx<0z>uN|)C4Sg&;HuhsE#!*h+
z<bC@x_0S1RgA?y5PK}*tF=?%WW{o5x{e+zwdG;V9g4$#6cV6ejncs2jVP|JKC&h_!
z+_8}H6LIz`6u+p)x5BRbGOqeUIIgI{xw^z5E4fT)mU>MkaYzn_p|&5pyfl2>iC@a!
z@f2rK)#=Pr*XWP`Zpk}Jp}A=@5;vGY{BoU@3~aEk&mT7LKYMUPL6L8@a?CdZ(lAny
z%2KF3w)cL8#%W(%HzN=ozSf)Unp994S-%ES-_zmANN{NF8_g|h8&2Ifi;w@!_mUjw
zwOnztT6ai=HS<+y*qfip+jJ>|poEZ@;(Q$^c|tDO2ch#a%ACqG%5r?gV@?Id?!j6b
z)SS?!fm%$Co-?rx^K6=3ZcB*~!BdO0gO40^zTI0|cZ;=QvNw#3iu|y1i1!3>c7|1p
z=A}H!kvg|>xFx9Dn)A>EL6z?q<rm~P1q$znzub;$#Z=#D=&xXOx?6iw&L_(FhDq?Q
zX0FTV$DkV@iC20V3_sZKgY3@jzDs6&O8D{^BR#p?3C+lTbegF)55n9U2<FG@tX^_-
z$hox?GH}aF$jmn7utDWZUq#0#V=<%dhNW|{HkN^L@##{)>=WZ9Go!crY%|#V&7YTb
zea&taqBFb<gLHGnsZcJ*4VnMdd}mZ`bjoc0gKhO0g^u7wWjXWUr8=9#e7*b9hC9Q}
z*Vr=LNqp5$JMN>4>~sW~Je;cZG3O$ovA0UC6&z~gMzuU@oQQ~#fleCkeL-XF8PJF%
z-HbFc16J8=abLRQO`v!txN0%qa!<<l7<)bP9DiCQmPL_nzDQj5(JiLNw+77-^u{O(
zF{#5imF+4@sSoJ9MW3ua!LoLIOY6``daeVrgXsgz6S@uIr|-NAxb^RC4>#=e?7u#!
z8Wb1Rj24R%o)`@7UAh6eE3@2u+OUsyJ1Qr(*nrK1#Dux^{zD1gmLXEhSE7Oi<S_M#
zri3ozWP!*No27uO7Zs-$J#<;j4f(!-vDI&f9Rw|?wj2$SrLh9?dc|}AM|<-hnojzo
zx)4GEejeT5z)#xxt{%sg7`T-z9v>Qsv?BBfw(8iKl7@?Mf9*fJlw~;#=K7tQTK?|L
z^hs`~>S(Q9^`J{5)Yf|+ir|WdKX0wNjl*Md-7Br54=&PYpl)-&|29{#9T0Sz<J7{<
z)0i@}M_Y01?DA6smhzlP(;;+1Mq1J1*z1OD_Fz`St`Fz0YZd!fo2`U&8(g>Y?EbP_
zP{+6*T<yMzw|f`daw_MoHo)q&nl@63-jK7vw9%qd4anYZ#Y*6WUw6$k!jAKbYxyeA
zW$oZ6dQ%S%PZ?H%EIlRgRys8|5N(6^J5<yTN@3ef0~{(E<vVSTgmQdPtcXbakOATY
zvv^~2Hg}e_jeV}AiQt6nIV46fGEC3rQWf(k-HO?19_aOAWr&C&QwFQ*xgoWj%JS?w
zX9C0dTd$v_TIFA3eNXi{dc3p<O;`No6$I&b0=$BzVno=D(>IpHE((v9mpX;}2C9us
z@ePcYL35nME}-wF`nd&O!+R0~FpDY>mLa|O*V)Z{2j7dG<}~?Imi~6D1e^z=bhVlR
zX)vyFJ!+K4Jo+2{(WkiFMs?VRJ@(BDi3SPS*l>5y?)ql34hHD=$-_4UgS*!WZ+-E3
zfE@T>>Oso}*ZmCWM&|ew`9{mCIhfGTQD9y~Y~^)62czD=<!lbMO1z|vhLwHNb^m8p
zbOsLB=<})>%>tu`iklsr9PLc=r)52mz9~IQ7y#VvG3VQ&TN)(b%ypY`V3<eyi-S}N
zenlEoEeOdwYc*1c8btZ!WP5f@-Js$!M!STqvgGNvfH7|dZ#?F$6F_5V&WwSF#?ttb
zh817zb+m4_0f))gE%w;aTGrqJFHvKSazxu{s!eVohC+ipQ|25G@OX`W(smVZrAl+g
zleep^uK_8jh(bP-{qyN~9Pf7EA-CDHkrqRp<*&*GG1(>Np!`Jvy{`4?=(^Y^I8dL6
zShU_}buc$-!-rpn$B^`hErF=Q_bunc{bo_{)$^)v9#2AcY`1m4m6@cz-?(d8NsN9x
zcJf7`=a-TFfP;n+4)Logu`|{!JM8DnqY5*G`HZ^l1&I`e=*M{_IS1eZZQg*enw+a6
zQX5)-BfJ)%fTlpc(F|7a`XTh8Cu8wB9q&X$RpMq>odR=eF8%q$dDj`Ybk>8m9~fpQ
zQHLb^e*qVTYgI%UO4E$&dD-Uk3EOoJi4k?ci-`)%Up6r>O<k&BmLCz^B$m4#C1^Ox
z?!@0UnPvj=Gwh3zt2M%N-T9_GZJ(SlC7AA*CKES4Qhdw>1Li6sph7I#+sF?I<M#;}
z_~Y=xQPg#2fDUX2W&9b3uEzV2X5h9(N8uE;hvd@zKS6a0&$IpcoeT1F4cjcAzT;@F
zL06kel>B9Hs`5u53U;c_Ai4h$hNtixA{cn~FKq!Al}3N#H=PjWf2Pxb$VZq=j)7m|
zI>;9u`n;s3I?;LiyeY%D&mEv~@xK5lrq&1Sp_$PZgsVfalMFE9gA5AA^bzSb`n})4
z7AhFQaKC~m8#U=RvSXO;x!_?dKeq^=YR4&QIWBGX$NE(De>_4`T=Suout#n;8z$*f
zU)U^Z5I$i_xW1_>T^JV|Ug}N6iEh-cZFqeM+B4Mo>4lF;Y=zEht|vq+!RJ~QKYd6z
zXtaKlY~K*~goMerg1_#0PM(dl|Ipg!HxQ4M4XOf6q_qJFC|jhz__mGR=%%-o+bl$X
zdT(2b<Z7$>LIfI~?jWjQq0cv)h$7cfP~S<>vW?F7BegIxl{$+0&HlmYgh_Gm!M@a$
z=PU#5r)(M^0-POhjo4el$lG6O#geB>J=Hrpzbn}8>zjRLQQ#E{K`;RD;YuyXK6iSx
z_|QIDv7BWR)~KJN12p2RA#ovd8w<Gv9K`PfVV`dImE=8?=otv94*dDSlcF5U`nVNU
z%f|_=r;d73yNr}j)RoSJC9lck+h54NmC|w!En0LO`<0<WUaLc2H-Sd;6E73k@!gYi
z&r3{8ae>d?#3(lV%;oQo$xII<6L&z(!ofK_Kf{T-`w5>`^q62&_j{+h-i$~$rNuoF
z{ZhLocqqMC1l5FTUV})JP;>b?o85l>W^b9U-M?`9fqIYkoZT)%igBu%4_!}}{*6~@
zn#`e1=A8&u6T3%WvKB&d*|4vUX-aCD_u?N|$L~`V5yjH3UXqd%N;)~abLo*O$HTRP
z<O5c($rt%~7UoR)?jbfq!xM-8XXgYX$37LNU6}eX4d1kOj}X(59*t^Zjxk+%?s2V*
z%WfpQ@cWlQ26+Qb8P9~pZ?t+(6Yg|Z3f+}(Qm?Ffq^FL`4cTU{po&<+5(QB#`7iX?
zx0mv3yn9fWOKcs=3t7mlaXqLZiNYIK({w9iKa4Ku&>Y$VXodLjuo_6`oU4+yWGTH+
z|M+Dk8+xD&V2?u1&ITrZ))-H_>AkhO9N)^JFn|HT5lc9NyP0L$i>>*faIN>gVBwmQ
z2Kx>b?H8|n80IpP_Vw0^kVwE?;^bRTrRc5`L1wgQ<H7J`zczQh;&lD~;K;(L3uk(4
z-gpF6`k9%pI$w&53eUEz<Z?<@WRYqJsJg6Y(cp0^3wy)$$tRHIJ3q8~3aG-gD*p5y
zqsr(l{OyLSZ;>p4QcF?-E4mzyE%O(1Yzz|y%3B`@6}r@Tvb{<u407i%u9noZskT6C
zdEEaX;3RAlDc0WhG}R@~PlR{H(9Rxo!NDTfvXVe~DfZgv4`n6kf>FtXJ4FKqlMibb
zdrRqaYaW8jZ_1@9eRRZwYtJa!-Tv0Fr+>Y-akC-pc>kiB#<q>9o|ea>Z(&)5CH%aV
zv;dR@fUNS~#Y^|nl)WYe5b*hR;}Jnx-Bb(!kNtv&Oq;2K_ad!Lzx~X~*=U<>?uH#}
zgKv)1mgV}gyxj9$K=P!RA`sanY4X;lGd#X!wWq%g$ZK&bTg#<^p8K2?yQc6UCGA3G
zRi7jCar?Ir>L1s${ck<x>()s2$i3mcG0ZGeV`Q)Cpz7q*p3~d5)|lt}c3*y<7^d6o
z!OE%8eLho^vk|f7;4pmMx_iD9LM{E?F*-TBBCdz7?&Qe@X9f$Xp85MR1>dF4>AbOe
ze?PNiXY!-P<#+NRq_-ZMhX?<Jg8ueS(Ss7^E*s8p!APBN-y!VpRaQ&SvMXcE9@}JN
zcTmFpMmLmfP66s;jDpYVVSvW4^0go4<wW0F?p`f$W`ooX)A?rllyU?4=IO)QC+8^-
zd&BKU8<m>;r;w6OtZEJRpv*P}xv5Jw{6ZgKYXOX>2iepEmmRW7DUaRw5i*jRmg}2$
z9tBzA^hY^%ztd9fiq~p#4|w!h_bv%?>#2jpWe-ok$8kGM)YWPC=roNrdTK<nEng?K
zH@%Im0$JVz4Ye=VwqJg`5}V;TwWTy~Oj_n$8#Z03xO+HM2C_V1Ig~m{wRJ(V=`;!|
zlG*nj(Z;r1U$~@Guqbs)@}WxE<ZJ*%V~rvE`%;)!wLzEnTSqY`ApB4Exzi~OI1K>m
z^x|mBpMwt9Z=jVe2#ruDcrNwJMZ3ExDSSsLp@A^BspG<u1gy3VDtg$fk;EGbl_hJ^
z>Y<u(#9Eu}!>9Hz)dt(70CI)n;gpdP&01bQjNOEy=l<w9^PtE_KZ_4U7@FqICDRc{
z#)oq@9sL>IDijKE#qflaLX^ItbBdBw;nOL4BlRnn5bg0!7mahWYCML~HV+n;iOu=$
zcB(0~I=!P?I^j7shhYSFi`Pja)e)~UY}lT1*s|Gtt%|JleA*WOY@r=>gR6Rn<|)BB
zXfRK*G^xk9NRL)Gu*#vr<Jh6L{{4^!g#FTN?Vw#mtM=WYs}f(M^%9jvtHo?k#rM$*
z#%E(Z^P3oD*+*Rtzdm#t;0Hx6jiCLOA`KwxLfW0h05}RTD*=j405?Xj_?!vF@x`X$
zU#k3St_J|gHv9&Ca2c`li-o|kowwlJjo>S|WTY>9sOdU>#lROii){^q4ZQpO3O?M4
z)T|EoUkH_CSHW`VNj4T-M=J?)$~tBg|9n-F@5m|K0q-yzwH>__#H!x2SPLx@89%?s
z=fVX28Wf?r(uzRk7HyzyF{uy-)yKx39fMM`7qUZhixAUtmJ|Cb&j%j@Y^oYi&{-Nb
zrPX^I_Ms+At@Wf%<cRe<-3R((Kf?$dhTjnySL5c!-cmT;wyOGsY=!FTO~F>q20KwD
z(<P!69_CJ{JPFTE0>GEdoSY1``-To0hX#5~?isv(f)x&y@l>%y8$Nq}m*)#l?}#Ts
z)yyV>+5v6}XtUK)Qn32rXp<!E2xclEvVDScU;IP|dZIQA2OaTs@ch~_B+{hyN4pY*
z;hyE96EFBN%`bA}O2FpbLfS2cw7nnmzZk)5&OQ!AFaS*ieR6QOyk&W*<&XD-;Vr#Q
zBZA!j=;ud6c}GX|2^UAj>#s6j{gm0&wJwbmH<Wj_thmx|r9OpI(Co^?z4-|Q5rFux
z9-df*K#zr*ls0^9rxpPS+Q&J7E)>Vv@AwT)n94L9o1k3>ePq+?+ws~b&HN-8-u7Ks
zVZ3Ee+C)uZRWj>6c4`pc_3Q|Ls3yAY3zNTq8h=lfiR%;EB>fJYiUJS}VKB=%qNa2x
zaLaj!9-tUzX>0PQMFJ@D0=*sZeQRH&??E67bnN4j{)uzIm?I?b*X=5Lpy}v8`X5M0
zb+^_Z*c_R%f9tG3C%}>Uo-=LR51Dgnm=BgVsl%!8SLiTfU3O01c-Paz*Z^($+hX)f
z7~H8%S(|AGX+GPgZKL(OJInD@g$~M_!M|Fgj;@mA98qSBQh@E2lYfFi@S$F>)TW=E
zk79|98>SpKRA&o97f1VHM+^fR29Da!UjhQc;6K;grk3zc_#Q`E8Dm+U%t(t<yys-G
z+7CG2e}h*EC&G`yrCn*$esXE0bgJ98-b&2c-Al5;2FOkQ61ix=%>Ku&!L_gtZdgw3
zo3)#@j=q`SC8hgTbYORY4vc?UaNdmYV|}8dcjTG!lF%M-XPI(yU!+;}zsAIy6Davf
z_?3gBmYgf;NJ3-Z$R2QU<OmXl&s3~*rlOEHDlhy;D^wNiVH}Pr^S}1^>yoOJ<9hZ%
zGXpH>*Z%@InGI<8-$t%JpzVojV{bYdj(?LuZ0*ckXF=}WD|tWzX8fmOaulkcZ_SRD
z-<L-HEbrh7oCm6;one`O!S|!h=kUmHyw)y2MxQRU``>&CF#W+1U<yLPztpGn%E2qS
z<kmk)N^{Er|2kyhPAi#{a5J9r9B@0P1^`R<IA~`$<h_@Rg}lBhlmsi}zE?Wx6#*oo
zb_ZZ$5|CJkDI<{f7*f6*R7jY(Z^)pbRfOZyVX!#XdHdYD&p4Od%HRrOO~|Cmi6MFW
z0_vy%=7{}NcTiWX@csDDr@<uflhu!As7SHxO{vwm)BzB8W@&C^nBCc3ip>pC+lAjk
z&EdI@f)}%cj^6tQyjN@>f1bm{@317K?0b2i$*6rbjE*B2z#?Ixe!_2`w1Qu-&_p`u
zm;cd;9G-@Bobpn};j*o*pC~{9SOB112my5!ZD7z;ZTN=A#q&_{KiIfac`5ncvAX7_
zZ#q~1Xun{n2#WlZoAi@T^y50h(3x?7+B*QD-C3CR3q$OzCES_<ICRPFJSxGKV6ncV
zrB(Uv89-Sja~J@7{oe0D6^!OEn%EibIMJ|uPt<z=WwKKNKP)3xr>p%XhY5k)?Pu)V
z1wdikdKl+H=CT?9k5RlX1@7eiy3e#T)+7MrDn~~rCcq9tTAgSlw;}gf%3kz1Os>C@
z{<skdg>9x_i9X0(9~eO5MS#Sl4={r4vn`&cs^beR;Mz}u@X*Rh{9%cb4dLhtlOD10
zAo!n2JB1aRQ--1tz{RkNr@)cdpZw0tcl2!@l#s8T7JKu>VwH_nqF&_BEv4eU^%e%c
zavKSnrsBMfH{o>QSF}MQdn!+z(&aty5y5TN?m_qHa2==HU%y<uqnNN8A;Fv+_{IGi
zLNc+MmFW5&s>-vh<aRi{JyI#y<LSSA^IVB-ha!s2q7qVL|01YsM{*E`KmxULC4C^;
z{L{Asv>|Dy8Es+buV{NWEgiqmW~Sd4*1;3u!mr8mbh>_1U1?TTNXdRh)aQ~V3vRx`
z01hRH>9X>^dQwaF-^Dm`CuBOUJ6N|&-0*456aHVMeRo(>Tk|!Fpi)IZI*5Qs69MT0
zQl$4z=tX+3N(mxWr3;~pNH3uW1SAoVBB4kL9U>w~FQJC|9n|Z+_xHZv^L*vs<Rs_p
zeP-`HGi%M7u*u8``7rV9@bEWPyK#Zg1yprJ5Jc**eJYq^@Rx=EricsZA<eO`5s$eX
z*h_;BMc@gw_wFJ)Z{}y+O!%A}D#WY5{K1)uzG<GYP(x41eC6Ha!fHNVYhK%NOce(#
z?G4EULgXgWZJGf<zq-Evohsr0!G+c1Qm(7WlJ!MBoV)3jSZ7zi#5(m>+mIs3`F*(F
z=li)%L~q9n6!R7o2#e*flW?_H9k;(`7aV%^D&P8+I#1GP|5^^am`KozJhfTwk^DDC
zArNgdRNuFY*L}wnKUE2i_R9NU@;=Ox7megNnv`0EL#dZ<4H48=e5g5g_M75PdeF&J
z9i!8X0M$DBLd;#9X!WRlWtxh36}=Kxj`Br)$qtp;qvMA%6I4a@hshVUB2xG(rC+M6
zjm##ge-W#e2d&tibc<b?@CkzJ&lD{2J_|#<q@c+|4RY%Fq43CQRhygmeh`ge+Dax0
z;;0(9n??e!xZ@rEYZ4Y;F^U{heJIFvx7YtP`iMqF_I9QoYqpAcOwnT!)}82_@dE0&
zXkt7$1rx#&k*!IYX*PYOwn`2|vDn_gzAr|d<wN7&HL8?L$l$xyVyrffIs5AS1dClm
z)OoxK$S3d-tvXjrvEr@DR=za>s2`o^^(B|rUob3j558R<Y8Bx|Lo*;-q8E4^2&pSa
zj!7aCWAKXkCpWz`+O-v`$VOFAO>cEZX7RrDrpEBp&K2HX8jDLFRi%q4UAdjy{bQ_H
zWLWDiPUMPAv8VF`xZmWrF+<p>-YmY84c5}p=lDru@md!x`Jr;QkafYXqqBA5_S$W;
z%u@PrL~2VH*FDWY2SGu+9d@>~ovP!q_xy;NVB$j&m7)i^<JO(j6O-Oq`b!gvRtoUc
z#~_vqDn~u;6mZ*1G=W|>?#$8F!%IX*hGcjYN({w4QztG2;dVT6cA5|vg5-x2bI~*r
z7*!A7`D&L{BZjPKbno&`C?be#;eDG_;R;=PM&3xc+v{ok`e8^IcL6WUlJilzKs5)l
zc=cK*SQ=A9hOC`|mID=ncM~<u`nk6+y6YOGbHBf-=lp;==gl=M7BIm_0%0Q+WdEqm
zrF-)<l{0!Q8T_peY^~v2R%Y{eT4R4u-CGKSkp4ae3+%C5uN&u`P{C-s!{-{l39Nw+
z*^NQT^M28mdJuD}q~QQZRttv|8rzh?5gA~3w$?bs`;M`@wVM4evOvh{+pbwh_$E44
zNiVwfZ1rx}c^&Ffn|Tk3Z0eHugifROWj1fEbbjHlxFML-{ux93eZ@EO!lhn6aXnNC
zG0Hbbh#Dc7F!q*yl5G~LIH7*E*JFZ>^XhQoMUZDQWTPWHq}9O!3CE!a^1ihmAWFKp
zm@hg`4RCLud<TY;0f;dGbn0K&d_?bk9w~6jQU7>*dwh9VE>`Q!r`E~q6P2|nABg6-
zWvN+hYz|BfU7T-P;7bAL)d`(_B^N-7j^%$B&w-c8&MXiEJ!EuAd*q^4*6S_wbx7GX
zN9KZNGHK&v(RzoigK(GQbjecKb65Z+cfk&w`Q&GL6o21CQ=5SoWjOv-?ZU?&oF62*
zy4F6^$&t<?>(JzQ1-lW$9>c@^1a!^#DN^;|MJ@wP$sT3#p&F$%FWCHI*G@`^n*gNe
zGPlFZfE{Q9>LXC5FX(6bPEonu42NWT$dEI(lP5i<(~j05UfFjs?fv{pV>p%*#I0Xk
zRNgNl-C|yAj}tklZX)k8UO#6GwacFzQxCdq$_q>I+nM>)uLv&foG4f0S@Y}+Y%7X(
zeBvWB{Y71G>@2L?2>W8ws~CTA;adblC8N&nL&@kvQ2Rc<L{8^&w?^$<nVY5`T~Df+
z!bJaJD^A#t!HLW4H9@yJ5iYDYjs1)MG+0en>_Sn}txQzEYhdhA#f{v@L@qAxQiFyJ
zCm!oFjPGmiPS%%Gy{`asS=>O4hVD`q@Pv+T@SOOT*^<4&OZO@(q^zgCK!51-(PG-N
zWW94?aIbwK7&{oWp>G=LQE)LeV7awm{7fw~!X{0KS^))3)_AXDsVLN1V&rl!T7my@
zXdp<@iN3_JW_&CptM#;-Z8l|kaD-n>Cb@%FH|35pXtyNKn5~J{L&!vTS9PTdR=#^{
z?2+CHu@ve$YEXn{=VTA+V<Xi%@~G@vg(Z!<pyJmi*L#%6%MQFHgtxDgxMVz2?WNkA
z3=1$7A1*M7HK8l!lUSkM4?-QbN5(Js?!O`18`yBmTb_UhQ~T}*p6GElH@&8`bWBx+
zwR-rjYsYCYP8D=A>xH_B?=YYsci;5NKaMO^f0LxUTD#15qx9~xiNhUU1ED%mAV>Sx
zx^%^Qk-%||4MuBI6D%o+N8Pm_BK$KQcz6&Ievb<qw5x4PXZ%;xqe}}sJ5}j3cyJAx
zpVlpN>1gK``e_ItY(M)fhi_wTEpVU#qs~%7rJ}txvn20N=k)31DVz)>qr3O%Xor`v
z9Bs*05B5&RuDgCChPuW2p8msyJxzbEamHw###$qgsGT#f5%E@&$I4N4-Uz-w(RgvB
zU;eCAsd9TjwI$zmPiMTe5MB}A$J;eCBf&so%EhsewOD^Fk}9|ILv<3PuO`?Rq4QK6
z?7RC^@Ul5aKqmoC{cuQ$awN=Pa@4-Y#djOv<Nfw40ObLVW0Gsj=F53DmCzVoF#l6q
zG$y0#sl8P_j7wc2!>%UNom#1FeQg@|Rj*{a<LgA<LDc%Lf!J;?fy}BWt(Pu;eylEV
zOQ9bmCbslBSt%{TSFFoP;qoKJyyGTJnvX{UE>BbSAO8*5{dA;z;PU}z+khreA8&@8
zad&9Zc-0UvoD)cP7W5V7`nGArd{ZM7g6Ofst|d-;m7p=(10BT!n9C$T*+CJ+K!u0)
zH6S*cPA8--l$maH325pyc14nv9KV^7=>6P5pQUSym3~^<y31z+rz17K{B@G*m|CXM
z6~(a6>_FXM=LaQPe30z3Jn7aX?7sE|6G`x|f40Ro7$S`}T5L<9kPX6ptoPe)X<py%
zxWdAHu^bL@Hdq-Mf?`P*#=mP6=DT{22r-J`DlJEo+O#rsxl(`2F^&oJ$O{tQSVmKR
zRv$-Kkr(Rsa*0P9YY|_KL@5vckJ|yPN*`T}XAZ^It_(-J8W)d3WulK1{zP?`$6MRR
zrwGZyQo=7@CF=HSO2G!rOeOCM`RPcyOalG*Qx55qD?gynQB0dUuWS4@XXVFIqt;Sj
zI_Q>kuOo1ff<t<ayO7#7x5lK2JbSEc_}?`&98rSR#|~e14jS^?=9KvU?C!tjw)XgX
z&U^~VKTPFk0K-cL0x$iaT*{{a(NO&RPkX(2&?gM|JpHxqLJQ&SW-+g!X)MnhVF*%Y
zpIV_z#wE0BOt4Dm;9-g`tMew8X~-s(9QW!347u;=>CwXAh}`Xw9I?8P5j-ExqvfRw
zL&#dE^(&0}?knKV^`CXL4cyHDw^sK|<LUzO;A;Sh_<MCrJV!ks+@S9~`}#%;Dg3nk
zNn>FeDY#*gc0``C7QR<6&8tJ)34dmPZO+J~$aXmlHosTk`Z?!g)IR%L(I*J1*Om={
zbNoDRNx?P(2od<7{_$HPAf)ns1<93x$PHMJ9thw&btl8Jic$@6B}_u*$_Fm`BlnHb
z^p<UjDOJk7E&Z?O>uXJb8XKA0q<`kMCw*R4`FlQLk&;+x$Boz_QDl->x_NU6S>GFF
zH9=P*PrO=7x#S1=)4H+Ym~<b0tT{!?>n>6P6#p~FT6PV6H?^@<lew3|NX}_KSZayw
zYzFbtVb{rO^LCnWt~l#zW!jY$FJ%R*Q0K|w_^c6SmBy!fq0-Z-MwIF(rzc21(_vfY
z`(DnQLh8nlds9(FJs^^C!dKMkneEa&eRh{*l51}oAwm|)A3d&zxZHBMIeY8#<O@C4
zWa5vG4#_3rrgtf>7-a3mE(0g@h2JBiu*R~hPXz<PAn#b<9I2`2n$*b)o-3^GQL34P
zGPn<c@KALc6LW{P#UPOiPwmB$vX1I>iK+pcEr`<R?HBd(;fDQ74zD@~&Pw2_C5bcP
zwrmVBP-czKJ*`F?NqlQ+6nLsMcqy-K2Sf#zgxO@O_LlBXkM6&!%}mBDCBe+0z9z{c
z3@gYOC|m~>MB>QoVtwTWo~gD&L&FuC()z&cis^g_{=E73)Tr(}Z)7y9WsIRM;fR6B
zU56nE!x^k9C&Br+*Q29l@p)G&Zh5MjkQ0>i0oCu|A1HxC2cO{@yFS>=`{61Iq!3{E
z>Nz+si7x=z5CNTjOz6Jonu?wAhavtN&d>cNoV&I0KgRBv9OW!6YQS0-f+5#5$!Mvr
zhI<(Hay_Lku}@I6^*Jqzwk$4oxJ7rhGIPTF7OYiBdO%Lpd&C}fBBaz9RH&Yfd96HH
zJV)f@sZ1CJ&wZv=m#hbp?6yv=&Xb|laM>EDo(5k*al-oTU$o%tl$&<jHt4}>vrSc4
z%3o%O?>ON;d?dkak3?-g^feT#all%3y1Yuk6KdQqw9vGmJkhW+`lNF6><+c~iOToR
zXHK5cbLWA6Jy7Pva4waRHd2rOGN)2M!~8tEt!f1Bl`gGGwwtr&3Sw})&0X00bDW90
zPLbs&U%U?{_P`7Bi;*uu9MB-tga(gI4buLNsiR|hQH&9pN4>!&SGCza_5E^1`!8ln
z7e}hIWAifB!Y(qXbFXpVjcB<9gHp8_8LCT$M(tZj^^U+WE)jxpuZFleqUezvJEX{c
zR4It7I*>@vCtV0>{wTdJi0D3D6(@CcRyCMsK)XuvK|BMbFC8Q~LV#qf`0VHxR;TLx
z&g{{w^IWG3Yb#8Q2T3~Twj@TPWN&6FZxS!YWqjdsy7NiM8vQai8E?qmd}97GEu!pu
zRLzRnyJt+e>1*Tgc>t0GP8^_`?=*<_{p}j;n}?RV1KnOPfka>$2Qm(Q_fUe9@kYPC
zWLO+@M=O<oj!N5+HIUp!Z`q+e__*cWD)RFW79OSo>bw<QDa&R_P>9IFmlR<E*8Cvx
z$(L@LMplmL_AWQFWY8Jr_-Pao*t@!WQxB4A(YMw7)^&GH=Tq=rx~(iUT>~vJN^5aZ
z`46~MQx+BVa+PQJOgAjtxj~mi6YkNVax11VNM3R58PCur`RI&}c}S9c9Gncn8)91}
z!n;H;57S6-(6z(mLF(OivcuMy^CdtX-(Sb{ygwLU=gp|PU#;q{)joa+Q|>f(wZ`>i
z{8A2CQwhu9s^h|Qe6hyT6V|@l9umt^?N^O9Vr%>zVnmwO*}7YNy<_Zva=eyR(CNv(
z)TXsT^bQ63a!JpAsW^~RvR#I_b+J=jQX$#e3ai=jsu-le?!}n%#PmcRdGgn6EfI|R
z_}nm+Q4k!JWSSc_V?A0kJ}H7-I6xG4Ozb0qoN92#?fgrZ_SB*21}Nv{JNnLPKB=#c
ztomNI`<BR-MR=zR-Li048D7(MmYOXH%{jc7)h6V;dkZA#P3{0@I1Imd8i;zO>&=p6
zC3G+bUR6OJcz?7Fd+wXHvkLN&cuSUHolJtfb?%}P-xOk(O;%E(l=7pAro<J=s5cP-
zCd$&-N4Ra|AS*dLDZJ6*u@o;C>$=-^qM43+acAi*Re=?;ENz=_&`?4t-k5BY27ZGF
zboF>NJhEAW-~4OO%EF(vYeX*)wZ07JavC1@;nh;FOD+XmejpKCF%x8LyNUMM>-fRF
z3dim>#ZLRthkWv?fRm*e@#zlVULZT)TTGGJf}2%iXIf1*Av8IiYszV@+@ZV^+7S2C
zx&SD*)R=F6O&YUwyL;;6!#3LqbkJkto1ENT<|E$;4_>+|Vq+8*l3a06(=3bA#|2`-
zo{erYU#y2P(giuN&m*+HL#k^Bji9%Cqh@#}bFj2S>1D?;2G7aq_XAa56XV)Ss1RR6
z{Ex<CpM2LfzF@SuN!28nGQDYM^Wr!)=n>-CdSX;`9jz%~0nwn-EpqnrJgeWnK(^N|
z6u`>nzYNp}Pu&a#(#{5^i2bi*Hs5ri-?155rgZ6m02JWRp+n=^M>Yi50+s8eM$!d0
zjnJYAp0<277Ec52z8+^TdYBPO*-L8#fAWE`C_`WBwmOts;J~O<3opY<o|?3@U^&t;
zes5?(hkD5|%+VR<n@2WWsbzVinaWX5<wfsE>2Sf)RcoiF#y~g|BC1%(Y{Q=KbWmM!
z?5p*KdKRo^z98~5NgIgg{cQUP$nJvX$i!}Ficrng{toraMwKpd<77HS32(foW6kTP
zbnhglh=Pa9cj)9{&#JGiwTtc7{z50vU?el|I@+gC{@|p8ZZEh~K=>e#-puFZ^dxda
z{z7)}^o;Dpm#JS+0AnEcL}xxT6Iy2Odk=H=0`lY%JMyBzr&aT-+ugKAlHeXEDZv54
z-Jy?3!;ia3(@pVbioUT&ylxmNxGs2tVIyB~IqkrOeIqo1TRlM8BT}@u5w~OC-0Kwr
zcDJPC4sYk=5`G_Tb4!c5Hwl47RbJ+AM{MDEyQq~m=)>t~T=>v^-CWTHg3?r!awOQ7
zIg95#qEWNGfa4%$bIlHRJoar^-jMk6&+<vB0L%LNJwhS$`~5Eo8zM~w2iLEiNL=1%
z1d`a2+v6F&PO@H+zY!4vs~B$dN`i%`^b6V>$xlm!IkRJRXGXrItA`t_)q0AszwMF>
z#jul{SZD^?gdkDlewOzQ<csk2JMo7y)dl;;w1Sc^4jQD&%y<SBxegE|cp7Ja2(K%q
z(H@PrQlsqKyG8f#L0Z3Jr4G2z<OsET%uR$y>@_<U@fZ;z%ta;k4(yf7a{;ODT*z6!
zS!J)WIK^4#sJUCD2EzF$&IH~@61>`-b;lwyY9qKs@XzZ2(#wY8$o{<Eu(E2ll(f$f
z-npTK#`*g3LhotMx;JU`ckf5hN^cBaX^zTGtxW2OvBJjiU-h1#=c!zZOc1W(tf~O1
zqq|nx?2~m<0KRc7XULaoqiWu|ym>ol`|DkG@^xK7GT|=HnsJUr%o9sFq}yN}ZPu>^
zL!NCMz;QM+$G!?6QwhjAl{7n(oOi(sUgh!^lvLg}CZ$RJTqWmW4|xEDY5wYM-EHKE
z>Q`8GPHIl&eR%D>Fi{0R(h!Fyl25n%1t#aDpep?3uC!2>-9YltL<Cc6u4B&QYMwAm
zT3$zj-HIkts_}gm7d6G)@WUHj<AE;Hl8S{Jy_~2dQ$ChAWj>AvIunY}a7SP8jR?d&
zP4Onp6N=+;N3sd|CKG$?TWVx|CR0OTWYSal!vLW(r6Ejz;e5Zq&)}{sVP5tH|I_RH
zFM}_<GiV;^N!LI0X4QWYBg~-gscR@cHGqG6X6bB6ER#6cz%2vuynt+^xYX;C-tpIr
z0;eMANb%#?J1OO<#MCbqs*iF&N^MA2YI*C>^jy5Od4=qemis@}X^Z#nlX)&5nUSsJ
z>v+K5hnZMPH9^#*5&9y1WkO_VkwKx7GX0I@%JYIhzz$A!gNd9rT3DnOPVuIgngb&_
zB)_F+kUGM;*e3VDOz5#Rr=I|WAqz5cMs!8{ISOyGOi9n6KyQCZvG<CsODSDAX)3C{
zgR6!p5*90?^O02(U&qJqP?ycCYO9B8rS{6>weno(vjM)kh#O7x+|{)aVKCZu5c2I4
z+F<8i*oHdZ^4zejlYlX#tg=v_&n1$+L&p?i-o%7cC0kGCW7WKzMARQsSl4HS1P49y
zwow_NkI0hY&EnELGiX*gM+^Z-cd{1A%D6SvD?H<UWGdO&$)K<iGOpqe6tQas9q}BC
z`!3M@#KT6qFd531KgE17xwuurJw%tRq42y7i@D{P5I#gqm9iIJ@bZy#S;u&-aPgf3
zTM4T)n(~-01z%7X?S%$G@Ab>dyI!QXHijoo;%`ialst5)ZiuyB3gn&M-eehGbC+1?
zouGK;#^e>pK8X?)rv$l9-Nd4{jWv0TRdnfU-dyc6QbOKRq#d4EHI3K*38Ds1&V=6H
ziaHk{I6n?NJ0-I@Jg|Gl07;Ii#O9q;#UIQHc=QWI#R`r}(l*ak^npMLfNarz$DgDe
zj*ShDNYO!aA>!E{?If8p$BXmgzGz=|{?UyOyB)ZGIV0EPfI|CU*i)4+1pTB{Svedc
z<@*c9b$$;<aKJzLWi@X#WVj6vG4wPquKWeGjr3uppO8L(XD(TLTm>*ZYMij_>xi?+
z5mTp^ZXr5G>IOae=T~Pefxx@2mXqRHB6QoW;;(+kvDl_)rvs^FjcnR>x?`?4>%GIb
zg$|O-A3oXgwj3=tg;ND`G|IX(yczEVaa(NX8yde`DEgi}6iBpAIjIkdbg3~bEqyod
z-^JUNe68Mxr$gN71Gd)<yyj$n)J^uJ*U4;quO1O(1kqT)1)YuouK74D(0%94(Hji8
zv4Ecf7&1he;+#9*&#qH{{8))vvZ-_H+iElj{+X*|NTL@-n^SJ-qAR^p%G*AGze;m-
z@tt(^W%Te!NkE2-o6G}|rfcvKr#+@+UhW;Dvfwc%A3g3Ni~?fegzbLkheK4w=}w{4
zNkf0osaN*Vl%3R3Lw_Lt*0@ISVa-PH+2yn2g#G6I=HSye`yckRHvIc1XZFga0=JoD
zcO0-`W#`bV1M>2<6F`Hauc_(HqQx}qu%pj}Q}P$mU8yh0&J9T6`?w@Sf@%57UJR>i
zet%RJ!dU+B#;E;;=J_KaU3M=+hP8(R=8r!jwF+zG9O=O*d>B;zkz5ft|3iwj-FyOb
zcAzm6(F$xpKW(OQK9qbP{ZsqnU>s)Nu^XZTNF7RlZZHTu$EX42|9KSQHDa~C65Q}P
z@ABL7@fmWM9QQq4#}a0x2Ho*{@3gW8T{$gfp7vG;$K8IppcHgz<~-z{MVBe5jRPUK
za?`w@Do;U)(SfaOqok+Qk$u}?&&&?lG_z%7ubg4Fj@WfNn@RQX)mnYfU~efc(Q-#m
ziF=7zn=yRloe-h4r}M{$hif#{o7;|eRh&%eLI<bb7ELUg@<Rg+bE6Q9*X_}Jx(U)C
z9;miYAy?@37Sp4_nd#IYH-0BL2r2_-;dAWe(*cW9F-`CdywS|3rwf46ERxjh194>6
z1CMWD3hL+IaL-*wAEfZ}EV&m-)f7`~1-&7hxTXB2$*B%{!;>=NS=#xjbdQQl4zCZ%
zm|<GKl;!1iplGkkwY3GejSoB63lubGybM(axr;j7$kKTY*11LDl&wA#5rj}g8gXQ+
z8y%q>JN5XGwd$p2Q|fyAqDA4gG0d!kDuRQaUS#|bC#<Ee!+5@H35x%o(tAw$l3mtv
zf#v%>uT@<WnzR(?z3cj9Ph;dwsFaa+4`y8OtgKPmy5T>levk8I)iD_V-NAX*pl7(|
z_-l~*QF{73tGqxBrxJa$&@M-kMO%?lqOu;;-4UUDMS40(lR6UhAu%)O<&76MZ<hPJ
zsUhj<x2qFykPc$z&`LGUDJ_yLWsna-EzuQSe26GaRn_gJ8Tp=c;~JjAg$!pdWL==}
zgWxD@b4e+>s-D0R!+2U${H3H(0ncupxA|>T&~)Cnx}(%1dUPtnT0)G`ni^NC$fWQr
z!hcZze&&Twn8?syVPSumU>20VODWn`CMYm@SVk}Zjea$Ft@5^#m9-Ch4cTGNJAGv*
zbJ(5^;rJ?lx?KwJtP`KqKTVspRCM{bh-kdIZ%slx!KL&Ov^SLCU6ZBxR<<BNtNl^c
z;AVx&p_K^X<6gUKTab;y@kaf@0#;4K?mg0;el9wm>-zP~^OSco<rDYXQ#2gVTE?Lu
zs_p83U^~j&1U%XCpZ{V((+LSY#!5fawG16%#R^pHUZ2Y=@szV!0OD7?wbXmk(4NLX
z$-!IhK>S+kPtzthMDU3(68@o_nPY8oTt9uGad`Otzy!BgIQ$23N9znlTObuDuQQ|a
zgxl)^alaCOp^g6<z`Ab}SXUCOvA8i&U+-0O?rGE)ZgXsZ6qSp)o;?U14VAT{P-)+K
z53S!iP-P+3{!H>Ck*5B*?nKYMU{{RYX76uEwb&SLdE-vxW>y||GU|n92k(HqE$g_U
zPu-hxcT)qqP+J~-+%Hr11_`V6Zo7n&_+QV`shrSfb@{y{Hs8h^8=G}X7xV-(#7go6
z+QjX14V??c?juy`$SP}nmVG(vvfYPTG=oC=Ea~d}0fqU-7d9%F?~zUN-gm+~yc|(e
zHw_u*cQUAN<h;dWykRhwKQtB)d^95VvR7$i;!&B^^o3uD#~bqnK<>G}{pFq(_-)Bb
zNc`5{3L=2&g;5((#Va<#o+~r{0?KI@jqb*O&|<9yq(&s(?w2zG+Z!OI^Cx}(Gbg*j
za=LMIrv3H#x%FF#<d+|oHXpg)O|*a3BqK=@3g<!@yCjr+lR56)7~n?0nm`2`T|Q=l
zjOecfh`zgadBj8(SI$%-RRJSDX9WWi3FnM)Ku4z-kdxg61QK2&__lkth0Uw1nLNwS
zbrEg?<n}$F7@FA&kZ#p@I-~#jgZ<<iLm&0u6edM!z!l8)MD#Hu&MXvejhTHat+#q-
znW2Zw*vd5o`}y_SVPT9XreTJXih8)rHP$#`Wxwt&<u-TM{)D`5I<Ip8le4S%aoTe8
zJ@H3o{)8HUEs`oB$K;^f(i}p4mie1i1^DhYc38p8gi)B8o>@C>-<n3q=9i#L$o?)@
zoIpZ&lOlE86m!>F$TZKL*$$Q?1aVjyu#*A<mD)b;jem0IT$O;Wlbh)yCP4^!8PL-u
zbLcubmS`3J<8}i{`ol4^O~{7YgoHn7A-@L`HiqHLgsCgGs`*%6hQRKO{3cnti_P_F
zPQc;t<zcer)!6E9^ek+yeJz1R2P{Sz!5<(~5&;5Ac#R^9fbLJK=&x)$0GYS+W%Y`)
zn73kT6qbMvDt>-E5cDS_@OG61Pj>Wq!L}(<xPfXqWz_BF&KEzqvjA*jTx-!CKRmDV
zo#vb)M_{GKjo3065?M3DMQ*H=w`10H@d0`J^U8HoWaQfnILoJ{H6yrXKgKv@e?ODw
zJge}FU&YFe*b|3IK$s{3**50)eMa}pzzU&j5GK%E0M@4GXN)45$!P0Fx^O<CW6)YP
zH~LI+ed_!$?Rbo}TRoHl)IzP-WF#F&K4EgZGwd$wF!f^CT<qp0GV^&56-@<Ak*%j@
zR(vP<Vo(SZzc~KGu9tu#LjwyeYN+2<YubCY1JqQEqWup58$+I5c*r6$Ozsu(b8G_C
z(YMb3xdVe5#WM`B{cZ|zi@aD8eP9O6(}gXt-KHgx{Qk*99NbMcGJZgd)xsA&#tc2D
zAb&PK#g*E3{AA>Jyv${`MR5FCmJt&lnM>cT0Av$RKU`bCJjHXBc@A)}e?tbh-LMC(
zeV*r{b)VzoXhC37cDmqTDQ4?`T~hI+ovWH2&}lQ||DGEGK|eZ>Fg=~&F{1k$9XJ<I
zl_z6n68xPP|BK8sgJC*oFt8H^bPKC&x)cBl_~#y68wj+glKYR3Ujua+9eoP$9Ukb}
znj2y}#;xiY_KFIzMUFlkv^H9({+1O7_TiUhuv-Nq=g@~EE5TI>Ql1utrzp2GEbzhd
zE5E`X^9Lt9eg}tVdt-BP;9JPmtIl$F&|T(_Ei##~ZiS_pA|58DJh{q+VULMzWAG7E
zA8l$R+V9@Cqb<kIs5#WJq|J(vmfjzXxGM}Axkjb2(O<Ai@$bh!f6mEzsQ*AT*(<f%
z{@hHldOAHGot|#@I$*B1ZNNCG+<Vg#=Idh}ce??|<>`;$qcHSEJ-w!@9`gdh?FR~o
z6DOME^l^8M`}@MG+bUT3!0#&Nj}|<6%&l#?nL?wpfrw6~;BQSM)f1!BJG5d}Ri8fr
zAD$?SgP+?Uv&0p&%{P4=<1xS3t8e@jS|!>l-?xYqM?&J%iW@MzZ#p!Y4<)Qunt<}C
zuxlW2*l(pl3}ge1?BBh`*}gI-Yjm^wF?#*mrFdM?`^*nR{7&l+==WpXUcB=KnGY)B
z$=Gt^oC(z1*Wt=0W|~M|Llgx|Fc4%A-m**+sa?kS%J~`!QX0!ra=o>s5f~_dXh=LC
zSubI3*mHqu=GVFQp`5=xq(Vr(F**3~BQ27d{HnM!t4-G9o;8+Zx8(2hPV@esIJj<?
zIIev0mkkH=p!Yx*O@(=d=&0XuGN~_#xV-qTDR0k~@X$6eMG2|0(L0^ODRdB+Fx~wg
z3triE8wQ``v0iS+(6ocK27lys9*`&4PP{L_2G0d;*yq8Iv^(62<a3Rr&}_Uo#D0`Y
zG&i9}Jb=L2IYaR;p2skc`O2$(xu(Pou;Fv?e1<!#PrND_t*BF4C4mk>UjD-_RW&2R
zk%BN-M3hzDMT%Ro%3kk+hx-~aaI#mBp0Oy~R%e@!@cGn{+4dPWQ{tY$uHLQ%C#_z-
z29TkiPPzZ6HdQXHeb_x{+@f}9*jcbsmm1GmOz0kKna8By@UB-vZOjM%NjcD7r~_fG
z#jCfWs)f}I^)1HgLdEfEjivfCDW8nEmK<SySFRdgLpl=+@4Gqht#p}E4_dg$FIf%E
zGGES>Arz{MT`5_<Q}8%mjL2YAqnp>6N1IOyeM<P2VDyo|<@te||Hk!fF%a~AN30H8
zcAZr`^&0Oj$XB}JaYOA(*$&U2_b3m1%MqgG(;*^5Kdo#lfi0>&PpYt?BI8l++nbCQ
zTIA<bl)`ZuX}l56FY^fD%~6u9WH+D-lXNk)vvyigq;ygsak0=Jd-XQ|B!C6Xax8e$
zdW54hIpt#GZ4bTeUGJQB?TM7trZFpf(|YK`yVs*HJCrhlPPNw#x1g{-0N?o}l&^5}
z)e_Q>MX0IlSy*|-q-$`h-e}FPuXASl((>}xTi8d}?VyF)Pctf<bW*zP^k>U!%LKn$
zJV*p~`+vUQ?>vZ&dbj2$4Yia4yj!z$A@oH+ozDG(o^<1|yE`1VP%8<3hJi%;2gLpI
zdc?eS+_}s3G;%15Zn<QAx*F-b;{|dseh0pRq-@)o6^QS$=%7!Kf~3|Oh;vn;$N|w%
zj?-Z=8TkcbEq*6-c2+|bO(jcmR}>+4L)(z_q-&+Qe&Ov(px|=I#ezy;7c+2qCHo#o
zzJ_svk<J&`tU@P>*Qx<x*78NKG~cMoi;0@0>ei(^v0ST@RUVE7r7NA;cpYUt^~s~&
zK`q9#s$6JiVuxr2Nr1!olkh7t7j0+Oo@!O}Aubv?MmScCBzxZO;Rr^!T>@JyTa;T&
zgxNQS>qc&QH<;2ZE#Hz{q};8=*h`C*uoA%&JC-8zX3aAz6V2|5&y*G2{zjNrX?Z|D
zs<@b6_l&{x$I4e>JTihn!4H=cN!oPQ<b4o*kU9ow3+Kco130|I{G=;4E*#8<gU*%n
z%H;d<-2BqcEiQeRm`6coLX1Z4O%~PhJYQ($C-Z=pdWTi}f|S}-U57n0m+X8#r%}ai
z+D(I-eT_oa(AX7%n4_TL-5F3lnLe`MMc5vr0Nb?x1>J<b+VON7D;%Ic@fW%BG)Z<o
z$mSfN1K#UO^YP~HhVJLW*}Hdcs^4_T;gFSPVMJYAxRy*WK3iF?Ca$UK`OsFNhz(nL
z%?aw*a$1sRFY}FUgto74B3f@0zC7V5aZ&0Cy)vKq!+^M%+oIa}p!yCg0v^-RNak4s
zLlT#PyrJcLdi6f#`6pMVdCez4X@ku7)XhIuRDOXe$mqjGIi#pH)h^8XC-9A3nXgRO
z;^y$lkJiBDosXMSj*>WZaLjA@I;=2-XX{m4>%xQ|zxFB<_QHb5e`F1A&el}k8c~o<
zTUs9DHw@)T5vTk?-EE-qJ*9N+;um+SxTLC)cn5Mo|K%4RFEy|El!@jSO2QQI(YeRe
zR(L|yAJRrgXZ^TE&?M-e2P#Ko_fgj`=KvmTZMQ0oG|xRy^ndZZs`@R^_~HCK|1VPt
zNPe%4g+lsMd;hl=WlEeYW^dDCwEir#;O-oZB>y=AhJl=Y>~E&MFdE#>Wfmg!v<q-V
z+>>OnMS$=2KL_#j{C}b;!vcqYqs~B|4A0+oe6Gj((;fP4=5OaUM0IBr<bePg(D%E_
zY;*Cy{pQ>~T!tXtyUTYJ4>6MmkBG)RkLiKoXWflP^bZyG85%~PNi<YG(Z+PN7Xvyn
zZB@dPp{rkCnIC@>oW8l^>DdE~<RUoG*Jwm~Y<=hW-sMkQUa23)eRK<O;(kfcN_zG;
zb2g}WoSl%GG<cz<z<Veo76Cf3^@KkJ`kt<u;~u|B?qG+Jhv`S$O!Dt#HcVuZ<{6WT
zt|Q;%+YPY<aX34s4`zl|tMrNJ{352EbyZ>>#S=3y08XqAQp#=UE^2aM?8DK=IMash
z@^)(gj;)$KJTY<-p#JBLzF-1!=6PExxta2sOL=#zQ?h^r>hyVANlxFU%9Xk|@%&$p
z%-wqj0@h#e1OY0O&|Zr!O@+UzAn^E_Ai<mugz-LCaVAvPbAE`=!RuA4(6edJBebXY
zlri6G;ND!zR*u>6=A29N{VwuGL5XdDaG31Ng?b}+fPkETSz`wWSKa$-{LspIg%UnR
zg&66VHE-lxo8K|z`A%r<C)pNmb>dcTcCo|(NG((I+dyg+w$8f@<W;$v13qKbtrM}s
z%42xf`WC373qdrZ#?ZPL&gbeUkML|p{I4mo6blu-VZ8clQo!HB##|uT;Yk+&3{hT9
zViU((ic2Uo$C}}MMf~#cdq7~e=gS(L+D1xoQhG``rB{l{BUkLrPqYV#U+a`TwhJpy
z<!~k!Prfen^=4MFKDC{yvBJH8Yl)z$$GR_;DI)AjL-tBzLCX_?$?J_mc@xb#UDf4n
ziH>|m+wptIZ=)?~jRSS997BS!xO76m&Q)_Y!V1oyWG&WvbYUlIFTC8!;R#B6@_G!w
zDe7sQFP)54)eqW}?UXoQ9Onf$98u#zkP7{g_>#q^F8xkHEYhnF>|6Y1cLq$Li9+#H
z<=qsPlzFZwMf${CM+Nuw)Pift!x3Q@#WJH*jXK>ADY_LeB&EEF+*3_=(#3@oo?h*B
z6XV+CV&OI#9V{=ufdmb$spyaxPS|z4Y*g%}R9_n-xFSTf#`bL}<o&bs*yb+F73~AY
zaNDX{kyN*LLA;0O3_V~|{pTZMxTP-cKR0<Svp`!+c_WZYeWA=|2J9`~D`zSoT52q)
zU5_H7P)Sd1r0&J!Q+L0mI({MV*zPX0_!wrN;CLg~7%bo=2+4*m{CH;s@l8`Hb9Yo2
zk@kGHi}Gz@?Es4KGEv$UI3US89hjP9?%HcS!PKf~%$x#3>+A!q@M-AeTt|G6RV<FA
z7%r*Q@xAL#!r(x1?qFxi1OAT+!6z%M(NiQtDbhSOapmnM4AgehxZY1Q;^;0E=v0-p
zl=Xg1QQ4*w`%{3>z$RzYnP4v=jt?4f*Q3ojFF(*Onhz}_*c2^F7R{7exl8FJbZq~=
z2UMuptXt2i@0Pc{eTgMOXUj1<D8IRmIVWiHM3XzeEpFqRmGi!Lpo`sSuDtG+O=q~!
zsXmN&uJ}yueEMDWbVk<`U+L5(58u@^U|%eMy7EX_NMFPhAC{x<QfGQk9(A*FZF7h(
zFb)vkFCdSleRZz>^sFCKNdJ3T1F4Y%8r`7vulJ5V(h95#OkBzS>Pp0}v24&DRSU+%
zzFJ^EAW$NA179#aLcUR)v?_mj;1ji5@8<LsF&hZ~ieRV-GI?ItA`EvL&0ILO(s@pU
z6292}uz&1O0j|I8Xw)VdLw#bkj-Yr|6Nr_5b)Sm;fL?K)+`}@6%5~Q{LDq^a>(N9X
zK~8igDxs^qok^Ja=yUaj&Jk-Thl(0zB|eHIc*vP(jM8|gqhpNIM|^sBwdH)258r(Q
z7@|CXnxdrKLr9N!D3K3zd)>IUcR~>HiNILgwFtGd<_yuFTEAcT)uZVeejGiWZysn;
z#3K0pgY#HYYW|DIPyZ#YWWHiq){c#PNJTzp_qCtNSMm>A`R}jaQ#`s}5_EZPl7pcx
zaA;?!I(6>j8G89xTo7IC+=Co@RoB8BfTyqK6+DM;d2@GTp@<QPe3-DHUZ*rEHRSu$
z0A46f)iI65x9sfDXQdOs`rM4k;)sk5_~}bf@Sy4Ja07=qZ{go^-%NhkdrV=#eFAfG
z4-Z>@)W+!Ffx|J-U99Xy)b--Br(uwUA(&pZXUEi7?6#FcPV~w>A`Uv7*x`iq?U$yL
z=;BfD;*xT@?^aJ<qe$pphzMmw2|DD8J*_@O@1VqVW1NyV>A5InO>H9Rc`|N%n&Xz5
zWDq7~>-Tu&Jg2)+aRZv3HE%GPegi?9*V_!g+54z(PsLOHjTl=4O3s<J%d!4=GvgH`
zj`8sm4qUpt#bFzUL3FnrgAohVXJxuk3l(fA{{iRvDW|qgyuM1Q?(`BKx%?}9ou|SJ
z^dNAnenvF0$tEg}(*p>BvVmjOdx`}RYH$Xq`|o%mkd0$|>h(#kk_gIpUNH4Tx2g_d
zb1`GK>tG_rz~M<diEhP47a}+wg9e2hgDj9&gE47j@TPyew5wz%D4?(Ov?bpPDAI_}
z**~P88+TOm{_a3DShl^SE8@$lQwn|PNdGi(FKwhLhW^D)-HSTs8Yeq?2--wAoBT^+
z-Lnf$y&D#H#tq{+Ylx-xb$i4Jt}-Y&R|=KHQx%rA5q`?xqsu4-JVS<~DonaVo4e0+
zo;H?VoHA0l8}F;T=^ee;n9hAy<4l-7rRzha#(jf~vgl3g{O>9Ewf=2o#dcWts7(~(
zZYvr5vpeT!Z)ILRqDwxS-$rwW2y;a7rH46l&;>l!MUU$!YI;DUkn%Y8?)=0TwATz|
zX{1_)Q_kS~4ml7Oy)p(-)wO5v3)T;k{b9C^9v$JtZW*7-W%TF0uvZvLYXUi#{QqlB
z2F5t|?L(OxLn&4A$I<CAV@Z$ija%wV0Lge&rzs%3NeU$VZxtEZNTA48mh^Wz0w^5q
z&Y5HU=@LFd#!YDH5D&FPNEAhn460Cu-pTXMXdsB;yHZ+p-1v4!sivQ3`Ssw)b3k9T
zzXL~mBiR%+BqPD@>&WwpLQHLyuCiVUDL2nq!%03V8pKJ&+vq_5L{F4DAGWdetLWnJ
z$yBTz79YbE9+SQip^GXZ6<m{Xxd($@{e(Y1cK52e{9wUXnHfcUc|ygDc;7$70$>-q
z@hcexgfDl>lNTp)q@7?)1o|?D-S|>VAHjG|<Zl;L5^($$-~aUPREIFR#80#oeJLsK
z9mNWJc`mWNl;-`;UG~niDPr*>d*H%1D@B$exl1m}fFVliP_lcc(0&?c4YsW19|I~c
zrk=#7`Ijxsn-+S)mao>ricJ*)LB*eqxN%A_(tdQP6HtCFoej(t<t@`P(M)hd=P;&X
zZ6}UXi^?b|f$|}5-9dy~O9zVsI_h$vOsH6H<ufb+lG|Cj^?4y)RdRh#ShmPSLXM+(
zLK2BYqdbO?dhG!Dv7Ux-0T)ucyC?wNA8Dk~FHLW{tHqjc%!_lm@rsXiu?S<my%1wI
zKuBY8=;8T?=la*6M={dwa&5+sWXf7q%#zo6ZUjA2$78zM7jMJX7S}R$(I-ha--qa~
z4&~)b7hdWjf>!*ELJ=v@<;FMq{Nb%R4YXHEbr=ek!OnMGkl%o6hlN*FAYseQVw?q6
zQ$r(T)%La9Uoa4dP!HW{5H?JlGQx(XEFFd4R;^Ot9Irv>5F<<JG{RG;-AnkX82h;1
z8y2)!4ClqMbGbzwn)PTd-MiF=Fsf$uU5OoN4(bD?YLQ2swtX8E>V>1>uvjav!6sj_
zQr%ba_$I~#Xdm3a&^xfTg2wRY?jG=8<DAC)$TTxgqZi<hem6_2PB1ky)~x*c9XHyw
zp{+M>y8VfJz>vVWN5Ztmw~<m`4a&<#$kq1ssSd>tTd!f-tLja`L5CF(B8t9sx6e`k
z-oNazPTe-}Rs~C6d2K++=W~2s%`1MM;O>Jn1qy@r+CL_W2dJCobETtO&V+R1!6zOo
zAEd8C9%F6V&r?A_1oLYh$s(Dgwp4Tt*GJjYOzp8Xz*lVVONH&Ln(vQ2>5(FE+Tvz<
zg51wt-hTo*wK*^Lu0JM|rA&oL0Y^E&u1URsBwcqsyJDK3y1pk#Q(^?pKSFJ=%JuJw
z5eD42U+7rrQTk<I^v>CRMt`|hl1cI<CZp}RV>Wh4Zw&~VT3#^AT{)7NEG~^Y=N)S0
z2~g4%Wh%^=VyHvNo;9Bfxz^}~i!=BZ!B#{W+q_uSbe0h9`06szFZ$9_LxvyPxA3Kl
z@aUSv&Zli*bmdtk;}9nD!p};A8cVD+pex7Ccj$V3D2e9!t#l480}Tt%>IZ#7gO1FB
z@s!x^=5_6mk$2D$It88LJmQ;OP@4&R(>SX(=4m0KA$!&vHym}0F*!$zkhq%S;x83>
zrpbr&vJvV-9r60ITc-9j_57E9aeeN*Bt0$sfpGr;7vH&=2opH^Gr#Ah&e0E$!c3GL
zVYmIARD~Sa1T7&BtmMRX%Vazdxeo21kclgJl;b<XsP3G4;~E>cvBW-q=iXsUR?&#+
z$Y5s;{2N}Hj6+&$uGTilQG7h%6Iy<mV(QD+)4jr-Rzd@zH(tPGLU+NJiGR*ZwulD;
z<id+SDT`6qXwV>KeDd|+#Zir~t(5oT&!g|>i@P&{DJ?`^1@M)P`(K+5A4*i|n!km?
z;*FZo*L|kqIzLU&)#d3>y|nQqlI?rbA-(8f$;TDJ$j9V_p5sB2a<7=mmoM!t(IpyX
z4YtPo*m+8Im54FdMMCiYPiDqh2QJrBNF2yWyoO0^=O4jh#QdbdQap)Llr>ugM-4_r
zP0p$8bI}s_YCZCHGX@{B$faWN_EmWJvUv$f#qj;G8TJzIMJ+mtEwwcL!3eS#Q4ueZ
zk6l4=GAY^tNYdt_sQMnfT+9kDl(}ZSjHm+xT`6<-GUwcZybV%{JnvAk8h|yH59VcJ
z+Ykp|41T9S(zhDfXLIfb{eo!(FhCovko((i1LiHFMMakLQP<RXD0oI_0<Y<_WhpCQ
z16Z1a9xuK80t<*>nDC1fNrZ6E4hgLuNa5VCaiL}&jUNB(FX=%_>uqnE0Y+7mx!t=3
zH2&Jgi+*~lpI04dZa7g9!7i#trQQ7diHhb)*?$N3z~0D=$HxMZvYBPU{aGufLz2Az
z_jLVZ@BEV~0HXf$s_mb(w|~+@zsF*M4I?5s7h(OAKKOZu-$m*_*Zr@|#n0gE%I}TK
zwjIMe=9%lbic7i*C?33i(`1D4oAO*-x1L2ew`QMr4B;o8@rlbL(;g)WO13lekx&L%
za$rMKOq{|C8L9iL|A2$P9~h{n=e<jUhXA^OTnowrR_PC*>qA+SFK?ggd$82ttwRZ*
zMEon6IUa=9E+M|=3Wq2Q87he84`Jwc8YEQ|sSx!^3RvjOuzNmSEQ4-%+-Pnl&bY8E
z&7>3&Q*);m?Ch4MB`?Z?Zu}K-{u$Jckz}69)U?@j0)LnEJ0vC{t`XwKjAy$ETo33s
z{>SzE&BuHo$&2$^wj+$+S?-kpO3J@0)PHA^EpDL465^?xtA%~nC4HH$n?evks~N@G
zk_RP<X-0(6jz<6S{H92S12lZve`w9!B;oWfQsJv4P6%h($`IxU5a$CT2Y(IJ0jcn@
zkNL22vMFxbu7CH@INmUjTLOv^W&$>&GG!heshI$B(!hHRqqy|j8>+Fwh7$jO7|S07
ztB{^^<L`~(Pul!X`t4`3;jg>a9{-hT`=!$GdjS8J7H5zB|FZM{w@0@tdXOmd$5MNq
z&-32Ryr7;n(x$^s<?&=Nwy^WFNVPL7AP*q7(E3eDf{~?ABRt&DaQG7qVcY|ZqDe;h
zQbqffF3*?%w0gxfL059!6HF4L#<jmxkAESy&mrixVQ$1NF;^bDtDw#gz6a~Jtr+8x
zN^;Pt_s{O{zoA{=LR_9;C0dBoUgUc1al^mrxM=DFmDryz>w(hDoTP1it-r3S(evHE
z>&wUwdv^<VOwGMUsn1XBhSgTJ(ei%*DK;hategFWO2xG;N-l|zw=$nd*C2#naL{>C
zVBBAXPJ6=a>tLQQ>L>NJtjYa-rG=6HAQdvH@oD$Q`;0O}F!Ga63k&+F8C_a@1^;XR
zvg%6AGiSxuf5W3c4~<j?WdE~w#hZ^r1p<UZg&E|O99oWb2-?WhFq&pzm_G51q)bD@
za8d{K^Za~*iIlL#x0z6y8XX%B>^CZe2t<1*nR6u8=CF3q61zAGQnZd8SrL?&%}56E
zJ4@lU8)!HfHyYl$8S`n+Wc0;CwDTCwc<<IHn>;@7q)A@B73lL}#T~;(N(amhLMJ9=
zk7+`UKOd&60-9C7n@;^g%puwHuYMT8DUQO;55hOI!yk!W0u&u0@?N*Iy6Z6)nW^4=
zaPT$sAnt|f?cl+b{9euca-zJYmYaG5V4yvlrFlomllff-w%4QgSOm4+vZ0(LOeYvt
zCaOhF^a9mKd|+}Y93rXj<upcOr}Yu)tZ!o`Wt4dOfv%v}YP^+J&MVvq&x#!yGm@Ok
ze?09EFtg|3d5$Pfz4veZ6FCn+^Ib=}@UWp&557pya{JMH=;j@WTiol%H=&S<v@M_H
zFHgLCw?OdNaU*B0@^MNdupB;7b%XFydP4qOaH*QJbYm>Jvk|#zhz)l4MSYSVxkJLi
z;e7|}(7!Cns4h?`>UFW7SOD%FmN%FA<L+yO1H93Nq^b{M_Xm@C8!tjQt`0~q-Kz<7
zA~=A^h87bHs&hHvQFwh(mPdKayX^P9B;kb*RuD~UFz3YN7MVLr-?%ok6LWuS8dktI
zU|25Z0PnRNyE#M$v<50P^%Z7D4Z^Z~0un&$nG@+ih0Q++EIrlpEYMhv)Z^l)%K<vC
zOP}VvC86>u2jI^<IvnXE6hCE`-$V(NM$M(yr*6i=bLa!ZMi~gtt4hw(gkmtcvgU;|
zD{8f5Sy{(!?NmW&W1iinec8I47q-#IW6*ox^ZljQ`k|Z+o1-|mg9b>axj%@7P24ui
zkfF~Id^Q6lFt>*3F4P`70DaWX8z%lrq;eac27YaZ#Do6^`p=V>S3svvir&D<tIr9?
zLy+JOfeMhc{ru1FN59WibBQH3^8LF6%*{XjK={7T&^{SUsifV190mP$SV-#Mgzw*5
z7*JQ2j*8(GwMxGJC!zlP4AtzR6NlIn2ag#1gD3v`XGuHUXeQg)evsIGKEFS=S^(5v
zHay%;p?kSnM|9t?e%6WS{Gn|Jtk*eM_G@+A;11?FEx>}2DZ$*uE7`I#ro}~P-^tIw
zs{BCP*k^956z3fre_ngOlP#Y{;xGe*_6z7Sj=v`i=!3WnP(_Dw4NsZi*f{g;^wH>P
z%#gVd(^ZXLIyYpOl*nUlZo>-=d_^#vZ@GT#i!gkxM-)<Ir-=b*nf%k^$nvgqfFi|a
z1eSt-kJ3|?`-|hdwIGbZ!YYE+xD;?+o}DvfV}RwH&>3vj%_?pr*~iYH5K@w7E6<Q}
zU$uFSFHo;t3hCDzYz%s-Bz#?_18{*UwmbS36ZEnL{<wIWzEMZjhO)?h#>vY!7{Ld#
z2k4tyGkv{X%>|RqA@#?HZAY5<<FTFct$sdTw7_GvKR_}`l)byp|MzRO9l+G2*qAI3
zaGRGzRTw9a_+Ck)2FwEJodC2M`>EHIcheS$84}+qS#7n4@G|l`P~1cIyD`&3HcAcb
zE#XzNBY-~sS32?VKaNEz9+HYBPTRCOoc9uzu@^(UwYwaX<sW);N?JFqWv&MQ`8c4P
z2?CZ-pmpKBKjW#fz?SCugESPG&to~n-(UQ;4j|Rn`sbYcZA~BTu>ZI(E|NV@1aQ<P
zd4gmAr`>%N_9gfu_w$$M_|Lchw=3|UclmF>4L+*-k4FR=$GyJ&mkSnURCnwK-p*h;
zJLqJ3`aPi@F~_j+<cD~|lbr#Dv(t?;GYxWW?tgEepL#&2=+iZH>+0DzT&9ELA5v$#
z6~QL}xq9M<<bK0G;_PI@f3yjH(9Y|~EYtnB4#Tg5Obw~Ps~H$|ngTygjtkr&-#Ggc
zi9Tx~W!Xwb94%YNN$l<UeF%N0@e-&9{>>r!^+Rdo8DODTf#ScdPO06r{+11?o!L0>
zck4Ltj&=4i5^*?oB)OT>4_@CkKWL?z*)8`w*>?+4;ku?x`#(lN1UglaJRBem+zd4b
zkn*<&OxS~5_Y(wmvXklTTgv7SbAXI}?F4buQ~}>O**F6fvmC>t<38-3ev)-NiL&h@
zVtTqF%NvB1^?w`qJzs3*;oRzAEld>OY&`;1A8)vs0)KG2&#V+3SsBOM+oTp0gQE}A
z3bOr&NWr-aYWoFqKIxr|0jm{~hg*o_(zu`nuk1670UQJH)wefT%ufzSrA`;kgICGp
zz(Vlc3QBsnpv8GJVkUq4@b#lFNb^Q{zbg!Y;s{ZLSpio?*8B=>EkS)1(Y6^gEMaF)
zFF9|%|G`jg;87DVpkTKR$aKk(oYwX*y|<_HybDAg^pdkvY5<3haz)}?Zz|h&$@jB@
z)kY3WVjQRb0nm~?Fg6VKf|2dAT6;<RZ#^;~_aKc7J`$hVI)CpcOvm@aPPcf$N_bLR
z?ZBMi24f9^_x*zR&CgbXQ3RCM<V_qPNki8SCs*vQHwjNL7TB<X&NIP`lKw;mB)keB
zZmBoA7T<xAX5}dc^|()fnwK2OMW38i`%8~+ZgnMqX1*ry#^Bg|OPaz>0;FnxZ>P3A
zXS|X-vl`%K0ds6Ox_Fu$z6Y!DGXkfq;yZvBbB;C;XY-`Zl#yFcgKttskZ@|>e4s`p
zcc<;ObB<*UiX%u|u_GQ-)NTBl`g0;=<F<B;+IPy(&YL<;Af(0vx(Di_JS0$*O*0>u
z6jc2{WpY`sMrC0wa+Zq52kP<tXbI_URZUAbaW$>jNH`~wb%?e<!i0;)U>BMS{)B(+
zhFlTkF##~r9Ui9CDdX0A$ji4@fQiO~rqJUcgq?(um%D0f>yH7d-kh#S+$Qm#BM~sp
z>_TB*z#ufh4VKurleIafqfhL{=rNCOLl%2mZ839vtPc$8+$5H4B5*t7`5X5F!jPm!
zE&JWN7S4_;n;6{_f?}4G><Oy>)!vuJL;bz|+o?nml06hLL}f|#vSe!`OqQ}lw(P~2
zQMRINF+y32RQ5gF429H$kbN0p?CV&EF>{~M_FaCj`_cV>{qF~NkHlv=pL4ErZRfh)
z@4EPOA&5b5Elk^oQ~A{!No9CczUk_`iDrlEyc|C^X`#FC04zQsv~b2Fgx*W@?Jc2>
z!Q4|>qkXL9dwcH?buQGb-b!Q!x>lkUFEpYPfz#88G*dBD1~PMXwkHhc@2!3Op|-{s
z{xC5~)(ue*Af5q`cJ7>tCTW7db>;~N!dibhVkw=K+>C{{p$kE^9c)=zWh21?<QMr`
zUUofg|E}oz9(FP6i5fIs@B#nP{QFMF4^{{SWqu#(3)m8bN~$tT9?BJtdsFqs#Cfi%
z#he4pq9q59f*w;2d5@wto({#ypFYp-HInl6ayqUYRVo)Dg(>GWH}@2E$~K3D7>c#`
zJorRG&s?%pk+ceiN?Nt-zU?kfE6r80P!1D^jT4gR>;j_ARB8ulKKEp+(El+M>X>!J
zlOt!zCsMcGccV#rH@2}Vq;tG$+XhKrQRiomReQ<NoqU?wo1*xF!|4e=+|>9PRJk3L
zi03Eg?(N!5#VousWM3#zK#XRZYf3$pG`g-}V{&0=!r|UYL-|M5heIE8e@ab?kIsY>
zFq(U=69q1IuXp4hT5)PGQ^|8u6*lO;>Xt;2BVdesF()=mFs*dk04z=p+jFl}cyF@y
zo<;uyi=|0O)(bKcCUn0wJ9h~z(DE&UW5y;ma6mZP6mQjVU)FD#-S<FL9Pb^=SE2D!
z?+@{`;sfm2SB^9Y7I*}G7aeLh<|+*5(D}yP&!Gli)u<T$7*!It!e=(>!x=nv<^Y+j
z_I!LpSs~eAV4eT1&gtH=y)P@86v8gAChwy!EijNRJ3gLJ8E^FXitv*CLdP!oaZZfe
z^YJSndzpAgTHq}ts#Cj=2<pWtOrlJ8MWm5Y!6hA={pAdw)1HsO_g?+wi^wDcM$HYN
zfj4RyRmg-^a29I?xXe&%6&q5dDxlg)hz&V0dyQaeg}e@9-f2hieab3}?Fq@kT71lk
z#;0Q+7CjF)?i6m$wK%;|`E{wkoTF6A**Sd=hl91*n=766rxb72x<8u>eg1iRL%Hk_
zf4ScqSdoh=GvNH_s&0M|JmsW)9d)-@ZSCYqoUGH-S>qx=wuU}ar1V;s(zt$|K!rpM
zHCo)5;A{dkN`WZNfy_rWbF^RZ)ULGF<k&SNq9HOM+W$%%ls+4}`}d+GmckY(ntc=)
zTmT$~2d0j;F=_{paUDTk_w$RU!?^k4RH_k15ncYFb>Lk<c^A?A-b}^Lgp5z0B?Us2
z8z#C0iAF(<p6f#Ys8s)o$K0quN-vD%3^!Uos!#C6ci&_9fju(17UX+;$DHmY8`5?s
zo?!<64{;Z$SWx+s7I}UD{D;852h2ayUhwO`T`uq#3J~Pq0>BnY)osY!y(v<ztVH^p
zbf8=2oLi<BLX?a@s<Mg>zUlA}w`ut%;aD~ad-Yg|u_>y1C5(TXn7y>Ey05GV9rxrB
z{Xd@W3PBr$+<YDnMUj0iw*c5F(?9I`8C6XFqYA&|1}rVpt(xz>=-4v~ua}{tSb1qO
zR4qHh{-q4s7=MAjo%e|`7xD>d&<vaAzmgJ)|Ek%k$|s6w4M>X#>N<oJ;Bg!fvVCl-
ztx!_<UG3G8y`l9`Z}D0F+TCbkdf2Sb`$NSK|B!Y4bV0{k@$u*H4tmaKkQN8~Y-V3?
z=$d?hsOyIXGgUg|-7UD|5;xxCkt4PDMTT*qR5VximAwq)Na0<Otn^R@n?pA<4}SF-
zU}_i?odbPJ4M?rGG2djV{gAT?Sqdp%ZJt`p8gd=?Nl)xjFayvaKOqHw1X0gaF!GnV
zpsUp@9jPQQ-1dHjY=V@|CUlVh&YM#geHsTY$%<78JAG{zd*wpK-1!ZAkD+*fQk=Yc
zkZhp6u!oN>rW`3c7h!z)w!EAzKpps-XX|;3(1Lk#`szs!&`a2y#STGQEqmW2B&yw1
zEHzi`^C;e5K!eFQsy7lUq3U+ie<BG2fxmWC$mAoXr^M3sbqt(!e`{a6^vUZO+vks7
zb|pY1TG#dto->F!_4o$L?#+FzSy67$M+MXGADe721uKg}he~9si=rF|>CaEbyk0Gp
zb3xgf{d08Ag!pl-hg`9-4Dnp`e&?Qt@cS|fo2xK&r9>M7otP6xo`c@im(r0&2CZ$M
zq_-L}JjK)IcwV|v^7_H9G`HS%x%~hfq5PVha1o_MVyALB(|w_aF$K}02=(RrI(izK
ze}|;lihkeTioTJZQ3ZAmsQzk^OwED3lW8I|(wpu2wH~{QoMt#Co_V%#Kz*kQH3tUi
zYCtEukZr+N{HMt?aodAuZ8Lv;z!4_EG~SvoIpAsCZK6Y(hF~d+`30!$B09)|QcUNi
zN}SseyuYo%#&2JpknE~8$nR4E3HA5I#54jV65g=fS~0TwStb~d4u$pih*2AoHCc6e
zDjBgsoIA3qGrTVm!xpeZt7;JKK)4!wbkm!FTCdIXY`IIyvw+s%W|Yo6v|yZHB^1C;
zzMQxQaa&8oUBy{Afv5e%XFUf+Db_rI`@9a(`Y}1|XC<vp4xZsTJBQ`4?9)Z@*P#7^
ztcE6HCf4oAYYM78{%?Ei2r7`=PgH*tO?Vk>xEXF2{?nsZugAyi%T4&=FxRRYNLIkC
zUy?G7G)0j)EGtC!Ik}zkCm`r2H9!xkx>y;7CHhC^^>QVSmVG;3{HMyHlfkU_xkxYG
z!Gwj}bOUS?g)l_dM2R`-Om!<|jlyk^5HckyK?JN<8Ev;LR8M#2!<)fxs(@p^Kqyw-
zYLrK%XYCS4Di*+~iV@SEdC<g>A2hTE`-)*y^jy+mUokctrKQAg9-#Mw0+QuKNWBB#
zNVXTyQw9R0#V|A;bWKj_S#5p|Q&|DeTk_8LAIwr&6^ESFN&FIq3sQ=b%+p_@u%Iuo
zue<em^RRKD7RR%Q^<9{}D%{2ryT|8^rB$WYJLAR=C_Uiz&C)x>)bKmc$V7=@>=E2h
zLru;eWJd|{g3Na6Jrm4&{)+8R5(HRD@=_FnH=MPNJUf9}?DDPNQr)hDl9mNXGHj`c
zSvL^mM4`ZEznXmVB9RAUwf6@L#O?qrVq;!uL1oQi!ujl`V}hkG@vOlLsNmx-Bu=>0
z=oXK20ZQ``h`_Za;^O+PB$z*jOS%=lWpX|ocQeeOxV3!}#Qv+{5@UH3LJ#o=0M`&?
z4xBC!jo|nv2oj2w*vCWqkjV(&{4}#JETy_Jg57*hULmmtY~-upW4deRy|KhCbocJy
zH~^pqD%i+99N!hUqw>-GQ_J~75IF>{1&Yflz%|mwqW7h4w#tJ^5h;e{uL>$1XfwKk
zR!UC6EwFVnzQO~(P4#`-!Go$l<|GJ7E-OcGqlt9_u<_zla;ZG=Bf_H>a?_RkMu3#q
zO|CT}Hzsy(FC!|ymvxg{5Pq|6q%~F2&_c~bD@k9%_L+*e*2vhKjwHns;75<^OBwuP
zSzKP#_ZoXM9i2S&_5EeI2HRIwquiw=8_6kg^^bu41@p?~jM~3R;=Adl09$#g+(IUC
zU3-}&ERTgJn34<_=i74#zoCm|f{=)5U-$$dmYz&SjSeQvlDUkkN$0jmV{MFvi0j=5
z!lWm8ki1+!GmrIXC2zKXUSL`Q;xG?(Lo0V!!P{ehinH7u{Mhcn^|6unhjd-Sa8)vz
z&Iwa*K<|@;<rkSq#)$N-ee?2f>&8Sd(!h{{a!;)9<m8FGo_nfB0|;_i4I}xJXI^MC
z`Q=UN$*Cq#y2*}F1vRHhr_jGmJP1&&2yd?j;3TXFMu<h^iTs}R59DPxEV*eyfQb3%
z=HGu*nv5PItMZe5$@#gyHB(Wf6@V-4KR9EV#c}LbW%VIY?qgk1lm8f(50mMx$IncG
z+Ms)2!Grwgl~C}BTqD1E&Wm^JDWFz<QbGj3<K2H=--{<N*_9K&Mv(J)$cr{$S@ZJ|
z9oo{Q#~lSkL>caO0?zl7UG(^qqphGkz2QmL?Sldr883aG4&fHxm-1@Q;mA&?#NL@)
z!>K(G*-+3fI+Rqeb13LbK%YUzp=2g0hA8z{T_woWJ92lPd2I5SXFv3?A!>EscyU+4
z!Exq*%^u|=V>vt*Pc=QsGSv0SNmsfgppjNuWzTi}up_D~0_(6Mmb^z})e*}E9P}@$
z81(2Q=(4kgOS{*N^Q?Ml;8(5lekXapq~ZE`lxA3}Cv~g%s~5ZZE2j4fn64);C~d`)
z*Pr+h$08Zwc{7jsWUQ5M(=i&DOkmD-uUMM(`gng<7FlCR9F=4@7x!+Kj423rmoyW$
zKrY}fZ{5g~J(-ay&hvDksl`vRtXR=CNu&ElnS<}kyagsZ;{E>nlaSrhl~wuUi^So<
z-BoslKJ8|X^`9kNqbIXa3zq`{&CDGnVyUc#0@;2URu2TB!*kcC?w|@v4fL-)<pxmV
zXIRM}Pe^0eGiDH*TkvUl)Osp;^GO+bY~8hTyBuVFd;#1~f?ia4<zxcKc!J+Ey1ut(
zv%J1}bG~B;a@~|MJv8rfsaLLv6T?ay!7$5YH;vEbfGQOgn`Cyn7BBI*j50s<sXBT3
z{rf8+7K0t{<{muMx#S`rduu*dxpJ=khPz8UQ_dR@>K&cYf+kN<q6!*G0p8OdQR49I
zW?x*Zz;8brSW&XPBWd#ky8L?+nkXPY7}?`7n|XnVo+Kon4B{+jdd7u%MXWnyAZ2hp
z*EC^vci~$FU#S5hy^d44&Q8bI4VgbAXWyhp3b3U=ue`0DG@3tYst<i3`B<j5KJ%3P
zM;TL;x6mU8LUXtR$E`-yQ%-(g@#@@2R{bTY3rYe(`ke#>s~)t84qr_n6T=Y1EjQAW
z@|tC3JyN#mZ56l1h=|0?4BB75Rmctwmsa4mz8sk}2(RO7cv$n+ymI=mNg>U{r0Z2Q
zO|4c5>!aG{=QksB+?Dpc_cAQ&aq%Sbf4gPzW!yu2Zzlt2moKfne#YFh7iq<F>!7B-
ze5I@FNyE@ivujO<p6&kSp#03bJA;sAL~{i}HgMZq3{xdi8vlU_YX>GQ9hk7kz=X|g
zlE3$-`R-a$oQR{|39wvF6%;raavRHzU76B3^4aH@$=*swr1;Ite~+-@ul|a#Cf>O}
ztEdke-#C#JVYc@Z60=tpQrsfOZ&F;Wp4W(1-+DcbWOaTSU|1aS1|V8CKuLoi=QVXu
z8LRcre#41BHN!9h8{SQtslo<Obf$4W{L~{dNH6(fmv180KrTVkh&9%lu&VU<q65by
zb?o4R!G2Kk3joTo1rIk;_TbUBo-KdYqX?uwC5nj+EA}mEyU4BSIPz6}pdZ2Y>jJ3$
z)c5HrPXWWy&k}_aVv%VcptV($cqjAp#Ms>P-inUj9n$|ehUNN8_I@W?3L1f6C-f#C
z{`J)2uMI;#DhGaMj{oX1|4RM-hXnI~xJ+FaiRidj<%-(Q`!Z@U4_W!k?EO4a1^_b@
z)~8wJJGLOTM*&o74nIS<--ix}&{USm`mJz(hIF7@TK*cEylcW$LonSeCfN-=^KimV
zt^qw&YvFgpuq`0@@K(8MXJG)^K7ZFFAWFV<+T(k%M%Ev%5%3p0!m$IUg!8jl)Y2QH
z0OUhu7Wuq4<MNUMX03kH#eZDGUru+2(80ANl`60x>>8hc)$9H6U4yp!<yB_hKlY2J
zC76tTC#^l^vV7-WRc$@0UsKwnWgChdtWw)VGf^Ij2lxL0mF!TfA8a@LICz3IhP$M8
zjV})i%~>Kd>dylxjelO6MgZ-V{40D?mcpj~K6?8=Wg{)m>UY%#(?-Arjr&y!xpSnJ
zyj#7)sdZ2S(`r%u0q-B7zI6Gt@+yTt`Pa~cdW(oz7M0teX{r=7Su0ipUMT!k+rud!
z^8xyy+a^-IafXTqS{@-%UuDFoaqDi}0F()GP8k=xu&?Mc2As;x;l~$Njs(1Dz$Y9-
zTF&0<&q99!^TH$!+Lw1gIqjS9tOCjm;$aW0N?fAGYQMQZpsOYW)c=&*^RFmO2(XNc
z2aRvkG0M&LMQH}}9=?u@0&!9av6KBQ_BcIj6oKPzc2+Y!L5ve;X{f%@53w4W{CWKJ
zLx8!9V0Ws;NS9N}jXl2L>6t3;RF9?JCD~tzxeRDRwm_oRxfJ$IL$^Wz1mlc<U4Br8
z!dekFvY_lmcS}lo&K8`ww)uW4-=aPM2doie?x?sGWR&Whi-0)^#InCUe2OD=gJ3yt
z@EHmrQ>Y+N)!&0O52yglL=ThmhrdGv>@q|k2oM1LDa8RK?8Jz&xqA<w0I|c~)*i{K
z4w9AYl)iBNi-;?a=shuvuOpHf|HF%pdlQ<?1zT6=5^Kh4TVg64yWza%Dr|tD{z-Lt
zhZ`X*ieHmU0c6lASe$?OD%g>3Zr>)|VUCRL(j!t!C3@u%?`TD4xm5=&NQNnJ4C5tG
zXU@1|Ie+ftI_B*)2siz&6z_j?jPuvH{(tH+agW=rnF*Gzg%fG^`H)pZitOM2sTqF6
zbeBhlQ}|}OEbMMXeVAi!huLi*v%d=O1U!FJPp5gWEgV1`qkLM!-;~s=x;ka0F1Oxv
zM(?s5fD5+9mtg5vai;HMdbPO?F2;s+8^XutzhcZQu`4R!8Ki$*Cvr!WLB-Tx@MZU|
zIb&~)KQ4Lq&asBePl7=_!7Blm4@I9E5AkxC9_Gh5hEU}HA2%hn;=ga&6Ld#d^VXA6
za%wPm$ca<%+uN1Xq3OFQ-@yB~Z#bsbJF|exzlU>5a+}?!G0yO}A&91}k{$yXOxCG!
za0VRs{=;xHK3Al@J+6Ien&saQ^XuUuFtNJ>eu$OT89WxnQIT-WM8TBA>C%j))wwev
zPf<xDf17Jh_3a^R?!QXMk95m84JA{+1pYuFMfo8I6_ntLo91uh|KXDTZT5c|tG_|v
z{`(F8Yc4zQY=-Df2}-iuYo^p+eyud1#D{ghw-An@tnBZ~tRIQRIMaK$aubSH3e~hH
zM0vjy1yh=H=vQVij-m>hJRDUph<VRcf0MD<;#Smb5oW%6xh0`y)(%WvBh#;h)cLW`
z@SUw7m7bL1(Un`Z`=gk2*o9?N^{FD_)1G3u#p_bnZ4<>kInU?%DZAvogSkpDe0_ef
ze9)&q!gA$>6?xSP0q9Y3j<SI#|KSulKZbPU9T2`W1UrT`&-{qTt*Ny`%NAmS2Sw5j
zQ^bbT0K)~xA4TBH;WOn!+w;C3%e`rSalrgcIXrw-q*;d(uj(PB%t2$;>;TqJr-4SL
zXHSu34QL|a)6jAEGE*rbl_R#wPoTLd^T76d9vu2A&bWrb^Nm`Esl$7P2_~5QULqUP
z$|;euWg@@e&&@#Fb_V@BKX=~tbEIaBM^m|DjWufM7Qw&Ft+abSz~Wm`f@gG@yia@0
zS%=4zyCd>$5|n{FQ5bK22&OpoC*->4zT<98l^NY`y~m6Ou8)ap+gS{KFVy^S{_w1v
zAk#MT0?HDXMpTiyj}FlL=dR7F#b?X=RPI=tkv44s<GTWnDd(VoxhTWrNN^6QCH%4e
z&j43K@E3t7Rgyx^HoI`pd(cA3RVpiFd+t{vZ9J|Gf~deIx!uJ;EkQX%b?m-Nl9Xfw
zdBuo)1(C5w9kzW!Lc=&@U(w-T&c+7@)k@5^>To`MHCuJ7w-ufO?nwo}Ttb_h!WK;U
z`Ny}mWG@;E{be8pby4$2k%WF{;44e0u2-~zzR?%7s!iZ}mW_f-E>=h09t)1<_=7$p
zQ3{MkFJ&7F|Ea_Qo@Xn3&6Ano<s?ONwf>xrCn4R)_9AR<ksF9}Y-%hj%ZaTr;0-o%
z5P?*=g$IH{sb}z66hr}_et#xt4We+P5o?RzKS=xcVu<CE50GRt0C(Z_B?pHlt>%;8
zq;9^EubDCcqG}HcAbw`*0ngFm&^l^8Q#xQO{;DOxjns@@!WL0^EKV6AkagAv_&}12
zj6)L>`dzE$x}a{`+gNhIrx*|_8a08S>xZ=NO*X-hv(cN`Vf=oRH{s(q%UlOHmsQEj
z1{ef+OSQ@Rcz9%DDbW|T{9O9(Cp}J1&b9f$tuVw!7#Pi~AEyzNS_dyPQY!INDzPtr
zyYC(?Bm6rTJl&CiAT@0rWY%hvDMpgPSh;MJU>l2rzE}hB{hWUt0wZF(8?n6xG6NtM
zxQW1Bg*PBDG%#v3Ku~M>IR<V1yJJ@ot5?Z$=<V_a*o2a(wjnjpG?#zZ*ogw8HQTNy
zonTrH&mPZ9QU=rySkV3A7ZaO{lzte6AdaG!c+g7=<ZZN@Imv%$*>Y!|i*V!#GBI^2
z3kF~wb|s$vvpq0a&kG&<=Dla~&TBh00pnQYAIOi<9tqe_hU^h!T!3}^|N6c*CN}&h
zVFZZLG+xpCR#kT>7;nH(PSz#KgyW=ljSaiF`Ev!;iJi9Zz;98UT#jGDeED!OjOkrX
zxsCL)a{?RV`ecOi)Lm6u3(p%Iaafe{SX%WU#2M?+xu)#jmA}V8S0+0|?ZYJxdL;Sn
z)tYGtg4m@BqEaAi8lzD|_$&$))QWZ`FVHWP!04wMo-BeTAZ`bI+nk)q6Fc8!wV=-7
zudx8Zh6_OwNoJ&Q2pNozhd3M`9DSoMY7v~#No~hSQL^8EndT&<z&4M))wW5VvR6W|
zHNV@&t7_cUb%rU<7oB*4fR&5eyG4Ve&2S)tv^92A^-Uj2|B5k_kOZKz`;q$=mBkoE
z^{)~F*y9pzE)!mE8$(H>QL2#(Ek^q^nwW#4-blljBHqqn&i-w?Uw)sh_~@D>ub|b*
znuiaR^lJ!>fMhHgxHyTqNU|$noePd;`8}O9w_NjaPw#5KP4GFp{e99*hN)8es~rJa
z<{;CJl8eOK6Rhscx&cI+AV9)q9`tK$SxrF*<;hTFtMzg4x0gqMJ<k)sg6*)iHBSGz
z_A5ZMq1>ON^6N6twfoOIfBq`7o?DgV(ikob)o+~qqhBb{Hg#g6vMzR#5=9NRkNAH{
z9|-a({qC3UmsJ)GSLVw8;|-Z~F5Y%^-cY;WdISWbV1Va$^-X`iKU4Pk_x=I_E*N4Q
zTS;d;eYZ>ezg}JGysF@C8xiD?m&_@;A1#~vuPYn~FQXwWpqeepDzWR|&m~@L;$&3E
zEPTw@cly_8%t>P4*=e}-(W|fiLUXq>OPO>K#DSs)Kq0raB+>EL@}3`Gj#S;<I|53)
zw>RP)0Wa@Q%}43=XVwyzNkEd{NF!#VEV<Ygw!S4`kG|=Qfw0_gl_W<Et-mp<S%_M(
zhW)2I3vXb;_~1%QxzdR9o(Zgd1bo&|7NZ_@K(`cndyZfJ6h?pxy!VJbVbpv=3Y1#^
zM8f&8w3+qb;P%!=u3JFw*+XFxa9h+hj1gbWJO*3j)iPj8I@n#Yr$iT%3TV84mUrze
zun9o3Do8FPRI2)6%TYw}y8}`q4pBo-v_r#VUq)qGt!sNQWiTI#(R3>hEha9?MP9j=
zb)KUNdK|OvHrr#ZaSGwIRH=Gv4)X+j<6$Hg)dFuL#;LBpf$?R~fBFWw?VV|7PCD@W
zxOZoc3fV9VUvKR9D!x>F+q%!?j<y?zYst8?u{$!q75^dk+}j&2z%cD{+AGJK?UZ}*
zq&$?jUPKZR+|LT#C(=%r?N4j_>P-#Hla(xu(Iu@2r0TifwOl~%FP?wYjo*$Ky`X>B
zUh=`C_u{Jx$`)%#H&#47HfgxOgu&pF3zgUrDJP_xqE@Bo?U8<iGKB|I<|+*N+0k9p
z>~X;vHbs?BE)E321Rr<cvzUHoN+@#tFy0g%#w`!QR$q1qm`^c-cg!j`%UyLQh&_J)
z`bNz<kjNWsNNi!t)1us1$OEgylf9r!VMy-lza9h%e-9W;L?{H`u#aT<P^S6pzV9ZD
zLT?EyZo|h<VK1;u1Lzve?)2uy=bG&UpYbsTmLoh$)V43G{QT#D@IHNjE6*>67T)F&
zWM7f6=_o&^rTeZr&PcJc+M(H_5xn}}n?eE{JSja|2%tNA`UHltKwsSY?JY$smabfy
z-K%FKd0*@or%GCzvgj&^xx$YvfLU8Wi<_x^De^0eWKEiJmIyW8_P`dy(nRm2xDdys
zAc*kaNh6?hUdEXgf`FF9pO)(EzK^|_sPUgR(2W8>(h&svZ}x6bDbWtR^ncmbZnGmi
zBK<$rdG#jT5)sZa+%Ex=_uuEWsU*HIr-}243`hn4IYHmi{8~o;1HXcM{V*BF{WLPK
z*Y3RgF`z#MrVCULgM(o$@Z&xW9r+#YAxvRL70Te*NucegT(z%#@6ImSxr%8jbmydd
z=c-^YO-f0&{LWPxz$XWpOdiU!n1lxZ?=}B7Y4|;w>;Io6?cMe;-w%Ha7;wZhcdj4e
zX^Wx+Q51=mb)y7Y6q!w=<Xm?4#TOpnQtycSIPd{}+yUsiQg{9seHYMZ?)<T-8YEM8
z?yw!2EFs#cu8rCA4wg-QhN2c?EpBeSb6#g>;X@f@|JX(vuPAwY%5$Ud+JGwVg`pbx
zL9dSIzC&+5{&+9*!zCzbZLVM5xu?M9Ba3q60BpIrsd_xgDH?_UEWyReDT0`-oo(A#
zP9+n)XS#$SlNGpS3MllhhX%=Vj;_xED0J^7s*qC{yG?WdwORER?{15%kK&AHaN<U7
zIdtaBdv`mSoPV+Zn}+u%t3Ag(yxMp*CAh3$?sD|JpBKMA7%REICL^xw5O~=Fqk^&a
z)w(8c-5r=#5jox$8Pm0=^x-w;`{+RJ^oobu$*5~%H|xF**xeWUR6Sd1!TGw#$Nwx)
z9Re_#8Q<DVRyUo_t{Kp25tB4^4IWeV#o6a7#q8Cum{D>dBBNRad!_Hx?P1|Nonh8C
z8*{gT<Emhd9R}&rU#3gyQM|J#c)F6bITJHf<1f$b*no_}Eo<0BB;S(~xmSvG+JpF9
z8ByEt<h$e=m1(j^nV$Fs6&@-z!)~oeJ}(iQ4+m{eE2mK{zAT+CqmiK6GemT6xZj`D
zdgNu!(|g86$_>?8`S1LkpTU_8jvqsmt!AZ#bs6vqW6bBIW~WPMe9Ts)1;HwvYEY?M
zx*27b`^YXpT5?^_)=OKXc<r2xXMI8f?1N80XCxL6)<mju^6=}mmgh>M6M&(&PUxDt
zBm#>H*jismxUA!hMe$+t8CiG()39D02IW||(y_yjixsNZ`kc~deLe)@o76ePse-~j
z3*Q6?<vIc?u!9Ea`JmDxqzU`ZUASF-;5Kdhr2wx2OH=j0OuC|?r}tm0Nhs`zK5i3T
zV&z+6lXc<UNBD*PHdKDRZv3|${HwdHyJBktWe)0=-#3nR+-&O$ah=PdI@xpWFmxi(
z?i0tdbv!X8&%Oe=r%@bwMCk#Yi4wHm`Hn=IH~Yt?B9p2;C4#C?eFmi>I`i4UEO3mf
zRxaH|-H%%0N3PZs3`obcp;rvx)viJiY@mfz$a5rOgxkouaj;*`(jBvIRWhRl%jw@{
zt;T)G?asG~Qti%#-c-D5;mtv+CgL&f5B#YPsL>R$?9ndNldd`NiX|%{`5ssGFujgj
zPXTq<>%)m({VJffxip`#K>B?L+&|hSSlHVwP5@Dmt{7v>XrpIy(4Owo(b6_4sMstk
zGWcQ-%Plx+m|U=Zm_4>p`~U;$kzn8V<k-p$c1JgkOZv4!p+e2)lO41T&F+4S=M_|Z
z{o<pzHfzda@N$ci(d9uh7c-x(m6)(1)!?U)`4jZayKtH6(3AT%AD9Mtn8@Pr@!>Rm
z<(hGiT*TUC8wCO99F#7($ct`lUlT*f{`$t$rAIeSA%P_a)HFW#Zv-T_FNkgA(#4hy
z+0l;~VUHN5zgT5j3GR0<3G8wPJ&PH8#hq!@xWC1g>|?xyk#VLc)+Qy&-q97rPEd(6
z+ZrcxO~j_X5C|ORQum0C=9O>`5Mt~pyWt$`h7lF!5@GDozc?g!v2WH~2IvweYL$CS
zOA&M`pKu)qH>3|J@}OEr<b^$=3yk~;!~~jH+KljkZy4V&<3dYWXOUV~Du~{zQ)15#
z3lVgh5)4gh3l_x5eBn~gBCikcGRneXy_Sd0xc2!Eul2L?SFR1uUG28P02P(q`J%(>
zE-t=&$WMaVABgvDcadSNJ>m9zNJxlg7>f{MrYrZ-3`i+e`7UU&d=m)spbebX`LF<Z
ztKU<k`6<6FPFzKeg@u(@A#jDXy%nQH?Z_#=t0_+FtA`|tx!_h0E78$vIdtwagUPi#
zs$s4}xBw34P#2!|E_k<3pXK?!vJSSU)-{d>XG{!3Y~yj;V4rj*B<t6N&Qkk}J-bWp
zA3Mm(Hi^kQgK@U>acDkNa;&K^M1w<jG{;ywNY?pTY;hTr!Pg_lK2s4lKx1(;cdvu!
zW7UgaDz&ap^&K;3DZqCfVMAK7sYVn)-O;dxgT=Oef{>4DcLV7*<AaCwM&g<;)|!<(
ze3&Mk5fk)YPMSLR(;H^&{#&}zxrrO>5J7C$SupS1x`z-i^yLCYW0v-`hm^8L2T9!)
z3!;`2j!Qsg(CgY9lrzl8<)ikdX6qI2KkF0*(hv2uM{jSi+-`NJViCO;<?!hvqk^nE
zQ*`tKJ?tsQOl0f{Z`1nyjF^Y`SjV}S1u#Ba)9=iV5O~<PTe>Q@KKY(64!jQ8T2L74
zc?zupU8yJXD)RS#%pdSw*=WYD*X{+D2+_?x|5g<vpNy@(yBx`<MA2Eic~<D52^+Bs
zxBa~tDI9+}eC*NYG_E{(??%Ew2G4-M)2+9Nem?RGMyg6*uRc?~o1(sUH%XlCw)BUz
zziW=B!Dy@vt@Rwgx+vH&v1Q&HdYx6Dh6qoqoJ$Op*d^*hF4EMqoukFZEztCw3k}BU
zVPY9f8tlJI&m1A;7|HhooGH1!u5-(tg(c7FCo{dB#lSaeT|eonb5|sXs!=?Pd2GWn
z=M+y6Qm?7r<r16^S-<XDYVKdIKZEIxzpOKC6g8G+D<?A6Bq}2KSS}#a`nml^WX_u|
zeP(`(tsy(^?P2<{G-+Ljw*3xya+~oC^k!<x4~CCthm=T)Pn$24;o+|j3b7Q2#PSMK
z9F;_ojg9yySJ-(yn$$*ox{Kfmc>0ull5t^_7r{0BC~fls{kP7t!@XCdtV8I@b3vNi
z@eA}}4j(;|=$W}i7Dr3!XiG+`I4dFKkoA)zJ@Mtd+zt41D7Sat8Fbe6ST53-9nq;U
zBXwT2s&T`rJc|#Tzi+B?h2QZGF@(#~A?kZ!5zv$I8JP!}`5$j6QO98`y=Uq+`pbv#
zxLJ?7!#4_NkHws;KW;0<k5;DH4V9@nADnl&x0HT1r$m~zV6NosJL?&?@nj8dH15(l
zwL{AqFBCO&o6G`>#e}DhkalxsXwMu{EVMp1Q@`Egd<iavEGwo-(%@3a{<uG`<XKMj
zJ=xa}E|)z`$w7X3QK7(a#7=JzeS=$X&DAp|cH{CP?f0SAamlorD(2CurzA!am~@=X
zxC1LrhB3ml<ubbTSMGBX#mCZw4>-7R+v2ty^U88!`Oju(D?dm>rmC2$v9O_}-dYdd
zb_m*)J#d{M7Nq~IQxYh#C+~rwt$<*ea;@s|+)|F&Hw317<>}w*QA<o^`(6*BK2(D5
zO%P<k>1m^si0k_o>6t;neH1mc&)4M<7N0(f=Rd=1G4v<_`#fYsPo=T^`iD@Zg=%(r
z+6&8kN<I`DJP#jzEdQe5%wU2))xg1F6Lpfk{#Y9G`Oh<3$M1*-y}F=fIr5Q@MvX?a
ztqGX&n4vP4<Zb@NqFO(~cH`;3ONSCAn98V4T~8iPq+xOCzwkv$-T7vj{42hLv@M@?
za@6(Gm|G5CPjlk&Ip}^U1uaQ8^`4cMV>?>p`^|gBa04|t53hR+F=`y2T0<F~Z&3jQ
z6IYJBc<xYPvC3oB;)fgiccb(@A2L6SC2S7SGpjWUrk#o_;Z5bdQ0rH3CO9SP$iiRW
zQW~Jj<!BZ<Epb=~=iYT}w^-;Gd#<K+|1hcB4t#fSq;`5`Fni<(kDUY?MC7=&wM{gy
zNVM?7BMzUXV&Ts0drMeX1V{Y2h%30=G4sx%_iSH0>MSkpZOYZBc(k@O!^PdGmS|+F
z=a#knBDHJkqDg~F?Y2DqG4noD)Z)>;xGz#UX4Y0d8z-_IgkxajIdN0!525$ga!-*h
zdQX=vK~;$TLuFxc{Z>hLn@@G?kdP4Q1%`(~jI6Fh)r43*sTl05kW#mScWstcSYRhM
zS7&5&-=QRX=Lf4Uvf<hy&y0sHjY@t_8-tV&+<!*P$db1I+qun1rTJPu8dt~#hA;^#
zOqemdIl9_zf*E0;6X{YGNK+<I8&1%#TX=TLsr!W}U<qWId&`!yN2G}Ngpi2H$38lR
zZ&!G!SlT3~HycH@Sq~p9K6zi&ZXU%)ZR~tY&inw2@Pm3MrE3Flspi;sB_h;C^k;RG
z`P7`urCMl0Rs~(67cA^;ZT4k^AK=V5UU2S-G0p3z5It6h4)f!%1-O*X%K%;4mBY#}
z0^`>|MDre4&c3eWbpHU7Ax4^>`AWi#TF$!D_{Z`mVxk$^=<$WI$c}41sxL3xrTd!p
zZMElk;8>cvvf<ST1A$Jk9xvio_J}De*d@l&evQPQ1sV7Z5S-{!!D#w@pTNq5g{%hd
z!?K2H2UI@fhLfp2n&l3oZi!x2=?S1F9L6jP7g9HM@Ak;4B!7;k^H3`eymwixeQn!L
zG1n@@ng~u|j@7kl&akqYac_JoXXT^BA_v0IJdW+6h9xjrXj6@JuGclMK`bRS$`DM$
ztFiJfZsqX=8iFbyE-AT@l-2S9Z&<5p6*+XF8gX@ZhA&yuT*XZE-EAB~mHNS(@z_pk
z^hZBD@*z;B+=9=421-og2mZS-3g+HzK}H-^5T!eNDRGht{L?*Wcs5VN`u=|bDI7rl

diff --git a/windows/keep-secure/images/intune-empty-addapps.png b/windows/keep-secure/images/intune-empty-addapps.png
new file mode 100644
index 0000000000000000000000000000000000000000..7987e9145488da72e9a2c1bf93385076baa8ef74
GIT binary patch
literal 20140
zcmd_S2UJsA*C>j|qgW91sDRS!hzf`ZNI!~*Qk5b|ix7$i0z&8^K}FyoLPUhnqawjj
zr34Hm*dS6v2`!<hKmvq-5RyOw;Rf{d{~zDI_r3ex8{_RU#IbkQUbC0A)|@-`s=3jQ
zZTq(g2?_1Ea`~dAkkCe~kkAIumd%1E4aG33;J=?e&zqeW5-LS(Uv}9fxZir`@(qZP
zkm&ohe;f85H@+))C>daA7hvV<5fJR+?=E!5<+e|Nl8<}9fwM}dl{CFo;pRd@<|nRP
zJZ~N1%*dk89&NfYV*At2wHlYdlw6+Aete5*^-JuLUuJi2*gTuQ0qFekk&5j|>VW$j
zKv11mhFa;n>DRLU@3y>n?d;9CkU8Gq5#t^ke`?c>Yd$}VOCP;u&c&GYSy|Y!Fiai`
z1F4QcAr@Hd-0CSzUVaT-8|Jax@mBQUgPj+)2>#e(WXW}Nx%HRUZq}Y$KWeJD{>z0e
z&wI96#eE-k;THBi>Co@*6rINYG5qBJ{_v?nQwC~vd=>T$FITtn*$dD1l6&x0v?p>l
zjKa}b97HW6g(K!{S7*;-cKiT+fpYEJ{X7k<>xGCJ3B5ZvROt&u{*s3N;)Jq3@3U|C
zP@nGNR0)4d7*WgG+$jEoCiTM4!o*P%#>lcm1oSL+WWH#G{mihmb|T86e&MqjfT=cG
zTEfjQ`Gdrc=)KD$q2ZX7hb4;-J0GVsKi$(3$0wjx+&%moKBp9)|3QAmj!mn<vH(!d
zzPdu=z!%+<y@w@y9QF9ZOhQM`!hok-uqLd9L3>E+oDXaHFyD&nhXoN;)@ca{-=rTR
zc-7!EGKI9u1_VUC&`br@Y`3Z3iJJOiB&(dFf6?nS7OMhCIzR0K@?u_mNi$xNozF+`
zPS(V1A2&qO`?^@;KTys>yw{pt#*-=~tu^yX6q0Xu$>~T;9ap^U?iWsu%GbD0h<&H{
zQ4U_9DZArc4_Sv(Qr7uuVDV$B3kZ@-YqC~JaUkN)XmaK#zJatU&W$f(R$uD|I)aLG
z=`B(B4A;ojl3P-ve$&rQ(skc4<xX;aAiphc5TdR^aQxM_&G=J`4Zc6S9238p?zn?<
z&^`{s%3ry6rQv~Swc~0^v9bhuT^JMLN4#pz(>S^8Gbeg9OJ2Xlf3?j3(vP6kvuiHY
z(7Zv2C00#UuRBP1@9Nu^J{OdOQA$n#rSCe{v2?jNC9-|i1dK7g!c8}*CplBSveXSm
zi3)9B&#kncdG#hlbi3DKnU<H?2WqbRdX*GvmRqXAbKe*rL%V@!k9^Kvw09*@i+A0Q
z+||;ao_`*T@3Ed@l1?ie-Wx&PpX)z8YF4(={OEa+Cpx@|WDW__JY4w-BXhQGHFGQ2
zSAWu<)v%OflO7z_-X;^5KcoujJLQ7kwPr5Gk?*-vVQ`EtssFdHYI1!Z=M}X^Uz}5X
zkQ3TQNi-~0JJ{`2M-|5xF?y^W2K(BRU1Kjb?*Gj)g37y<AQo-zf7X-yVls~Ay23N<
zxy4Qwi5w%1L8x9iMH<+^FYR>rQ?4!*a@-f<GzC!9@4P%&)}W*D>a2wE!_w)Nh)0SI
zUm&*X&mlCBRt5fa5E`Lko<Zq?UDZ<Wb$H`>#3)y#%iZ2TcFmXrhK_onzl%U?+5{ZB
ztHxs3T7>Fm_tqYG)#=&(Q5&1i<2~Xn+bc9)fv#^0B#B^NRR}33E6Zf;moDJiG3qOe
zLy9I&e;89^n4CS`9pXB0MLSA|;F!|r=tek|qTHjBwNbCpfaj1Uf2rt_w|%j!tydOK
zw4fvi5o-)7w8jUtBA__uyk=cxGW5Hz@qfZ1J!A4LDXv$?Gx2C^ba9K~Opd0)zD8VB
zM25m~g0;gPKwX_N?&}380FS2Sp-Tb^!O|cq7K;j8V(0o?yY1+e-neJ##K+w&=J5j+
ztAPen?i9sjl<GyKiV0jaC71BB=dO86GVLASkrenVjK|;k>dr9jF!9S+KRzt7dGuO>
z+`6|gJL*+@zK>(VcplgI<QgP>>Fc5VeX(yowY!;KyS)K6z%B%NG^9Tfhq#QM8VC6o
z`h5YMl1N~vUNzemsM(e}W{GF-Q@z&q6j_|MAMeOs4)6}o!oo>FObe^#i<lU@K~_ys
z!c}SF@wp^2y<qj80qHC%7uqFT6Ry-%+QO1qLt-NAO0U_PqBGpB^C9L%+XIX8Z;;Th
z@-bg_=SF!AJbEhL5mRZ~{luezif$lPDlHqTU-!Ml=FIIhj7-{RmFxuz2SqP0X2oNM
zatuVepD-_;Z8OphMp{8(tkNrGE6PJjY&(-W=We?pSl46U?+&RE05WmE2mu6$@hlzG
zop^5Xlvg*y*>FE;Yrvwgs;hW;?xux<jJDfX%3bO9WRiW-0fwUI{U_6seg1n!uax%1
zTMvCUEg3-WhU(2YSk<`sq-4s!xD7KQ3_6d%nVLl{4fUxQETp|ExCbh=PG|MyUdPB{
z8j^fVMC`_8TQkO?xLbf2HL>r2Fg=CS#GbR+;#Sap$(IfAvlfccU#=#LTvEUTGsx+f
zQpjs-e5j*Tk3Ap`qlm=NX8b`Vz5u*Q#9ixZc}8g+3lyb(L>^w;&s%5fmYyT@S3fj=
z!KCOG$dqcMfpy<)YuWbs<7lrAiR=ybHIGR};n>EPa;@<!JG0{HoxaPy7}GePq2i1z
z9eFj#7=i{Xmcq28lKoew#<8JV0nW4CuIS2}JL{%!HJJi6ceBhf2HKt&2`fCNaB{A3
zHKqB$8iSu>+=|pEbnqnE6J8HY-0k<6*@PZch#Rdq&T{vPv#x)fQe7CDNN)tXxRjW^
zzvb5IcWvm|*-DMWRTDm^Pdb;@)vg}3I{GlQ$M0!^4NqmPsTaev=Kds3AMvEt4jiYo
z$tw5kD<L9y@Tb(yT+^cCQW+oS<$x8q$9C*-LVjTOM>}H{K_{gVtQ3swzQ@`-bLARi
zn2Bp6JP+_LtUB$H>o@1#vShFx+T5emNRy_Ff|3=QFkm$p|K(Xp#p)tzxm&noWe%ki
zvN#KH>vN)-fGy989L?Q?0i<R`6<l+y^)eIh8+Fw%o)S^n(;8Xa-P=QQHZ1ZmEFcY&
z3UmFBMxL{E_NsnkF?!b4C{E!ww6fJv33YW9533JW8kR^EtYwM1mU+}72z~u54sS`&
z+Y3=UF(jsv@`Orr6X<XE_*4eFJiG)c;yq~xSL$<9vKBeLo~@+Y+5xiKNwT0@hRXcm
zi12S>{4e_Hj<)%7U^9~p6tjD<&%DBAla&MiN&I?B1KI}v77+cd1wY*)s*YV{)vwM9
z`-XLAl+p3aE%o8c#!#Fx_STMS(P%L%sIJXwI%54b>K>ghTkA>il`{ZPuB-@yJr3U-
z9*ZItUl}rGjLCnq%A!cjeI;Vzd$}<i=68=PuKu)PUDfTj(cgBbkyjUDBEm8CR=k*!
z2>v^b<)M1c=acpGCx;@|W~&Tz!rz?FWpiUoD%RzIwEY&l46_cvcL8X{k)0n%&T^9x
zcSQ`=)3N}~DAu0uaaAz5gZlup9;gNUsIYedt%oH6&PCT#?bi)l@TXw!pTj{>|Mv{f
z!K@6@^kUYzvj)yM2cxLz{2<}EMFh7yN01E*uHv82;(>w`VErcLC#$&X?N-~@Z%poC
z42PmHYpJx*-Q2gN7c=ikKds%owY&+s7VHAruy%7(;WYMD&1pe4F1TLrNwp_ArP{CG
z*ljaaoD$>*>o=!1{eKrsfEv~}bgZah)VG$OHq@4(p{lzY_S{kVicS^k1j@ix{CDoW
zh{LQbGOA`|;bVTDAYWboQm7z>Y=o55eT#kfad@~6-P}@IqZ|$&oK-SqT>FD}6Rsdb
z6pZcH*I(obxJJ;guW=V)+}L6Twf=*NT4`k4ATj;vh_L09808?;4#IfcbdkLN^XB9u
zjltaVG1{yi7W#F@Gst34ly+vfR&ZMf^-e3+3(nSo%QTW?ZGPwaLvwUx;Vn}Z+~;%~
z($QTVIB?6ZVX)H4YUxa2{3$g1)gMyKB$0aYq=!oZn{8U%Pvfo(KTQ!SrRaa&-#H}j
zYtifiLYy=O>(A(}^v{&$%|_|23Gyz(&(ey%V`8D@wg>1W)xVdd?tC~}ol&4%n@Y|B
zDWb27d}+%-Fz`Fsyt$|$;DB6nh%Ril;SOHryC!&Nb*GchyPhq&Cv65^tSN;<!<;%v
zvUkk5O=U~AsVZ2bo)e}F31?~QhnrjEYH&3iS6>IZ8MwDNj&=tax2}$Niy;11C;c0P
z>|P_fqPt*iX0)%wWIDQXWxuZ*FfDJ<l5$0mpeqkU$!X`8X4?qaqDIhbr?DGV&<1bU
zb@*+s=60*NVr1`45K6YbBP{Z^es6+@M)>*o=J;D@^7whJ&j+289M!SC&(M;)dmkW8
zi%#waDpVY1O);rw*BJ5k#+rEq&Y;=bm4~HT9l13X<&9VOU5?07j~&jW67Jv5RI9YI
zlA`x+W}ZR!W+Tu#y;diD)7Rb=I(Kr-XxfKJ_CQaw;?HJ`1-ZoL5*9UJo^vxYu`r{-
zEjp(VBQC0e#XD1ql@13wQ{`T++upgoYZgWWgG?HIx#I!z4XTgjP|h@r3}TFy2e_*%
zoMF$jx?N;<tTHe?g0*iA*ylUzzy?TM<=0l-w3n@}7FH*pl4~+CVATQzu~dh3jC_9#
z>V?C-R?WTINYp-Lo7W_*RWp~qtRmx}a9yR;#>yc!ul@P>y5Vyp*XXZA2N6dCdybuf
zH<?DO$e8p&t?abWB^j3LNru3p*15&*FZq}q=srmhM!t7xp_}{)xb8PTFTWEw6fIjT
zuX=y`ir4^(!N4uI9RF1bvoCQuxV>#s_RoEeHQ3Q5hw%9tjeASc*S|GZN+XIb9z0)j
zNOvK^0#8MEG-DjJW7<V4XRXm7MA-a4@4mqAemJwxyZ_I)If32qJ~A?DGBkvT;Q1kX
z-E`EPyRX1$T-O@87L2N`TeI$mv<~<mKEWIW8d>b31y}7i%a?2t_!WG}On(?7%3|6_
zcPaL(X26?2-7a~v3kWF)A?tid`C4dNv@E@}B=ME_$TvZMZm)q9!Vt2wJe1c6<jOa7
z-mONdw-D3EJzG9R5aws{+Pi$5QDAxg5&J1A#EvjN3-eAk;*##C-r(Q~3rrFH)bC!r
zVIYk>H``ZTZ;;V``|zX)=#<8%eHOqA4dK<yFSB2%n>BmsZ4A5XSE@YgNmGzt%K1F3
z|4c_^amF90dU}GelifV><>pGYn9@SEXLBatK?#FGvs=B?MZ~qx2LC`S?T;l>L6(fk
zR1;p`AC7ICDcJkNKJuP8r5KEpAabsgYWL74oeb00$3MdK1b!UlnSq^^vg3HE<gz~i
z%Bx{rw+vapBGX96dS{R#u3XHWGmS_!tRHlFaxSSlGu1c3v6))>67nK_Ns$4t{i^^v
z*TVRBrvASb8w0b<7<Jkj%VxoTho#p|?{2}G&aOQ#;LN<qnEBe6b?4`GB#YnQ0%1FU
zeT6I*E}2mpyHxWgF^#;~!*0xiJ|DcD*k3V#hm5}0KX857W`I4J{|G>qtCqaPs(s@(
z*D*7Uf96~ltQc{$<7r0AfhC;}xQ@8o*^*tzzL=okgfq9chBnF^hG!vj#wQ+rDxY>7
z){Pk*!5C%BdfwBiNr1^YCJ#d}K@n|3Uj8$wvwB&PR)Y>*R82k4u+cux53528U&(?f
z2VlhwzrGp=f={H;FB(NOf!#{+)A#3VB`l3peT-ZV$947c#-wNRHo5NH-487FkeDy?
zMcq?Ln8ej0d{nd{&fJOxX21ZgU1wBIZ!<Q?-3A?WCRmxXe6F%|fH2J7&N+?_l7*GD
z4FwZqc@T9hgjRVeMAQ}ZT&}O3bZKxq{rONs6yQOHuG=={+2`3n{nHjJ^MHpq<lwtg
zH@78hMYDgdXpe=YYH$D8@qv_*tqa)>g|<8Cw-$x8_R4RsErd6<yeC#0qO?^_@n>sP
zd{ocp*@Xbon+6+5*}L;HO}Ne(HM0r2Y%SruPcaoY=)6H((LrMU`BeJ}0_!Z6fAkb5
zy%sfgu)AWhzkDZ4tl<3fnXc`fa>RO(8sX)Tc!WaTPRqg<zFf3#`l$m`ag=5Im0!~0
zY`)g2WXARN$i2n$OQ)~a!xATjLna-)KQyY#mW(;j&h%nRx*2blU-6$t-{{MuWVR#~
z*>cWL#f_%c*Y^B$Rr&LW!D<!KKKjYD$m2u$aUazbJsXWHKV)`}Gjv|NgEK87rgN0!
z43x+9sFz;F2M&+SOMgq%EN-T*7=t~4GV>^zjN7x1mp+prOX(?!4Uds#bKBG{X2bew
zNO;sqHow{b74=!X6{`GA8Fk=LX<v47F2oPs4>n4*;BLd@Sk`Ih0f{q_#>Iio9+0yW
zI9j#|$Mf0K$gNTEEpYrIn@UZ{WP)GO44w_+(|9LJVp^@BLm{;taxPlIbfWmdllr}B
zgzR|Wk+FpfP7$*<Feh1nIL|Gi!OPW$Q>D+KWiNS7nR3p<9ch;u56LQ1f87$=K^!~_
z&<RU;+MZ1AAe4tIyfmFQg3ogGnlR)Q_gS_05-&+gKm66nuBQ@7wnM^Mk+|?jgrkJ1
zuzj?CUz}dURjJVq`M_eys<gP$m1%ObU14H}ys6^Cs8%}Jc6JD&yk(^$F~)A?OInB6
z#hQ?$7!<tIc)%{tn=V{XK~oYF!`UV448C+;x$sT-?)*mRIc*)cmN>Dv1Q(@V9SQzH
zAKug)EucPN@IL(DS(ZZWTcDR^@!&#5Cd1;9Nu^lmwTV>Pyc<1mdv*u)9Nt5_1p!Zt
z4&BMj94EByl0h|OCrQGxJPON}mmsC^^E8XsOdFywil>8@geq`CouW#Wq)S+~v_a>*
zG-|n{c|Q^WV+@8%?r)yST9Ry){Iqnnm!^@NEcr51Cg+qzF+bcC<Yz3}!U@(3KJ0Hg
z)!W5{TOy~tQX)6#+8+94#8KzAcL1D@>kUn7Nz6>5A4Na4#Z>9p9;yWFg4Lc4cGa$K
zYpGD~=i1XSV<aa}>dTML(wnW?3H?EG#*Sg9j5VcHMuEJSwDh8r;~fNbw!xIhIGIf3
zT}zKBoe7`G^XncxG>985>BH@O=~(T&YyKHAmmfOaPiI(4b%zf%arbrh)r9WmdCk8f
zR8)Zd7zKmI+NF5=R$gk$z2V*!b0E6$%$Ng5yAmKZ8e*p7&U==Ysr{LZJ-D*}0VWFW
zXk=9*!asPN<HgwY0w6tqT0~><)uO+G?%U~>^ZLK77<A~Ha&(2pYkkVquCM&ksT`NN
zoU7E&p9oseltO+&nS}PR%&%(he5ogsGh?C4e{fPi)?Lq{(%I>{zg^fBcU-dGM?bZd
zP8!u8l$aWze^Kv}_VuYK9Zg$QNzyst0CVYlQw5HK#&~HZ@XJfOTqjKO`1osUqav|<
zZ^inUR^dK#@v3Gf-Y#o7^mh5#2rx7(djcE-B09_SxbVJ-Q0XS>>*pcnSlxY;_itw6
zj8Ia%Gf8xN=VO`=Uxm<S)Z*#3&y~4vicAn*>W#t`%CtbeKp0m`CPrq}x-wkf{OVjN
zsWxbglk25TI{DDA$6wu*Tng)2c^xWA@e3Ryl;c8v<=xMUnB-r^bw7cqsLRwGn4`>x
zIbPc4cR8!Nu+4C=xKf3Bv?TccQ;6n%uEw%PuOcoE{Hap5yQ|Xu3ABemtrh9_LyQNA
zdh0DLHsK_JI`V{>!5WSBFH#aJMl6*|SP#p78h0go+i2bO3kj#O9b%@8o(?fu*M}3?
z1&Tk*i&fm!E2hVO6uuLNG571k#N;^U$So9=PSO3RU5_CgIv5iWh}g<+9}f~gSPn-w
zm*KC#v@Q*y!j|uSyN_s_=%)%yrpKM>w>7TT@7~T19@`Mz-ZoC^(z|{T?WZkAActpt
z)O-f{dez-{?kTlUmVO0h6Ck&_tUny(Dp#guf-8PhKQ3@}Q*GSm^Nx?sGfuv2>q;fF
z7j!x)qBiw)=Il72?p3J*+&nw8{hGSyUUowcF&>uI6sV}2B(2~olFOICJVIqF2hB|Q
zVS$5P_?BD{q_yEL*o5YU-0gkiJQ)mQiwd_g4Tg}#-dcH-E|tA1jQ(>puD0bqi7y@O
zP1>tni~Z83bE9fw*fXLw0_I0B!aH%lQFxSZesq<x-!L^AA7`c#?V=ZRhf{?ok$<qi
zw{|fcT}$%6$$U<*AWC5@nhkf;n}<97dI|k(n?A2n+Og2|v~sTxZNW=&cb#v7C}}$3
zn-?}V>lKbg<;kJB2bBVGF*(q?xx%^9$e3aulge_5yE}`^=Wb00YGvc>$|b5|l|8wS
zm9ZFJB1@r$-ScJBlhv)SufpD?3D=jDEZ;Ba-K7$EWl55TS21I89Y5Ay(ae&-7;y^#
zuZo9KPwxIOs44JWRY`rLlnUTcUg=<fbnXt_geL$%d@SVcxN~yP+_>ia$3bfX8JkEu
z!FMCRpn>#+=k;*4t>gBL*%n_)_|AFF#PQoti~#B_MiY=>Ww}V}+ms}Kp!dO;>Q$^t
z;)=KP2{f!3;!{cspH@gXCA|0R^6|tT6st7bD+`H}Zqjt9lJ#ne8m=;JkI{0?3Yz%@
zZ!H=Q+C#4DcbvlAqIA*bRm?(@xB()$rNM9d(GU%E`)mvoUD%!&A8{Yo%f3ROO`TEs
z#JkAXh5}?d@Hc5y*#%`;h?3PSzT7U2XH!r4ZY(icz|i5SbMua4FcJjQ8!cV6a=cRa
zKxi*6xvbi}DQ8V=4OC}hTyJf^){$a+(X#MVuf}SpY$ogBG{Gy1EXnh-YOU56k3Fa@
zL5_DZZ7-3W>^mR`K^v{0lKgwwPxU{Kxj5>{kM&WNH$fficTRuMexm#M<b?V-Agmn_
zG?n?Vhg~`x?bI5wz?w&ZCg82(Emfm*X+)p64E5-t32uOP*qqg2{F@=HLH1V`B($sV
zx9Jw;7L$X{!Kc{7>^|D&GCXF{xc^PKbWow2J{CD;L6{HSnIOSUB#xXvF=IJn<ue5Y
z(+d+&aRlVt>XT56#h1+3maOdr(5UZ#hTJi~{6+6!Z;{Y}+L^+k3!%8+>6PU1js+)z
z0uKuv?0H_icba*A4?QFMWb0llK=i_GYHg8zT+I`Kpa!JV>~a;I>c_4C99*Tl56EOc
zdM?wQs!=CX%0PB3Jq|6Pcl%8QfgfRp8a-#<+QpnyUG?r{3_wpd0$K~Ch}MWU6sZ8>
z!PBAoQ1R*Dhy$~<08=;p*<g^ovsJv;+k_~s<kO+wCMu(KUOD#Tti6H9<i(-HYW}O0
z^%TJjKC;7-wbd+iUuwpx;!+18Dm)yPz=XcmX}m8>!v+6Ve7F)d{$b3u?SWp_Fsb=1
z`JMAN-K~a84=@Ll-VT#q|C~x5e;h*|Y;n0ZmKzWiGvZjd6uA<nij)u4tkjcd#Ia6D
zcln47ZVxq3{;F9$JnDIYNW0g{z*SZ^_&3n#$(mo8D}&i`La)v46SYe*GO}ns>b`zL
z>{DddqPc&BJ*i6+&9=J<Lgvu!bMoVAaCR!#SVQrcHX=^z%&|GKpNMV0x`H$kGU^Et
z$3Cr8C|A{Go8`eb%QBY|Fq`hmK2U49ZC0csGVW46YhkJ!r&Ab+4XPJepYz8iU;BGf
zV?D_yLQIa+Fdh9XQ@L1zkK!fJK+)$^OTSdV20khn)}XydNkel-wbc1X%69y|WHkH+
z%u~hU65HZm@?r;eI-D&SuxP*EBpv^f(zjXdAX+_uwCq;YN%FX47i7>%Jy&t>_btaQ
z&a(mNUjCTfEG@cE6&|Q4*-R!PyOH)P`P@7L7_FX8H!TJOQ1QE{zc1!3e?|nIu%erN
zxwR+q#TCb45?PC4#>n)GM<Y>kRe#Q`H-8pg=`CK@xp((eo9me@AN~C|I1nJKr-$Jc
zncjiE{&?jUoE0>jedbMN(Jz~lcDM_I)b1rHXZc?DTt`Ie8|&iScDlNU76J>7gGV@}
zz*a$wTskULzUqub#(@=NFw-%u2$HK}uP}~1?C6!STpP<j%sdF~7&h<)#P$;l*tXCV
za^;uDc+|E~IT5XROp)%R@i(V#Ek}B#y6Jri7c%%dYGP)caXRP>?%vkGC2$0cA93<&
zL_^Q`MW1)$$9nkegThwZ=VW78J5l$71{Wa9{%G};^B!Z>M6oQZI&fkz#b!sFy;)HP
z!V~|t+WfTa$s>g>8gs%w%VcZJ40a?a9`3s$%P60}h3*~l`~Zbuc;LcrZ>iop2x0x8
z>Ut|}!ns)E)+4g*Ql^TI!QEw-GT-4;VVK*akr=1VYY=el=%5+t1!1ciy=7*YohM*U
zPj|b3(nRhMZV?a#6*ZCFP8c19s90&I-!KJlHB}4{7Pzdnlxu42xuV#YNlo8hzRq<@
zf6~oK$P@O))k5!LMzO;F&Pok5z|P24O$T4cvwc&3n>}C2XG3RjG{-Ei-LR3u>}pBn
z*wPokVCMlFe_%qN_`Fi%7u;^b5$6)Z@t#Q_g1}-LBQoHPH+COnHNrB4gZm#%;vLC@
zw$(R&ogbx_DtpR6vgrz17S#ZSV<XWFFMeUkBO8}##if-Ogn_<+GkL~+X2ngHal0Ky
zF5u3ge$FD0D-GvE{Sv=6a~<nOAcL^{sSajCrPF?Wqua94wUgCdaCZ^mX=%mc4ci!3
zR+t>4hYhrq3k|0;yWKr|#qn};)jB0u-bqxjf@qe7Zt%h!X?5PQ8|VhP$$L)UJK3*l
z3J2oO0RnaTj<ODqG>Jx2RT&V2%(?xsfGJWb1&*LavvY@Gp}Q9B_R<n}QZX<eHz0c6
zPO7D_1YH}iFoT@GO1Dr%>hZ0eM@)E+Gfn(-V;*qNSpX|X_qTYefG*&b%c=uWbXYeq
zm5AJ4rPR^KEk*D`&E;V>w0!2v=#LYP4&+ZfX{J{dSVyaB)NyO*L*yq`5s+d{l;r#h
zrhKMF!F{Im)P{YHj#VH8x%5qtG9u#nBJ{ofqwWvJ?M)jSb*Bl)iPv^_##ami!i6wA
zqk6YZOS=h{OJ6tIOkGo%fcDmZ?$R7e07HspInP>W0_7a|9ipYtV3`8=TO<zzknBcU
zeWZnR5A+2#B9SKxzT!11jv@#A%0oL#>2E-xk}YDeV3svx;2e6>LWrAk>js%}-MmEq
z(gYpx-F<f%1?>ibh1-DoCMoiAA0(l#T5Q~>dPe2_JaAi>O;23ejF0#M+&;=Hu*1t?
z628QtO4a!o>=V`e{ZQUiW<}ntt_)#tF<wO!j7znKGrc$n7oDS}lk~If%nFs@hzVY4
zfEe1#Y{sJ_kla6>SplXzd6WC70z*p}yO?0X-AjF{Sc0IdbZK^kra;E$%2OernMM3d
zh*s|@iTnE_>K!69w)|2MPbAD#1&#zdVQZgKjam&aNov5_*@jbP5c|jedLP5511Y1}
z4KlupVwmud2;x}Rut~7BL;2+_kYix6<EmMN>kTR9xe^erbdP^-NeeG2hd9o3{}qcO
zvTi3RF>5gg`##Q<K}^Z<H9=5m;NGehXbMfT>LKnPI_%}pIf55uv%a#Wbg@rQLc0?S
zu6?Gf?>y}`$R*<@NbE5F=8Lb92KuJElVboOA+-7NuLeZD*70{I2{c(#b@jYv19L(F
zVEVnIZe`&tFzo!6Q4^E81Ba@I`~fgn<%(q$tL4xy%$Lcoi7R0`_lwIHEFbZbbgZ5A
zAUN-R-M?swj+Bt(Wy%>Dm!>+}(0o%uH(L#>qIx~56y;ii7#B;k!gz=3nZ<@CmL{$?
zI$o}K%~<oYChAHXEqlkonb2H3^|H4XpB!G80C1OWtQ}He5tauQU;5mp=&6EmSXyJq
zp`<rmZzlD&vF$VZL^3E>5%Ide5QYzd-B=<|)SbNZhkqj-CV-{F9(n68;KG;DOqiR;
zOn>d99<tqRYAelT)IO^v$}X@55-P|s8eLv_pF@sFm6|I8BGPNHA=3Hg+WfFb=+MX9
zJkF$}5>P)5mT{i2i?^5OM(AQ25i*-oAgb@iD7{F6nv9VyiWMHqlBI`QdFc6avrQ=7
zD(0{&G#^Ki*=Wg;j;ar%WGlqj$wqsMdTZNuZSxlfw6R|vRI046iZ;B7xfFJKDyG=m
zLT-PzFxo&j9P~ywMQ3O0M(|9oX6Pq{>FpN?UI0f3tG^77P>_GWXnB00{ApfoNjDet
z^lN6Vqx>Rw^c*=PAgjyP30Vw%64Tt`sf0|#sbuY>K1)tG>4T)bl&>S{V)VP0DR{KH
zM`ONAf{6&Q?#7Y<l~m!ahuS6*_^Ix|%42$Xc63y9zAde^5?l(gXs+g~jU75vI>D<@
zmn#^R2PbnGu9B^HdAFJ2{6k%pFpmjXysk#$?zE4|WGv^mx?ZZ<7y56s09|$VWk&X^
zs$E-_%10;2Pe-Fv%2qmP^K%7=d%jgV!QR6GC==QO9(}gB2j}>kO_h`%Bdzx7yx#MU
z5nQN5Vo0uTZ0IkD{O*MM1TS*JLSQ-%=XmL*QgA&ZmNE*NqS;zL^6JW-MEK<F$!Kr;
zImy=n)rKf`Anwuzgx3+E!%y$P#BkjY!B-x2GbSbJ_{*!aLvhq@<lda&v&g+rdSZCP
zU~lCP2=m2~z&cz+zOPU>yo!lFAeOM$!4e}aj~^f!hW?6<G2t_TD;-z#>ukjOJF<Du
zf~hagu>P9)rIuVaQ+WWvu#mm0$}*KpSu#1%64``&Mp0zhu#b9%7V`7nr!*PBe*M}_
zc=_n#F~$`CqXbe$W2nBc<d{5G=Mh+Bd}zsDDP|O_l3X1(s{M>9k*GJ}1$4+QORU|Y
z8@&{=t+J##e##CrSNL2)Z0TGDQDG7&JxdNx|4NsmU6DLIBsR1bw>a{>lff|P4bcxP
zZk^0uA8U;Uswd#)y8YhJZS(@#AM~oUQd&#>Oa{Vd#{F<AJ5(mX@0>Hn)eJb4g_AAy
zz6MjDXleDAnlEQ)ZB~##5VQiISlqF3mZUq-S=-aKZ4T_gdVm8mkMaCOrg8nz?LfxR
zf$5AEt?NTRipoCT*2CkO3GNr2cKgAa$P4=P<Wco{AN@FuS-^0gP8C+?rTPL9VS<yM
zQXSnzc*_DHVlL2pFOs*62kPEmC?7=a@m13hUy~ue_-RdQWRq_G6c&aotB!Bc@io32
zs-5?eAz5D`WkF%6Xhelil%}Z9<N6zi!$={vRXcc8!yvgGtp34;U%BTdp10mQKr(ra
zT0H$r6Y2t0%yad#|9&}j{uem}LQI_V&6L25>8z;L3F-D@y*~3sII9}Jd|{rq6gh}Q
zFnXpE`G`Kvd46n}FgDhv%7IRQ+1?lv_A<4=7{5s-Mlah*Rd7PsD47>3c^dq2hU9-k
z%4)^G?2{TW{n8NtKMbedm>Tc5VF=z_*KU+=)t5v02F?p>oIC!g&X9I=b@vJkVvI5Y
zlW5(0DDq8)MQd(PFB`p*wv<;2>lpW@VCTxgI4chwS8aY7cLhCKO4N>jT3%{Sbr!dM
z*f30B+fRBb($w{wEZ`$H)Yua!1WFlD6I`yfxnXhI5z~e_MSIfsr9N3Hy*5|VMIf*+
z5!Z;a`Fz<S3GHGQZhEx0bSlUzbl1yOu48GvNA{&=Rxb_QYa6Ij?;$Ctb}3h<U)?nV
zgezoqHlP|3KhX>?H2x||sT5eWvI0NM=gc<ZrmV<tQ5r5O!tq3-F3t$CT$^?%(3}<@
zcbFu{ye-Hqs--IB;HS1Rrhx$66YW!#E<Vm%%s7<9tzi8M=%`6V{8b4T&==66#CrwV
z)Ymp1)TcM3g$lD(GrM;u{UrY(4f(LN^w^%yncoW%-uJvEz3;jSa-sB>oT7OgP{GnR
zqQ!fSL+~!3Yx;kj<os{fC_o*l{P7DeUaQS+E34amWJrAdjkGtdYMvhgxqS~LCg_9p
z>idaBbATi9s}WC^R+Y!UOhBDSBp{qmfqZ1pQDvVm8q9=qVq<_K2u{MVvluc|u4qnX
z^Btw{H57;zJuB#5b}#Iw5B}|OciqK_QoQ=p?@6*B^{h@tU!7^WB{HNt1(-I@Yv%-r
z8g(nc?3!;n2V2!}#5Ar4&Sq65jt_|5fj<bAMT@g`quFn6f{4Q6dYevTg;hMQU!-NF
zlFND9G_pQ)wz`6lKomxoh`Y8?P~j2ty}CnJ<VI$cRG{PIPhT%8J1@94Dmy9-ww!UM
z0n+)KPVgq(GZV%M2D(#&5TY(JSy3^2%uwHXw}gd{iyWd)Lc#A{F1<q;nkBpfF;tLi
znFLcba2{n787eYe!|_rYjdZ8F8vu5ddkb05ShHracLixzJ||X6_G-q>sZ8ok)Vi}O
zl>*FG1C@^Y3|-gLpI>fm+c*^A<l_Us3<#i9>o1+NChuT=K2+d9C@l7Be-~Bbxq#K9
z`RNmz2J4VC|LoK}1sA>krCn^Mx>f5;_P%WSQQUJMr%HEGH;5U{U$m)wDuyHjc{vNz
zET)}5l~bkYA3tN2GBTyBXUI9(`-SF^tzV}MCU{NTO{5+Pa#C-+RwrgU$aUt7G0oa3
z)yrz3IMOOxQW0LeIm$msbV92u^$N5!b6EB?EZNKLQ~-+3x#w#!l4t1)<|E1T!1RPG
zpDGb58o*#jxh}O|ye9FVO43^5XAGpZEw1|>6&7+h(h3z+#>kt3wb>2fv+Y@Pn+hdd
z`B77xl@`sqr$gKAdJZZ#E&7uve8YXk+m+`-jHjOZt7mVW(ZU|M6Npx)7IXaa)B^{3
z+?^$*lu1MVQ>Pu_^9_ll0*Q_Lt4@D%Wx--uHTY;|(D^`5N%@1s*$TvcN2wOU4z2Bt
z3RAL7M;{3?S|T-S2?P=jwig(5t|T$`KxHB7;z^p8M%)x4-8yfkN~WMxw_8vET|&Gw
zZaOrjHDqC;E4(p(rK#T|FhBIhZ$}FtVk#CmS3uXB%Q}MnHZ9kT+$FU}U~vm?meK|B
zoA%i~mHs%%t}1)A%cIa%u8$&)J2q6J>StV&Kf7OBsk&}1v&kZbd2dfm!g-|@S~cEh
zMz3GPb`YDdU#WDk#Y{W``bb<NrzujlWlwo~y*ItG#qaW?Vkgz>ma}$^kBQwIRL#4p
zLY$k?VVjxK+*COf``YDEuX(Mf#<MxM`J?=BpXO0F!eSXQ=&sr!;!D8+9LXY;yz!3m
z$-3jL31smz2~~D38W3_JY#&bo7_#Nj6RS%8r<Xo)w_6yV<9W(+pBx8+?!Dl7Nr=K7
z$W0LO#Oh_&XR>jRn>RI<cFcnpH^tvLzT>4M)Oe{I)(yL2I!Y377Fc4XxsPYr-YMOc
z-F`2@iEvG3yS9;tl2JZCB@|3(rv5s0?YWtX%H-0~ey#&#C%q0h)$Mn?DYwhQskgBV
z(Iwro1z19_&<x%d*w1F_Q6a5t{c%O*zK4#=tSchHGec6e&iJ^q*KcR%&IeH}<5kCw
z*@hN3t5tg6PMFyF(g_-mI7~#y80c<>aNgl@t|eLRdt(pJ`Zn7L_z5)!6c8*V35Vhg
z!6p&qsk?!NC*+S#FV=*RQqM)He?2!<y4PDKm!F3>V@@?ePE3SPfDaPm^*rZCxmRcP
z-(KI!QU2~~&MYER2Mgv8B_UtK?^P;=Jy<xCjlX*MI|rRiO~nr|!M$HokfGoW*PMTT
zg{(dL(V7lCqIlq^O5aV6a&DOy^eu~ZbC)Oa1BQ=0(^X++x*F_iOY`uwb0zG9f%L_|
zRc}B6Pz7letklq@Rl=~Fq#ybPK`H`DtEddn16N|k4zLNUZdRO7E%YvJWfNFh&RN2l
z3#QergKCv4wTMuC?^Ubesg*2)uTSVXv4M~kbJ>E5ee@pA{ozXM(X-5(38bns{=@B6
zP0Nx^Od!Dk@y@N#x|K(LSQn%<Lv@z9tWrg|RZ3gHhAlsMYAX{*PT_l~$iH;HZA8wH
zlF}CK)-g@g8mg1#y3mia^jY9^TZ?R~^E9BI2G<b-2V8RP4HWX;$MH#8RY*f*hka$Y
z4eburx6;v=ViBi(hT-|)GbX5!q3Td5C*9iw_XeyMJoE6+3J;v1=u52v+Fd}73A*B7
zLV|2_0Z|eq+;3lV1HAXw!Cz%)hVGg|f(sA(&>^E1$?xB5s4E7hkh4zT*u$0Z^7ftK
z;@%A1f4^YMIoNo+s{8#h{$R^)iOf>(*owQqE#fDDlb((F#1q0==FdqHx8+mP9`*dB
zuW#Phghv#pm;CI2y40S#IA4l|C9k|GAmXI=NQ7+k;7^3Nwuue&0%b;@c$LjHH!GOd
zgz7WtqD}XT`=~a}Q|j~3lFUePW5}sQ>cy1peIByVOp3ZhsGJq-LXZ+^GMMS#_CU*(
z2cH?^JQK(xS+9Z3s&ofr4rFc(ef?&R#0+^Q->XS&?a4yq%1Q~+c#Wv1i085!q2@#}
z?d#&uq9KVR8cVgm&8<r(KuU{WyJMgiO!J$VD`y^*LjE+cxZOo`0tg?BsXVb%7WkB_
z?C!d2$P*JBi;~NuyNz&eeC_bdJ-4EEqke;W^dKS9+#4jE6H0H&d!kT;=^?4h0G!pV
zymq{r)?W>C_Bcf88^D*C2wcY&Wy<lI)4vfKmOnyf8VZUP6z#j>+Uh5a-I-xshYnVH
z0Y2}ly3-x#4tu4n&Ti1{)&8X9>KeRI$;g1GQ8wM!dfTFE^wp!7Q%4r&`cr0-q)%W^
zGA8=V{B|(%xG?^-+V~(zLJteyvb6kqB2#p`l1;BOGCm6A%k4R1#4&8HZ1sZ0f1*AM
zFpG{;Zg7)$Wf_5MUy^=0l}ry$4D$}to0P6N-IUbbFq3TS?8g{@e}qAubbKI*oX);o
z!Q+|52DJC>U#=T7Cc{`d-JGc5%GQQS!l|r`mb$E9%lO$m8D<5lN(Mm-tsrh)^B?C6
zjS}+w%mrmfc=?`##+ciP&L@q-Eh*iaO$2+IQJa+NC56VNbBC5P=lg3Lmy;XqI>yKC
zFiyG}FgZ)z(v_!DBlXMaxWWEv19(2O4*=xtczyJJt$q<Exg<3hu(&)klT<YnVd9>7
z9R$jafYx7d5M+PHGiT$9YTs&!Lbean<L#xh_Cc5ijpY@;#o(W|{&dQONE@@PkZj9+
zjov9#EavF~LcL*_c{c5N*cq=+se@{)e#Jy|@jl-1Ia`vmVUK|ne4gGc(%6;yVcPQ@
zc{$pj8@^mUg|AKM8zaQ&>!(yl`@4V0CQM9i8_&_>PY-zmraHlf-KX@w1i7DK7SQW;
z$4>9_9;$L3H2MY2KKm%*D-^x`g>xKMO=(-r+*F-U9MRw%DO*34EZ7?@>h9Lr_;$(9
z-zr1u-Eu*`s#Ehb%}6PBUFlhOd32C{o}MQ?IIwZ$<|*ukQ~UH~B8DXj+?2X45cJY<
zSn3SD@`YwR>me?Fv({=&v)<-<U-HcH-}llRn#_t;no5U}3^yU+eFo_fOV-B}RqqCl
zp2I{uPJKJ)HTei5UH|am`?*jnsUxh58~0a2lDVgcs?h5DZ0q#ZimMChkv=&|f7V8+
zWBD!5)q*+;<2S3O*fzGOf5}E)Z+-+W7&Su&b=*1yma<o6#HE{ppTiw`ldoyc9{dBB
zD`wz<pTlxaHd>0L>M0+ymbwh?e>weCU;jF-3;xg|fvzQ}6>q-9Jhk$zv8yjRgZT`^
zgV#5aL@8+-#2D`AAf4=pPF?h$xTs;fONu7nsJqW?FJ6gxk=e9^*1USv+PS^wh9=EM
zy*_AU-$4INlAy-xY|>nM;UkiRrUXwG@{;2qsQRks$Gn(Neb~so{MY){7ySH{^A{}s
zvJU9GGE)GqNA2r-@cS{tTau6C60x97zc%oYz`riV)h`ze`L51H^uxyb;JepbPo9_e
z)$<lSgCkhEtGln4!@e&*Dw$HN{M^@@gdD~#Ru?Qjh`;qeT_W`P=`wp3uI|m+uwIQw
zX;)q$`$j7Y^`A%;JGZ&@q|mveay1-^OM%#Wu{1ddJ~t!(L0rgtZ>zBMM(SRn%qPQM
zcI&m%U~M_LxYhR8fv4r}h@{#I-7yX;aZy>Xw`PPd4vcJZ5PEI%U;Q>=tAZ7B5N2*5
z+zs6%l=qUeU;H~VqG<7(yqkKTCD#$X3F@RqVZgM=damz(hk-?e^nZgvtM1O>m4x6K
z{9Hzo-l8^Oi>JrpU|fxFI6?S>s8Hrc2o+es!7b3M^dy2lA3vp6qV<hCyUe{toe`eZ
zfvdx&KS%^2L`TDBIQ_n`g~*!Vh=qpN!VVj);?$J|$+5*sb1g;&U|06r3Y8FC5;Jrn
z)&6cd5VbVnhl)!JS!gebsT=Kf1>N}O98V4H`Q%=#DPeEQz|bf*@tpmH7-%@9wa5jr
zVZHFYGAj>0KJuVQfxW4B;lc;fPnj|?sR-Z@EtSl;hcOeZns(33fmN%bbvOTzie3i@
zRBl+fJbgK$?HbRcln$TT8*%^ojh}fEjJTORQ%iH@@Nvh<FbT>XGaY$9blDQ}SSY5!
zUss|>i1z+G0ED=M@}vnjuoqTjB(gh~8zD2<$!t@cB+(aB&H8G?F{uQmEsAsyqZV2p
zYgrAbC|@1BW2G%qeyhwFXq{ne$&Qp`(Z<4fqMhzTxU1KxMwx&MMSOH{bb6A15#k-k
zkVv=ly^T+%Jv%t)RXu&n^n>O|cC`jUFqfsN;G`9%D{Dyz2%o1JFl3b*0Qi#W!Eb>G
zMq}#6+@-IboY#+FJ|J-Y&7r?CNj@TUnA8{(!N1T1@ECxH+}j#9ci@wWS-s<-f$f^L
zkByae>u%jC#RM&EH*RhS^3JFhy-R<u$Lt){s~VrKJMQ-h<~!>NE8!W2@Cz>oQi%z6
zC__0SP;JEq_TWq#6C{lcZymHNkfxWW2}o>jKMHPM(0-d`1)c~qfxKj7ec`Fd1~bdN
zpDeJjP=i<5+XE4_1>KvJ9XyQ1l5Qf)u=)D@3uayuGkHcLf|w2^e3Yao!KX@1#vlgG
zllaRNm7sy%xycYF1aA&2-lJcL#HmfI{BEve%B%F(YDepY<|RfK+@G;~;?CfoRv0U*
z*4#?14e4PuAd^Bh=?(Wtxg~vpLXHw-{3{ubUez%}GPbV?=G!t(6qZSfSFY!<RNpIC
zGlPD18rJiwo#!5;l>tC;5YVpxRgDtwA-2p5TAr?FTZYUiI=Jy_eb(p=Z4adedifId
zF+b10(mZC$#Lc@UGYLOn7nq@S32Jc;SB>V_93eta$b;RM<X$z{O(EoctN7BA%>#6T
zRvyiAH5cAJa=u%0o1oZj2UM^lxz=>S(3vY0xAFp<UTTr2*eVxJZm%`1l$8AB9Gx%Y
z1YrBCDL0W#q(4`8f%FnWQ53^`wPT4~*XtcB1B=bXEf@=Zxd7OWX{zQ=Jk3f>QQJue
z&X{INV^?-LvxTs8hZ98`XdhGUL#<2ZG*wCQuH|=MOGVyrn93x%K+qHtO#5Zs<!sK`
zpswh)8;Xr#D@%^A=W_dF{MlSP&*w9w)mnJ}W{6im@Oy<dIIoAatxOK!80O%tH((L}
z-sGsZUL?G8o8O32iSyMik8n-T(lm)Qr;Gha>9>KSJDGlkJjdn%L(uJOPA8DrVqq>P
zC<^#Da=c%7M~Qc>0q}VEbyIpIOuC!YF2KDi%cKl&#{Yg6V3#g{U9UQiqt3*f4t5+&
z=3G}F8C1hWV0j07v#RzMTXCL$NKq4<38g+Yn@Cj)9q#ToYXkuvH7rvhE;E`pN4rNA
zX<Z>aJ{^(^e-|dGRBzjECGg|n(}1WVg{AGMBK(%XtIRB;S&_KL=IyPDJ1=M^Iy+vR
ze(?cc`xQGYOYT(8Q>na=!H&uU9<Tejp|bTLb<~a%>UgtxsXrTEADDq{@Wy{*QD(1m
zs(dt9C$T5NmzPR27Ywjj?7D}?HeO=4oy;;>HSHahALIGSHq`b}le5a(Ng_<ulma3u
z96l*22J@VN8q91OGQVCD<~y*2rX>0|EQ!ykIng8$II*Zx#pf$$XF}dIrkH7Va7^<L
z%c17`4Q+s@K2A5$yGM_VjiwTi<KWiPTW>smE9fopmwtVW+WVRy^do8!BPwP$ZV=+C
zdg}F>;I~BcGh1rQ8UwAY%?=1HIDc?mZvmnR4&J@xOckX!nu3J|k=*7q_7?L!sgem<
zE&B$M7wQ)@1fAQQN*28d+K~VEw@~18`*UjR;V{*{B6KbC-Y`{sOMMsqR^_JihPMin
zb<qv$O-Gf?@_IqE?$`Pwe%AH9{ylb5kuy<$i>-h8jeD3ARL|knfA0_L03Gq_&;Gvc
zMwwjsb-iHvjUcFe2aZ96AM#$Wb|{SeGydwcM84O5_ZrTso%#_<P#?cHku*>IiQ?}1
zMaTa277aV$KT-Ie+`Lx*oh_r^%hv7o{W%1_{Ncw#i9a9CgfI5JU#~lVtMwNkK)LV9
z&D-j~Jrr!It`pOH{!bhUf&@Tty*~42#-PJL|2=stjQf*7#P{6jru(1L!L2NmyR7$s
z-IV$B>Gu+gw`74YUAG3sA9FqWbFQjvZjT@vS_3QkC)nlV-#K{w(x2FIB80wonbBYT
zk(#vg^uNvh`*nfl2qwG<{ykTLS-5_G;`AqOp@J=mHL!mJp*MH(-&BOsvcv@XBDn4b
zc0hN;t@nO_Y0zOF^WTI2Nit=G2l@A?P#*M$n3et{`X5*eDmB(%di|c;{E)cR59Jd~
zAxIeirF<hRKK~ZjKVJPOj=}Xj&wp!9<oCWQtYFhOLjqlyRrPPFhf)wfkp3%UDTw8O
z|ESjgnEgkmSD~N;h+HcOQsF<^3;!yeS?(9qw)M^<A^NjFR6vlOuCb|iGg=(%oJtP*
zhxz;iPS)&yVTW1z%Sr#1(Ng<=VLAVp?w@G?Lxi+Ov6YMeW`)o4fqyxO|2z{v<li&l
z*S6&a*U6m!mLK@hH76^$UjIea!U<x7TmM&C$-Mq=^Zkcrh0-~zcK=56Kgh)B-+t$x
zjO?6^(D}ErBk(^OPygZ){)0X+Kh?-?|6iv36X%EW|3%OLX+;kB*`WVb(*G&-+VQM^
zJ9hj^R@Hwr&wtMJPX<y(mU8|J9cO3!7w~rcN2U6QK$&2T5xIZGlYgRAy9E6q=)Y*<
zKk;lE;o<+IL;t61^o0xm%b>D+8~z<}i)KT7|1ZmE3Hk@I?{a3tPW`!Rhr+1_zcYC-
zlneZGz0RksE(2;D>c1rpRV~MH);}R|Fo6Aw0namnFX5s_5&l2W_#89GuBw*-UxkFv
zC!sD%k)(6yZ>{_!bXV_tLL-*r_FD&6&FHq@quvrt<MB?eAP)c7rjWhVwDUR3E1~PF
zWDx-Jv^j?*@H5=+NxAN$CkHRk`=oOlRP5`i$CHid5<)@?-*+ycl1B|5tj!h&tbn&&
zJAvp`7805e9Ip!c#o4EgqqnThCQi7ulAdENTLcgi>iAAL!{w>SuC>_|6FLPbVRY>4
zg@m5{*zNdmeBTR2dYrFL|4;-!?LE#j$X6%iHI%;(8lIJ&Q*mxM-#Kh4d1%Gfnax9m
z-R2l^0BKJL9tuz!NzudBtQv8GQ75t~#ebjCW-5*56fwN`b!C3(fGI;<BtbG&pIpc1
z($k#blU7M(X_%g0B5PE3pEbfPFWuHEW<+f1^Z@Czx>_>0kvslI)~)z3K3^gjP#Y0(
z8tprst&oX$Px2v<@C%qOoMWoJ#rGM`zy)1L2(>j`O%Q1851!nL|E2sy^a5XEBsKNA
zCc2Y0uC)Ulv?E>cT_neaK71Du0l=Z~TYMVETCbgmfS*7VtVG5l0XTgb2QN@esh~^(
zZw{!hyG}%6SI!InO%xScy3FO7cT$3LQKC+SK5uJT_`7)8MXpIv>X3DcGM0YL$Na@0
z5fPad+xUtb3|g{;MxV&AUkSvz-B}^FV=-#1SAM8)j2iRTb~=~n^f!5Rl8;aq;y5TV
z9!?Vr@WEo@0l_AHMNVr1rdtjy|5m8*jud7*PPE{e74eOwSj{cUQC=THM1fu{A4@CI
z*V*#!*hyW;2BBZ&zOPMVuAR9^f1;6-a?4)@Yh@fa8o1TUp-Z5)w7mH@Q!0A|Rl45J
zjp<}^e~Kw1-L!D;--$gofRfV2pbobX1tm0(SVROtx%LadqLEa5K2WeTAD=1^bC_9?
zq`j_r5TLP?%>;ts0Qdm$UTmyPF|wqb3usSp?>q2!$(oe`Tyqv|?FPhUbwYrgXs%^J
z{k&cX@Eie2PX3f3&MWV{W%_aPBaky|Ysz@GXw|D0f$0{gH-Gu8OkY=jKk5K<ccB^M
z+0E-Y3w^vr#DfMPTmI9y@;jQs-yr?(n#Q3uL$jC85m>8bXa)T5+*~uXigTCNto8r6
z?XPDdLjS+{1jPT`2Q40U{_&x;3-oS-npLqN%{q9-wvzm{oa~CB`NiT3H}C%sA@lUV

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/images/intune-generalinfo.png b/windows/keep-secure/images/intune-generalinfo.png
new file mode 100644
index 0000000000000000000000000000000000000000..c740cad9139202a07df709804270bc684800ece4
GIT binary patch
literal 17398
zcmeIacUaTe*Ds1XjtB~wv4FJ5SP-RHkWc~{gNi6cMFc5EKq*o}2py7GD5D4&D;<ml
zM1%;^OQIrVs6i>AM~Nhm5D-EVNJw(Oah%_|=iGDeeb4*8&pr1!&-nwglkD%_Yp=b^
zXRW<<Zk=|t-KeCYq@bX%(eA|2vkD4p2nq_TVibP{K6%cUeFa`tq0idF70SA`rhzv<
z`5$pOqM%TYS6=a63%p++cH#nBK|!Ti{<n&Pd~q50P(9+9TZA*xFCyAI{E9-DcVK9Q
zQRtP3?IuS1jm(1&VI36|Z2awx9yu3tkvm3DHT1&Lg|;W!Pq?mkJ9rzdd)+wVi?aTz
z9T5bxBY{s8wMKBi+iTspTx|C?nwqqsb^AeT=FfIVFYi7CKjHSFS<57^;itr`4TtPk
ztGqv-4uz(-ZvAj+<NBR<H-EW2<yiXCy@3?Ob!jNUabJ$}<C^31%U-&0T>EF;3!KHd
z%a0lPJMHf6Y&*34P6C#+)ttBoyiIUPIxT<wI<y%Md}(*j-&t{&ypivq`#|13*7V=p
zVboJmLY6Jbn#9YpiKh*7l3tuBbY|4INlcaU$S7gFY!TNWZkDlR4M9~$<db<)4%CF~
zNG$AG>X7y0Bz@n8#9&FkY-tuE%`qO8aBxiOC`K5K6OK8_I;*yyls}`1>I@x;-6U$3
zG0BmN1RNK(>@@c%vqO)(@=!KE8&49(tBOgS2GXhT3u#L;^Q+=Eu9tMrt#sR53w{`w
z)uAWD%Xs+I)7h&7Ia=~Dzb<RP8IBrHWPV#Z=Mfoh1zYZQl|(MDAPdGRtYuZww`h^M
zq!^EV6Ps&1=Ol>{<)I^Gsyc(V06RY&Xb53BObrtBa@c=W56Aq~m<bbvt37IdzdQ(*
zO_O^KWa@OdVqOCiso#^gBe8o-uPuhyiA(;OMHJ7C%3_`-ECe#*rbQ>^jBYD3FKeq_
z-W_50*q$<BUV1Qfg-h4s1Q>4b^@$owngoqrEK-%cU#8#+hYQrcQG?JNq!s%0OL4}H
z2O#%hl2dvYX8EfcmNhlVf{C)EgDb38^C{rvH+7G>pEAmb=RO0=O~`JJdo3;)c!%~_
z*Irb+vsTC4=wywS#YOZxOHHHJ*w}8(kA^8dT7Oh){0U}wtS8(=<K7<Fq+wZLN|KKu
zXKX@tp!Psr7lhzc?!pSBternZzuj0}lGu|lvyB^So=9SjOrpir@Bn|Fsu|OU(Q92~
z?1d->0eiS?(rfV=or8pXTybwj>xg$R>LZ(dV$2hoUb}ZXA}qB+jG`z>VOM54&R9L=
zzmK~RAL5jhTK9N>?Yb|b5<XRYDSM5*$=VWU)=uB;e_e4(e%xJG-ZiAbL%m)9P7lXD
zq{)n#n!9XO_S;|m{M<csB?1L4s{Fk8M7NR`BXvq@o#Z-Mmy!}>M?HjIjVwoQM>odL
zF^~7Fch*k3@SyY{f`qgl6AZFrqOHMdLhrkoYURD}52tih<W=q|wP~KOyIHjL<*AVz
zbm#%==vVz2T2S^{ToAN~;>Mj@?Uw!2S$AJbWr6`sc3ROQ@y#*i6_cX=g#4HsSDIy2
zWIq_s2uKs}FYsE9EAwFF<P>Nn_zW?j#;+rdD?2f<0a7%*5W4|QQ%NgI?^+%dwFbGS
z9T2|B9~odhu9`cIWE{HBd=Z)EleG&C=;!hydrnSw2te>{eEg>2ixJjeL96Tce>61X
zB(2Qcs8Blj#`I>_=!9VHFei7TTABrO_2r7HOQ8>uTuYUmRXiH|3!2r%+6`6<`x#HU
zw}yhkg%3TA(%|K?Dk8h?^AC4SdPHi`*Vur;mg7U>XW@Zi7Df;{@p<GU>oQUu)vY2D
zU)5eC*hp*gLe6#iTQ7gE14InjQz@7pW#;tkx_(eQl~vi^DXwgZQQ1^_E&3{f6#NT)
zws&;(@-nyUL6FfMa5j;_py-xXA%`L}m2*x}%;$QrFD-}a%g{Q)z*i+73p@p8C$#Z6
z>)%xdxYg|iO8cGGLz=AyO)uVmeto{yQ*0d*V8p~6#i&XM4veM!;7KhVZv2b!j{<&x
zuwbX%LTS!`ZJrprNi=xu;yyQie$3OmxgJZbV<_(}KJLonMb)mBYDR2O`OXb}lHjiX
zkEA4JzF!@RZgbuLuCG^<9y}z7q@#4UtqwG1!7_XNaDaj*cAaL8nlZ%(k+9jd-ZBEo
zAK#IN30=y>IvNp?QdPwY3U5ecKOoMxR_i4drR4##)lhiYk!4Cxv~D?{SL9j$I=wr&
zLEXpCN+qBzkT9g8TDo@5cO-|mtNEA}<P?1BQ&L>TEC-~cqr>p+y#7q_o_85T%J_EB
zliZcqvo68@ZETx(XDk%VLkmqZXb@b;Zq9s-^?g2R7hgq3SS8Cf$V37rrN+-492v@U
z2q>{%=+o?_G_4Owd6x3(=D@oHFQ7}uiD)drIyvR){E+)M>%t~y(&gG0oVaO_yD{52
z-dN3jHzx=Rv8{tS(^)sE3ER!BSp@T9Jd10QNcuY3_!V;xS~mAw+}KD;X`VoNVPpt{
z!~x-G&o~-30tkYKNh#h!DBf+du8v}m;BPaPY7m!V!EV6@y%T2&9P3Oxp-@+f<if9T
zaP-E)mRJ?bQ(KqtRa+F@CGlL4g&Le4|JnsRAL%vqN%SbOCn{^XE<U@16CXhGz<utO
z^H=8;#G?8x^Kz{#n`#Nz@++AG(7cg^O`^?UVA@!%osO1Z_z0n7(sO&8nA0Nl%sDk;
zIqCbpy;$J>?uiR_nq)4n@WSzM9#<YMwc(k~cIJ9$Z@)oAdaU&lbXQ_E1%j|n&ZCUe
zRF{2pD}R~#nZ=q71cd+mi_YpYuacEd7<6GpF?pF>dQdL;W0hs>(e9iciu*d+`K(<`
zP~XL+=Pfgpe`vLL8}3a>LcT0f(VT8<CZTk7)c7f%&v2c(*WFIy=DkMjG*(o*S=SW4
zQVM#|$<q*j9EMn?hvu^_7|^Qm{gWcF62itTfa=jicJa3+kHYRejRafiC+<!S;?*uw
zF|Sy^@h1t(#a?j*UrCj0DsQkpw1^4NT0v^{KWHu-(qvXQs+3|<;xuWmBE6C;xXU~2
z?lt~I;dj^TE=p)JS_4>IBYXdJ{D!ne_RV+<BPm$vZ2-%JWw&|x3%er@8h`U}RQ}6b
z*UQjkAJ4}!u2S9F!0}CSce!d>3-;BUvY<2Zhm1C=eLNpe`EqqHO(~+N-4?IL=#8{+
zq1-!`pc0sL2z^FqxVD&a?I1WI|5vzk(}B!IQxQZBe&3cw?VJCztIom<qZ5vB&nM}9
z=W{8EfvSdaO5Y9*yXx$-s#o({y${&sUFKy;0~-nWjgQ-i5+@mNj4azEd-pN6R1_OX
zif|jsFB;#ya6{WBK<scpE)-^dHIdCDH8^n%%py_xPA0{TVW`3cC)9X!0wr2&{Dw8x
zVGsRAykY=+$~q6{;Rrw<^YrDANeBTZIEaKhTdkg&9Kjh1)+6*Vr}7OGbuhbD21}bz
zq1dL{h0<i<;={31*k-4DJF~QC!JOnC*(6wYUr&<PgIk%0%u3&rd2{2KiA@DlvK;m=
zzZ;J<HR>+zj=;q!10GR0kvYBMbux5hNf4y^&R%g0KM!vF^>=`79W9zQe2*NEE%3Me
zhY{L;i}AW_6eUe`v6UPH?L_q3D2D7hw@|gx?n(*=0qFKE76h-m4c`MaUppn9E_(u!
z!{?bzx(`bBB(4UU;-iX_dzAnjt?<_Rm;b!3UqNu+J=>}Jz_`~WVTy#e=D)yK0d350
zi9TBrPXixcDo`Z2t<~KOGzazId(IzGltXmEEzoTj(En>!3<fI;su6;*OT}V3xJEv*
zVVD3Ehrw7$&&^9sqnV$%;`u?1XHw6u#Vu53NMaA2EbB`FM;$3!MAslR@kq_@Q+r(Q
zj3<KONMzX@u?#5!#i22gI1JiS$1ZlRkn^D*)0rDc@5<Icr-*T>)`63w#C6tT<Ji*M
zVPsjA*a;I_A6;`t&eLm#;nkpQ_4mwmF0~0boXgrChwX`^y&furj9<sUFF5$_q2wN;
z;B>;Q=&Dkler6%$S&`il{!&o=H1}%U(>TmwoqcddF}mKg0fTAir(IKBbwNI>791ul
zreG#b$%ngIYl<Z0z^oe*owG!1gW{Ss@EJ&t6yjPsmK&5pT*u-$BN(ye7ynt?MUJHT
zsQC%MPf^<xOCZm6wU`y=kiz}-Gr3t1;(-_?0<qoCW=j2MJbYq<`DGn-D)orTx<2*2
zNMK5)d3o1nqaySI-NA6p6{RfO>yQWEH}Unc*2bEPih1#yvfulF_c*I-*-U>0{pPW%
znvVToerqxM948z;#i`(e+}G8x!Fw!z`pX-q?dJSf=c)>oWGj~``$-Ojc;%YbaO^j3
zunX~T_8s&i^5Ih;bv)gEt8T>Z4fz`g%2a*X-Dlr^c9F9|8_uF9Zbe#CDhyLW8uYl`
zFHPCRKF3G8i&J1bw)zdf*!;f-dV^Kuo_P0KB_RbgyslXUKBSQe7#TBvkrJ{!?+apj
z3moyVE4gRWbz_tk+$p8;xo$*R)Agu=<Zl|oMD`ZB?7co_`U`v$2Bd9qNPW#ES#^ZP
zBQgnaL6%$d@5@@o37u6Cg1=7#K&Dyx1B&Cife-gU8f4N);YUXoTl{x2Aa66t1FD2U
zH9!JxJ*~O3Bl5+J>@MM@=id7_Ki>molh1mjbWYD*tA0N_Pg<!OulRe<M&ODqdxNbK
zcZZw3GOV~n0Ua%3%$G8O2h2kEB~t{NG*K=Q)0HFFpkT1>=8|t)zbp5(3|rtq#eej;
zT<Kpb|LTUE9)+3vHi~J4YtSN~tsrRDO_Y8tNJxd|{Hx#ph-sL}Q6$VEdF!4DnF2}7
z=i){(S%V{*P$Lh@R%Z4>Y&94zLh>}l1jnEv)4#Y|MPSD1<D<B+NUP8gJf|e1775;6
z#XDGVw}!&);!FDZUA2JnKiXeLOgf!UD^2OCeEn)oUso4zYj$xrCuao3IlEpr;_0)u
z5&9RVnWC49SiZpg#1T)$cn{A{{t61;fbFWgJ)%M&ZhDs369Oon0eou22Cyiv(m?Gl
zqv48P6)(CGF#FaD8^u~KxqTacBl0{DQV@}kybX28r0HQQ<&&#BgJ#tnHS15$cufpu
zWj?X@M<1}L-Xz}A+?Am1?dd}2ke=7wCN#pVds$}m6zn2G7%~GEhiMLXP|}GWdo8&+
zA~ZDJOwC!XFn*Uzx0#UUV^E$qtFx^`=gghJdKkOz)U)MOF`Ijo-O)o^Hn-~>$7y%f
zf%WHZ?nk6xD70N^R$SwkY--l9{j(?*apbKD>3Z#00X^;cO!HAK-Z@q$v}@5=yPanB
z5htaXGDx1Tjd}}BhqMdWbDZ^L+p}PIA!6bTV=6P}l!8Kc+mgYr@YstrT5!gbiev5{
zS{Q-v+>Fe4KH-WwvG3dlEDe6`C3x$?41Z5KHd$-+^W!z%mg}y0;x6|2>1fzKv1Ywh
z->Je%ITkZUk9jp>cBh11Ainru+bxP^a#Hk}Cwkp;*GZ&Wbv)W?C704Kgj8<2dD3nw
zekC?|pHR0e=#`}m>RD4fYyDH2=A_l3MPg)#J35SAKQPJR2EO8<&myQXvi^{oJ?#dy
zMx`jd+oY6uMjxw`^ay1sfzpJcHwUV$U`}XB3DLHZ_9<${X0J!zSk*($9R{0oAxvg<
zMeA1FxPpQiWO`^oKXIWE2wL+m#zdz!yw2pTSN;_Eiy5e<W38|IPL<ToINfddmiqYj
zQDf9|)TQgzW{~tsMXLuTl>0A6xPSTDaX%c`-QF^XqT?xM`wf$uW7l#efisa9XHCBO
zWK@#^k;Q!hQzjm<YF(CgQf+5Dilw{IIYqNIA68ZzM<|%$*6}JDJ7{<JJ4V?lyLh7p
zG+TVA6NfQmL}3i>F^ltiqrgSndR%NiV?~>avl@@W+^Y2&a26CB2?tR-9lJIvD6lRi
zgsvw*iGa<J{8r=k_E>$(=&fU@CdIUoNgtg1<^k4b<<`^DPJ?A?<yR!UXKSYjP4!ZH
zU)-#}=QaPr1C?SdwDr14avy7jzQa#M+Y3u0dxp_QP^<F0Z=ub!<5v#9V98#OsoQu}
z@8<8I-z;h$;JG6ql-@%jU_?&+Oi#*UZe~Mrtcp&wS9%*EL<u=&&gZN0wh^!V7D}W1
zh88kVU`CX*&R`RfI=@1x|FyRcHU2BA;Z;#ElH~aeS~PBb7^0w%y9NLlwbP*CyIZ3p
z!)i(STS+KF9sr)<jHqn@n*)M_+`h5a`tF4os*8PnhX#I&vWEIIIr~m1OHPLlsz}nf
ziM}=x236OfQ&_r>{?LxMxv=zc{#<@N4$}~8xkxA)O;`RF!)>=1VN4abJ|rHA#dL7{
z{I>0NBzxI^jc4^mT1Ap~6_$5X?GQM1M6Ar=L;3OB5`4W8<ymzvz4#6nx)^JzRWh7T
ztMe0(U~J#IF+}gI@b?*~#_m$iFO+-jOm3VtBkF?FP>S1ZG2;*Pp=hsF3Na3!4mCI{
zPR5SKDLO1FH-1@j)*v)x?N}wu=(BrjPouV43IECdhaLQW*?#*OTX%(;)u#(*(KDy~
z%1Ad31UzrKYNT0WVFmG}mwY>)yGcM(=KHoUcl(}X!1~k#YM3eg8Z=B~O8NZBGClf*
zA65(1pz;&?%d>!@lIU6R?%Tp6x%cBpc;@y+y-;A^oI|N&xJfMvPj5nNXFJ-_E8}Md
zRNHadj^)7LB5a@GTWZ5Mp*q`k@%q?^#_r;7(IGXM&Aj#1E{|~|j=uPGf$#z91NC<=
z@ZZu`ss@KiKBfT3YH<0Ze-1?%CS{)%G~;K<;}+QCbPV&U*oiE@%2Njm3=@0$6?Od&
zcMqlvyqA0$TFj(1%BsWW)+k(a_2+{`wz!2fv6In;hx$uR;sr=H<>Cktx11_0Sm{*D
zp)AED^~9e2J+Nt)<vy0un&P~Pv@VswCHWYpsPALgDtf&Di7J!`*R3DeBZ@{oxH7sy
zaOck_7-P++dY}U{g{_TAV&u$CV$y1b*Q%|Nlqh(BC~h``lncPLFJJZ%^{+88<{Pln
zWB#h*3D*epr5Q3ihs4YwwT?)Hr%5t4@@ma1VyGVOm|1`HAZ__M9=~S(OHfN*BxbID
zzH)f@%@6Nrx(%+1gH_5bANQ84uZVun>WCB^DOXC<HxN)L<WufH4|~pmj;mg|S>7aa
z2!K8kY00nw7J|WQLE#VQ>yX@|{%Il#AckepIav{TsS^q3MJc^LV6rttM>_xXooA?Z
zVw6NRQkX38DexGHclien561>PRekJ?@G;k2yz(8LT*E8?pv?wB!JJe~i~K54P3fud
zw0=~R)KmR~-t(#i{kMDsM!OlYA&(!mug3wAmv>{v*(N}`{LN*Q`XOB3KvnEKRAJm(
z{?*ehBxKIz2M{kwIX&zAFHr7!<{v8BT{iy%%EPxL{e#~<kNwZ-O5G+$>?xWOcHHP1
z0MA@91VWn$bDJsgNRIS4xt_F5D2F+2%77JG5&?0s#HGHDSe6RPrr*9uA5EW>f14{0
zf|l68w_>B@LfJSoXXVTnp6Df?S*cu2`lJkWfu^EDi~zqvic{>mqr1pvUtOAePyBi@
zdXiYbJq|r$JM_zU2E-V__qfhObt6_zhWfYPTP~@+@;dnbc;fhY)T(O5yzjg6&C_(t
z-?~+R74|dBS=nsqx8}BJg!K3u&uPdkZ260=5P{TTprN*k7<$rQ98Spu*Iyh|O<B~f
z?05+o12Wn%9iZ&?JK)Es{gp_rUe~mxI_!00RQ&~=_Vc=?19zKIN*&Vfy#VD#4^fha
z>mbp*>l|!3i%N2zI;FdK3XC7|@&FrM1tu`0{sJ$sQ6Vgcu)nafAcV+et&_YF+5v=M
zGJG(%+it^`!y(_p!rIHGo8aWd**B7rw&;T8fG-~HlnaSHtx+Dji&Y7hx|OLZH4xty
z27qk2M!&JC&3%8_$0B-r(}lct2bN#aX*u}x+|3w{mViXl_~h3@zA<iIdcR<K!W%d4
z_{9YGusY@`U~9w*;vQNsempUXwUNSpysf6hSEAXs@^Cy5H!~81$y@rAa7x$YK;yec
ztHd7bYstU6CwBnQeeXJ8{Fx+&#GZpOkKP$;r+%rRcdrWHkd*Q{dLpR0g}&bEr=G9x
zLGC}%dRSLs8OsCkfQ;P@Jz3J0QQeqAV&@~A>S8$(o?_~bXy8YB%BejFz+1j+7~rZ-
zuTw=H)?5`f%W3S*>Dg?+a7AS#^=Kt4i>p&aZ0m(eq)}qjGX?V|$sI&d6I-_G86~-=
zBE1_F_FYFj_cBD$T_B6ZT8qz<r-ci;m1XEyMXN0)=o9?N(JP@=-$U>iZ9reSVUVAC
zH*2JXL6SaTE!R<{oSHACeq`-6lb1ITVl7kpm(W8O6`w_V7-|wSLw;!BD;+p%+_O+J
zT{;0e+bfGag*~MKXR3?N{-KrLmGZ$NvGuk2N-q6vt1KsT!7$JuV}>4={>3Ez;IoCt
zKMYepU`bSTBbY(2$DyPP|4*9T#<baE{NJ|?0Kk@v5~V;A0&J*oX&aynC=Q?)*C?Nd
zRw;D+NGp84_iaYu+N2`kyVVG@i-}Tr8~!6DQM(grsc^|0cu;O}Jb%sCR(P%TBS&Gh
zo~okYmJZ-}KmZmqu+tf{<T){kC=`=r;yKx8Rp}+@LR<pB1kofTfJFop2etA|RrZZQ
zZbPiJAcAL!96ZBb`qfGLHRhRvg-!=6%5lC6iRDSx;l8aCo7?+BX$h;}2JJ{({hgi(
z;It(2^vRJ^?+4Jap^710K}|A$oWMV|{5eSDroYJiVb%_9D*EpGN!69Ns?ZoKU&Xc8
zPQihH^0l>S{SH<#3<9bB8oA$6jipGqwfP{r=M_cNGw7@6&^H2DDus;O0Q0}I1-UDc
z2}vl0+z3QS_g+nSnt9VpDhd*rWBU)UtI{&@wc?lC8}Lr=!P+aPaT_lyrZF6tQ5+(p
z^*}57lk^-yBYL+sesa~NQ$XbRone`40`?h{It1z7T{AhFL)!c({8Ib%18IgSgIY|V
zKTql!JnUdS=W6-+{+=4C$NuJeU!2{AUKs?eO2Jh<!482{zcVh$97#>;aofEKucxB{
zQFwLhA8O674G;p9I}LY+KkhuT2g!P!vBpzd!*{9Vrt5|ax3nrJ$}5eN+b_Q&7j7}#
zgw{0?T9R%hyhuAbM)ZufAgZLsdZKkJ^WWIdqM@n^)qngmtiIdjn%3f^qgW4s`dM5;
zs@uAk8H$9+7nUu)@PL<=!YUx^4?;^$@~uo0yZaxC9<V!PYp<35_G80*lx&7de^L8Y
zf8|5igBz!n?Dc<dA>s=$ZAbTRTGLw$Bn!5;TKLwTbJafYRBn=3C~b{H>`g3;(-B9G
zigNAu%67mOc3?a_8eJ8(|04uGN}GpD&lvAK8`FU>Pa_zvecC9~!%pa_teQQbYa-F&
zARnIkQ0-H<wVZT$_EZy02;rU8HMu){CuCCEoz!y_TBIZP6|GeW+Ab&Zzqb50!8pFO
z8E-veEzqOa%D$$6$8c7X-1f<WASdnkLWFEVO>VS}P4O52x->+=v~snZ!<{{h&rmfA
zPv0BUV7Z^@)7=o_nB=7}C=c`v`~fqpoD2Xf|00k%>l3IxK-OWY2IsuZtR^p_E-?R!
zd!<K_R&RzEsKI%3yELSx2f`n-o(*}?hW4s4u_YchQi!nwB-5?i4;~PAYH7BEUW*fE
z;YG6Q_C?Z1P<E^Ev&Xo*Zp4<x^<zIzZ=5n;W2^vO2k7{tH(B59`k#YJDE&+(v78j|
zN;-1~fs#Z-&wxx-uN$uIncw#slVzlM-n(omJ9tBhZ(R(O+%!WE*6G$4LdfYkY<7Fq
zny4WPsjNIfz(d5i1{cNoc$j}JB$^1X+<vXWnS)~$KcIrUu;hEda(@_-;NKD-y(>)!
z8cKNvdLjDVB2@Lr>%H-t;dss+3R@($;0e@!^1T$awrWroZcyc{o=duINv{dtKp817
z)!L12(!axe>ml_TA*eP-^$WJip;bnr|2lx1n{+FsN};2UFsJLKZ<PL=%xM9=y#3Y`
zyqM0OvnO!BnJyevgf>Rnr;D9ZdOn_WQn|yRJ}*6>g{0|5C}pF>W&y1g5_KO<|8Nd)
z0^deaQgCbi89w#RuS~_q+*5nCw-NY;oAyNj#W-i#jCjkQfQDlgZ$xT-+{D#WOX@i;
zi5w!?XY$asli!W>XTF<NVztc($le)be_db4iE!X&lKShjLuxXMP&3mIC&?+XuQs4>
z4{v!x(tH(f*mzyZ)X59M4PM*~ZzxE83$1od>}i%Rq)i9y{X6M<nGcFvF+~r9ZO&nB
z+-1#2F?+P}RWk1<6`lxIXZgD*x6&H%=d2M)XS1$J3OT{?%<g_mv;p3VdS>*Z2E0SW
zfZ3lD6mLsJ*!@6&0C3Ew*L}u0{>z2LzrpQ`BN4~C_5VpUk6oXnrIp~O0(bqZ)Bh|4
z`JYI@Xq;jbi49Y~?@D9br7;9dk(4d+8+Gq?rpmGDz$H&#Wgw<U>L!kpzz~bGJ>t(d
zOT@2(4g)zc#XO)#%p1AisM!kNr2mH;oqBL|<sAELxFa!q3*ASN`w1~$HM;b0EXULA
z;Wl9lq)6XPM}Uuf#zTfCOQu)U!;xjgdQ6Sbwcq@hRbKIsg%$<d^4gtdt{qS3j<kAQ
zl!F>;hPw+8wqiKCl~C)XTHPrZJ;A$0v#-xBd``Tw34rQ_uzdMBJuw$w9{TxH%*6}-
zY_!fzx%^$@>B{N2s;K>*4*J}xN_}_EdhPoabRpI`t9ayvO~5aHHVXNw1TXUYoZ<Yi
zi(afVn!to_x2e;p@I6$H#|A>LM@tG_tB}X@pwzwAlP~TP{>Pe~FLihu-A!k`HM3QT
zZKgAzDy6DPJ?bXCQPzT7BBR>o1(6|VM#A_0AUH+U7P$elrr$NZd8Bo~Tz}8N6|fS4
zM(Z`dB6c2`UWvIlMzr|rJ92f)L6z>6XN9a1%N(@T<%a~Pj(k7uDEgkq4l4%6Jf^#7
z@*STWZTW#W{>RTmfV7je8MoLVBnzVHW4KvYnU38(RS}0gpCg>Z2^sVHs}*7tf#Cs#
z7L|~tN#cfv29&bGwccm`$CaKaT)QG)98j*YSTqa-9Y6nrcjO`0-zLfS??W1+v_*p!
z?EHU$QE#8?CeCX9pZa@hz^6$6w;kjFO7v3pr&g>OYxYPQ-zgTClz09bT1K2DB10*q
zHElouB`)FQpg56PObLpYaC;<&BdsS*sRP3LJ%0;Li$H!58`1UZ$RERXlIyb45s~qa
z{_OT}7py)(n@VcUVQv#2lY^l<93a4A@ePxD?Dt*nO6if5J1S!IFB-*c!Ne0lalPun
zN`w}$=b|_J=ILrJ=X&c7(ZYF~sRb-~fOTGR3?g@If3G_u1!VEsUD07Px8K*@;<)Z2
zuyNw!{{XI3B|=TJ=8LbJmD<;$_GWZcu0FOwW1f@IMVv}UHahla1XKY^Q{Klo(Ncu9
zXZ-cf|E0ghc`EfLL!C8c+C&I?bc%wuoGd4iG0iUD_Ar@jDGNKxdI>V?yWn_XsM`kJ
zk0{9@Q2Dj#-P>%uSJ=V9mb1jUQu{{8Z(X3_1C|imkxk`b+Ss5^opd8R#$a2+SuIUg
z>{Z<MP$A5?milX#*gwj;BWN(AU^%zb>#6;#hN<2)w1amA-efs$%bmX<7t@Pp6|D>|
ziH{*KRyrz62VxJWJU(Oi2l#T~$~{v~*q@xXcfT1AJJZ7z|5E;zaB;Ys`@xj+dGkoN
z`i<s3s(1Vz$ciWJmzy8X8FeqCEX%pevA6geSRbybu^y}1>Xn^2Fd)s(WZ&jJ#FmZx
z!RT7#Mn+ynXNgwq<3ro4cQo^jIwrZI!TtHDhFZGb?fK{r+(q6!@vHn)8*M%28%wu4
zHIGHPn=u<GqVkk*445Zqt6ujBHKQiS0Qd8=fFPI3*_G7u`n<}B_YqISiyro=v$`j$
z-ou}5*qxRnw9kqCQqZL=sXG??n_)HMeZwoXhJS9sIYh8t^<k8jh6+C#^MdubjGWIJ
z;M;w$rhW1IP4HZ7euu2r*_NQarifWlR+Rr#6t{~xY)RU>hUV(6RW6OQ-%*@jAq_N2
z$2&-}khs}HsJKucOtEKf#$`Hw6K|V1PoEWIVM@cFvldvP_QY3kulK14QsvNdTfukp
zR0f|q;eNS@>b~!E-;o_DEp?|4a$%u*zmCjsHl#8KnWImjzcjx?eajq1rhIU&WW6Ag
zInBN{Qz-gDuPiKdnQZ8T(3pJr_)~pymNR-eGwvXI(w$*QL}~RxDSRi^b5nLTdbtkU
zPqPj!$j&j#uTNhCFjNQ0rklVf%j>Yu(CjGHD^Ar`e_96(8q1|#&+3q+{2;_Cx#ws}
z`cd=|y4%;?XEp1B!4^7-8g*Tje-#WnN^;m)9uM?<%uc{)l<+)Ma3Hi4_2>cSuaRay
z%qy*EbiOlLm6fr`i$@>YbaoRVKm8oeKy!@)&wZ_9*Ok#SR(N`yU?S3PgAlHTGcPn3
z@m>aH&lNuvmlQCve0QMAk{6r{9*z4Kr!ysJAM1v+r$L#l(piotj2(2gv+Gth@9;_A
z7A#;%FPTqg4aw8*v-*iD%AXm;pN^{>*<l#0dZnZOP&uiDWAu|LJGdrGWWsGw`QjI7
zHierVhW2?G4l-7rS>VN>ZOlFV9U1%HpFga2Agqd6N6*gUc;iY`vnukv<F8t#2N`Yl
zO9s)Twn#Sj9IcNo;FooLC4G$oYGwL;v-PUa001V^vK-%14lRortH;cbyT=vm$`(@J
zFWd8TMY*~4$0rj~mMuR<S=cHj{k`{9KU|ZUiW1c~_C%af<nKRUT%#L7|1V*w$TYS@
z*QCkCk}vo*W_@B0hVidxc538nX;RP1!_ExOq5XJJJ@VfYzW!g#`L$E;->gx1BzN-w
z9(lX#%fH6|7s&nYp*Ac0d!pt4J>7p|>fztXOu17>NchI1^s%ut4<P5b+v*Tj0>Pq3
zS1Ujh|2~?Oq{ybC=WyIP5=V9}XJ=cA{i;RD92RPQOhG|a4!wZmI{>>VH0u0Fk9@C^
z`2SZz_TL4k<;)p`$O~7DO8{2ff#?FOye8THw>tb?A@aXKd>|K{?}ab_&cu03X>t!0
zC*{ctd<wqU{D6vLvFtkV$=6Mr;dMaTPF`KK@Na6$fjn&g7!^@3{s@+!qvysY+y*3u
zGe@s#m+wV9aJc1%$pNy((FYQl1+tj}31k+#oFQu+1Iy-d^rVl*>z@JrMoZy)Ae@m6
zgvp$q6|^9pEJQSjJ#ZZ27>1W4E0tGzw|VVN41YrcKoWM7yLgN)xz#|H(qx~;C}3IZ
zefph?h!zXkibQ-o%NNI$UWKv*7|v2uQ`2&XkOqO#p#qbXx|kqd*e@j6vRJiD8ZI9E
zxv@^l6GCdp1JJD)Ts#IBi5Y`dcV>{+`O<sm{@BHc>4|9CDoc;uCAKyYdu6mra?LTb
zbJ=P+!jBOSMRYz`OY}&zO{kZO0yBdbpTp2!(7D#is{OK0yamq;Y_~^fh{0Enb3b^n
znA0<i6jvh~#QSiQlv&ckL)pT|BPK?bpL{O2`7BM|99>T6!1zxpC-<<{z4K+M73rHe
z>P{UV#+FepxY;u1G7Oh8QC2l`9%8RU5W!PyI)Qh(T9j*uaWoLDg;DVH&u6<bM6do#
z$o|32j`2i4AUkE`wLy_Enh2jN(NCN;OWe)yFOlXpMFb>Fi?;4fyq7@$wRee3ZKf(9
zgo33H<Zz)gjITxk;w4V(UrXD|z=aamr{VF8-*gS#*qCE=-4=a?ajFR1DY42GO~fq@
zK11vbMw654TY1gzpU;X%-)}drJ)2i*{b9c45=e-kM-aY*T~yr6i18iTm6~f-*zEJ|
zoL8E8C!;;GmHUO&#|pGBA3v{f5_6l+r<qZsKT20L??2_<yrLN2snuFnKi#^SgB&B)
z&E}Mo&beCAOU00C@Z4P}F-2UYgS0Lhp_A4*<5~~q)kz{Y7GhiKvg%+;j06=JU8mJ#
z2Fb6H&Cne&>B1v3@rc>5jqOsQ*nc)<`jF{>*O;oRWISMe%`uNjsCMqOQ!Zt|3M{^#
z4l|n#mF;(e!L*eb9m132*4g-S`;Qr<x!%K?!^OnFrB3-_+2mZ|rx=H)k+3%@f)Y+t
zr56`3xy7}LXhLV1fy>Jp$+bq3gh`7cR84nkby-WW?5b~$7r7(WisU4UOI_9|^N&p%
zVHHZyzPEf|5Q8j=)T8MvDC~-5Z&iV)e>{Iitc{I+Msh45hB=}zg;*wM)B-q+&TNm4
zbRo;Y^~^@kq|>1THQV4$<n<C~92?Oj&cX4B<C0X|e2bpUt0y?&&lbc~Y0K|ex0ZsG
zb;l(=+iEE5dcLg6s&=ZpYpBEil3PihbsjhB4h;6^-P~*a8Lf@-Z1c3WY9*vMYU}hd
zVt`uHR<%-btlNX!7bS<Q>*r7nGjpgRrl$*yecEq^R=Hn&t4WG=3Oc=7HQ#L}S3Me*
z{?aKnUW(NgMXS%*7cggAF6R<Ss@^NpaU0Q)N^~X#rDe+-_DILok_#&WJ?ol8!&<X=
zRQ&z{$l}w?H-0z@6`PqFV^FO*a_36+d7dUUjl!n(?MJB6*YFdx%=0a~KJEv{#tT;1
zjR_9P+=aLn)HBh98Bo;`Ej9150ZIy72fPXnRUwj|XT@rjMNb8VO>q{*)>NC|LvaDH
zJCJP@H#e^u@A#>Xn>5QiMTfhmJjsRV63$`YMu?Mu7*@MACH{qRMh$E3etjvlwH7Av
zr04Lf?9c`6A1sEu$6Q@xmPJvV*peE(Ui10v7V-2~$^2jF2{UoLrRSU!t5d^b>LYm-
zTL6Pf_frfZukVtn8R8agWn=2r1u|UkuizW=??z<r!6RL*DMzG91=up&5Lidy3*mmJ
zYX18$=%b*jNQ?^%RFraA(vuah*soerpI(nEo+(D(E-0DT34zRjnJzh{b*Ur8u;S4#
z^=V=spqc^`9Gbfv6IBl>JWv?qoMF{Rj#)uTUvf7^KEndHYnVGNMr}%~(`C<~<LGkF
z3$$CYv!b&!^Jvup%*&DVkvBq$Th#u6==#~gqKP+%har!0n)3NphpP~kXS|4US}CTS
zC=FU&t?G@y4R3`0Lf+`%z&zJG;{Da(cWn7C7;W}UnVl7q;E66vE$9f+s9_AUeS1mo
z>VTN`K+F=xBaKX=swN+}g3c*UtLNI_-p8VamrSUq_G*gzEeGzm_hE|D(3lFGH-a5x
zCH2vY#A(p<AHwQe)9N~|a4f`et<~-{LrpPwq*x5=T3*3y?a*V4_G5^1Md2H4F!L6A
z9IjL}iEgcD#KhS&yx~3QSa|Yd7Yyl%(kZ;Ot|59(Dj2IF@r8(;F~?I=><05aGIuh{
z@2k$Sznp^wIA*E+ejui`V4a-z*DT^LrRm^<Na-{4(xosJm@C6-IMj_Qd$%@nqbi%g
zjq~ImzD;4aUdSnPwJ?@JW>Y6s_{KW8rrHapDYob>>DmZd@Yuj54O>w{3(7(0XW@T!
zpH5B=YhmTxa;%Z~T!Chd{~Z3k8-2Row}4&mJ9NHoKpj04=-4huHGRo(p>`3vHVJ<>
z?bmD$HRYF+R3{GSH0&-FvwDQb#Y0a;*}}^ZJ^pfe_bdy0k%yxk>>YiG)~LZ#oHOzg
zItP29t<tVE^6N83HFb+|l=xS*(Kljcqmr2Y{UexkR{IB$lfZZ;sA@=qa(CIyg-Iyy
z^m-G_j@IyfV^2Ge@RuS-)!H3GsC57Ggo;|z{>%x<0}*V@!x_VmVMM(Y@6SIS{n0OS
zh7db(W#8W}T7#ZgjVC{_RlWc1&j7=Pd-J;Jb4Gn<V7bY@{WmYSV$b|3#X85Fe!k9O
z)bYwf)Jkm3U=_Ht*i-WMPUL2ZHkaa-cPPyq`oe<|(x+BRi3s!dTK?i8Jm5u3NIQ#T
z{DuzAr9}C1+Mk=Y$M3w@>|K_^UE)ngO~9Ylra0cQ>{ny$<?jRMkP*%N;*F6-JfIT7
zH@Ev1?Zx4Y<|uOk)QOvPW~k^1_iDUAy5|l*ugsEeJk5&1f8{2;GEyTVtqO;N%ysrL
zFVDucn5#~*c~8pm>nO3X$_ri@O!KxuEUSmy%Wxc^>4nr-NAo=?;mz}92(RVA<K}bT
zW$&Zt)cp{Nf7u>ObBI8cZ$ue4KP0mqK!ceP(|pItg#>|bU}bz}MtxHuf7GEho_ATM
z)FIXvdS}v>#XE-(JdQJMX=$|1{Et@i5-SoheZ&rk#OGO0&DXcqrP7Qq(1oSIfw9xb
z<Vx#&Q2~eQ4jsrYaz;0IocSASR3>a1HsT#DOgS35FE-|Ngn&HQT)wjZmTK1dy1EqS
z@EDN86<@2QL&|rakdKWuHwT$L(h=xw^&Epg_M$9Zvg|ul1s1{<RX1s~l}C!l&g1S)
z9*(Ik8_Za`md1Z}fLT{cbPW&9tpauoL?n7^xi+eaV#}BiO-?Pl-7u^9vKFHlm-z%X
zF5Kr?aQUV2gREAoF<2l1)#NN|HGjc67^=qm#NXF{Ai4`JnI4TJoI^qY4KQmBZ;bRR
zcPbuVy6^|%WrsGi_yFz=t>O^kK1sE|>J`!TV{4}sh<HlNwX#+vZ(bv}es?*nc-EQG
z9a1Ek&}y}QC~S|w^-qQm`E=$vi~FrSLn!94Q{dh0lRjWJCoBTrPxI|A_iRL{@@REm
z<7#GUp4M}C+H=xCb3z7M(!<ZsNf{IdeDtHuP2^|SITiBS>o8Mq9tvnQL#{Dpj5OXh
zfN`nW1QV8zi{5Biv7-ZaRAq5;ON_ZhR$-(z+y6vk4Vx}Q^EQusx$*<B#*rX|oT|9j
zA?<pL+`{<GZo|#h!R2o!j$JU=xx5p>=KZ2JOAYU$=Xgl-nw$|cq~XV_cLUWz-vKcz
zep9_m??h;cDwQJS($Zy)gC6@0_d2cUThgoHQ#?!-$fB_>{#H;qd(J^O!k09PsXEp>
zXN>#3{n-y#mrhR<yenGK=w+v4+GoEwA$omG(_Bu}c_#I+#G^p<aNN>Yi|WM&JH@d(
zR1(oNVC5=u;Vk{z!n_h;^cC_@V%#PGf7|7s{ad)?*FeAO1GwY-_Zy*&(Emttv64m(
zkH(3q9he$2KLt3!lUTNpXx}7A98by~gXB<#rQMQ#<IyqPH)SCnIybFDrS_!M8mBRC
zB9@z(<;SEvoM}GYOmK3%QJm3bZqIPw<s>Yc4VZQ@j8{6u!ct%Aw|U|82xM%X@v`OT
z=bVwJ(}!|kIW#h#ntkO&I8wey_*5YMydoEhzH|!xi&_Ha^UT)kC@lLRUXbg{zUfYr
z(Jk`Dm49_HGH*nh3Ab6tr=O1)!emPoCMMT>J6oXnfWE*VN+I`R{CND>32@ZiuWRL-
zuS6)?0(bHdmaAT!lfE9LWjEW#G7s>hLLQ-UT2Jz=${vG6^-6^J@Ui%`oi+0P+MAdk
zWv7^iSYw&^e6LwcO@QRLz}@Gb3&OqlBei~(ReGyEtRB^BbBusv{U*qeis$5wIg#rp
zDvI7o^@a6%R<rREJ06JgVD&NUt<+S;bVnlkEN0pbH9M-cn*$ooq@4pUVD30OWFsrA
z+twb<Kaa>tNAG`#q)I@^_2MU%kGiQ}_IA7G-i&xfE;>t3Jy6L(SisQ2KopjB8aZ?x
zhueZaM=~$an#~wF?Z4qhv8tpAWk&w!=vp>bbaewk5@YqL)}5v|9)#vHO+y=k#x1s{
z@vYdor;YMpW9z=4x6ZyxxEMs@pj5>f_|hRPt2jPFV68saKUgHqUCWpjKji4O<;fih
zz&!`$?AjCU%wtaOZVt-T-nx)rRplw~@;=FE(i<%(?}<Ud{Zh`!5Egeis@-B?f*XMI
zZ!)tChEQ)w3ich!WKXkpJZOu|@ZA_GNNo!|qe<yChT3>YCL%|5Rv+spqAVZoD?0^Y
zHOBy0&OEcKq$ZQzy5t+bt|T0_A~93JIAO9y_gbNb-&ibCK~7k3CVm<_Q<GZva_b5q
z-(vIwsr#Xw0Ik{n+}x0Pwel5F!@2T6&CO=5hmrQ^^VODGsWe6yA__+H-8Xl$7>SZT
z;d|P%3PK^0gcrtXXg?JnoDSO2D1#Uo3h{b6N}sUK%i;)XGw|GVVt#p@xshl9-yjix
z>5IATyVFkh!HA2ZRfwmSU+;|o_doiTKLj4hQ9By=@!?kIx?m{Go%XQ1Lz(EzwHI6X
zZ_R3pGw2n(9=wyf*r;d_Qc25Fn~KdvA*6GsO&9BC{RbU+=R0G~2C^H>sLks2QS}Qc
z6=Tb&RhE$S_hF9XWvr^I&s?=Zeq$1<WdYTYS=4vli!#Uxx9*7FnM34!EZ?6zN*ydX
z7d;m06}`}hvCvY*g`qRwFvO9yTkA>(4x3x+rITw5IGp}%Viy6bmR?l7&e^LpDEk#l
z(j!>I-HHhgt`Wc{b4AiSk~B#%<!(s2_<*m+Al5X0q*3*yXhKjtuO-Xh*@pQc4IzdK
zz3=sm2OX1|8{JM$I%_XC3gFW*@4Sqbm?K$&$br<FOIDBKEUPlM-jF<*J!)l}euV)y
z6*dL$SX}<_8!w={x!g=RR6JHLElbd`$(JqUo-=9;xeCM+T+95qfu>)G7ebnP@FT_e
zl$Ho}WXPGaH~kl9X&=jvH<>FuTZkMB!LxL$?+;twDGwk*jjMp`yPm93=^({NiZ62=
zB8D3=hl3Ekm#rWv;i{D$G>9v1RQ3SP4vHV8dpDwWONUy0Tce&x!e`g<>fQ*CxFDJ&
zJuxTl-2{w%2`FxOV8X!g^#a_|@X5sLecCzI4aZz+!cNLgJCXCYMvgrxzWC>rj<rKQ
zQAY9gd6$}El(+JW!hM(av}<=eDZgJRiQ%cFQcS7?k7TxvbN6i(cWlk#51u9S$}1lm
zj%V{3nbqP0QM^3L!>z?v$h&it=Yn04R%DdaU70gZf~CcB?ODc31U)9nAQ}pmL}ivd
z!Si$ROba|Ss?|)jZQ5E}lt;;D=M5{<uuwfbk~9{l(=O`ZL__@}HBm;N%FU94hgjh_
zD<*;4%YB4_j)!t_?dJTdQgKeThin23#X@Io?{JTb`Fw5-rJ|hl#1lg_Wh2w{25j#E
z2`BHQp5Cp>r5~}Y&KY(l6YoWySFRhlfx+H2F%SV3@Hfsm%bUH+T`hj@e<kr$eN)Aj
zsYzD`VKvtr3Q^Tt6DLW1<SVJ2W&=`i!Fq~lEqcne(HeC<r=z>edtYLoucIT2!s%6V
zxY_IzX9250?@e^%CNHm#{A&H71#_?}@}czb#Bp-6ueY>WOAQ_46FMSfuV6H&PB?WC
z$C1GmMoaK$lST63f@Vp$Rer`RSagg3o9s6WB1a5RenRPC`!DRr_4D<Itv`m2QJz{u
z<l-F@a-Wa6CmwvM7aupODqp?o*web%3F{Z^pwMVmAHxolEt8zQCzj{Rw!qtJIA?kq
z_oRU0v>cZMIH2g`h)EqU6co7G{dY=kfeW~nThoUA%YI7<q*kkXX3U8NL;ddt^DAH>
zChaK1(y~~5<CInX_4z-)ddU6u_q&2^9e+;&<o^Cc&9U(BKc%o70fqxd$)Sh8mt@3v
u{eO5P@V|f0Q04ERsA!`JZ;EB$<C?uYGVgb82lBuQcE=o#mccLG_&)&8vpQk`

literal 0
HcmV?d00001


From 9464193f472a9ac5537087b02acbb05f48f3ecb9 Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Tue, 7 Jun 2016 09:54:59 -0700
Subject: [PATCH 03/69] Added new file for AppLocker Policy Files

---
 .../images/intune-add-applocker-xml-file.png    | Bin 0 -> 31661 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/keep-secure/images/intune-add-applocker-xml-file.png

diff --git a/windows/keep-secure/images/intune-add-applocker-xml-file.png b/windows/keep-secure/images/intune-add-applocker-xml-file.png
new file mode 100644
index 0000000000000000000000000000000000000000..8829c070a628e29e7bff89320e69be1352010fe5
GIT binary patch
literal 31661
zcmdSBdsLFy+dtei)3+(7Y^H-XsnpDrl?qyUJ}^zwNlPm;O;N_k98)nxRFuOUGN&x5
zJYb%fGIT7@Cj=EHO-WIi!2%VKQACCiNKp_Fc(LaDJkRg<d!F^aYrXG3@4c4G#lG*o
z@4c^UU)S}y4*R}!HsHjD^`Ea_wQALdQzySYziQQowX0UG?)>;)=9Z5_F9omsi#c-U
z$f{M1c#GwzHRj*zuAjVwShZ^7?<;>FT;tqYXKvh{ax63@DDi4aT2ylMs_Rj)@Dw0C
zI%U^kpcBv|{tz}`)v8SUQ{NuBkRB;FWHxw@9RZ}L-jFvK=st~JCOLR#BQAb$w&By<
zP-V^B_lnto(Z4p-KmX3@!__{;IrrlGk}Xbof3!{Tjn$^ryLZpsbNb~(IOc9b{|DR2
zjfW4y#>y|r1Hb?1r|%NJR4qKayUlX>n(WF<wYTI|f9FHZgeUpU1dB0;<bG+dn(nU|
z(4|JW1jZ+P`~J#392g(Dw4l8G%e%`uIRE0O?=Fw=eYIb_yOLYZg&lkM^z`=?E$<(E
z`RDQ2t?!<@UvZax;QfOqc9Mes8P(PA**^m&{O5qy!Lf!k(<Io}7$;m96oGZbWjlQK
zkF`Uh5VRPYvD^>US>a8FL{mLJj<@Ok=p+4qEGlR%Hy>!rgo^^M<Fg3kloe)91VAhC
zK1QLj$|Mzmm$OZ8MFbyIUHkjlm0rI|OS7i87$v4E)8&vb`gAW;oqlR+em7Y49JjE9
zU;YzJ&78F~JOV%YXF=vJ*mqri1ixLIn$_HP+A&FcPq^%6+HK$X=yy)!m+#kDb^npj
zh5@Q=jE{6{MGgqWQbHM$AwFRoTZSb!qo)}(O34VpS4DfHO4g&KIo&bCV>4fdc<){5
z?#B8<lPe-{qMWz^p(jo!><rn1)e2b#!x!VYKPOl@k?Nt>V(#=7KiMm1FlqJZ<CcIj
zyWLXCL4)m^Ll{1oiaHmqy(g1%6Y4?ucT{Hsdo=ALJqda0gAFWFeYIorKGQ6w$MYK0
zy@w#|Fb{0i)pO^O{;}b)T@FKJWh_ZhjpBmu9;>m2?u+z`E7zf#i0*||xY>$Kmf_{0
zz*N>5I_rR`=_{I>RlFB#<wZZOu$K)qq`j1zLNc482Ucg4Iqauq?x4M}MV#`Owwmrg
zcyN$;2AkwF!~WdjRpYidE*=H!@t8NzUry%_Ce)E}<Sv@`yB%?|<AxH>vlfDCxu+7!
zR6A&23*Uwij!FXj;?RnJ@yr8cyoA<=OIrM7uCH;s4@MlU*Z6kH7sc<l;P@VN8h>U9
z8(Zrb<gY7krME;%xNR-7vqpa7(!7^($Mn571kq#;;(m%lrfkP~?5EJSu8f(1mlqnJ
z-F<fP{52A??qy$h-rg;Z6z+{DYrX(_g%`Iy94A-5Qlsdb_8i-9+;Q#nL53lnk*_b<
zN>BDV#N_(PjHQwF-wUqA3a;Xe62F;wIi511o6_c0rcRI~d_K%MNcoV$<sYYPGjCdo
z<qjIyXAm03-A1^#R17%9{Cb{r5G%Ez|J|2doM?x><>=pMjMEQd8Y8G()u%BiVn&^7
zVd#Z{pU(1#T8x9Oa9f+x2?WWZkh%ncn1V^MAv4>y{^V5EiymGM3$07zb1rGnR6wg?
zVn~vzO|Fa6ySacH_mP+vC8#6UB;PnDIfM-1ta<LaSjC$?2nD6OCPH|9_BQ5@$U)Mk
z_WjMLEj&@|vw7yX)I03x!a<T*R9|8OmjYUb<_zqNvKl?9)wpNz=>jP#+_w#SmI*TE
zLBGzq?DFv1r^UL1XbT?iYSWzy9Oq#7qt~DfaZIi)59AbGiGTgNzAONp@RIt?s~8;g
z@{ut>AS5->s{oaYxa2jnTkM>}<Z>Eu8y8@Z4tk#C)P2&iI2=Wq<QNfCj+B*T;Im#0
zH;&J@GIXLyXd>a32K}<2enriocC8Z<+B|5`Fv6BU-a>T6;|E7569i4D@3pM!iX1}|
z$gt>q2J?ufRqri)hP_X_MpF}oAY?0}&?dV&nVJHw8c77#cs)slR5gJsqaq6CUPNnh
zxJF~3)v&KPHIB*JS}x0fWVEia^V#cfF=I?#RQ>goQZ#&fF=7#fI>6GX?z1K*U?H_>
zCk^SZ7$CDq%x~IE3rbL3$HhkINevfYPzRSUe|9i<%M{^nhhx%e%n_PGJ#f0<ep8CW
zeoL`?9HLb-+6_{_7T;vl9XOeDu;v-_^t!qsZg8*tm8U7($Y$u@^Z6_#pafeMq<8iy
zl&0vr{(^3VxTuQ^;+xJPO;<}{h4qO#=)M=TtQfh^CErv7Wjml_f|g@uAiw^G^4Nb!
z7UGibnD@|?9jE<SSJV~}FPC~-B3-XR?{VRY2gsL>4^S?h4<le3E%!6V33s1qlFnTI
zvHy0=L9SG!kFEk^PXvY4zbyVHr9^V-r4fCaC0J}iV@4QPPg6{-nk(AT2aD=4K%B<+
zl9O;nuUYP%^m^^e(D=tCJiJGNUf~+pVW8j;lEc-GPkLttpr4Q*8ZU$M?@lqV$t~uK
z<wIgu=1EE&4_F($?qgm@*Mmcq-hDxcEsR6C80x+=Rz(Ib#Klgmn!{cSOGLooD(`h;
zP+<ZdrPb8|33}O^K3p8B)mx&I3l_Q@%@at5ezw92CtU2^-ozm*aX&l59{NC!%oqQv
zUV|D^&os5%f%t^zMdoF5ZGN6(q8(27uYW%NYW=qf=xktZ5Q*fyHjWAMt+QxO!T9^d
zVIE2;9g&6g%BR{ogT>?V%qH~gz+&Z&wohlCfI|i}9V;T!b7rah-y&lmxm=;A55`bi
zIR0UdL2LH<Mi%~Dod6U}Ksfm&6#47hClj<J{25Yss@KF4Yy6=9{KBD;=)J_e>iH3H
zxl)yKjv5eKs}wHG$9jZiMnVh1?Q08GkH%yu>Ig{Lvw}a0#v7kG(ia-5Z$$T`i@<Tr
z6$9)2;)e1v&)RH|;)1pb%%gthA7se6Y}SQX=`5j4_t`k^+(y{}=BadnqH!`OGi-J0
zF;cqs73vQT{E5?4&})l<lf?Eev?-3X|Eu9R&)jiXp1!fHD!EMR{TloHwv7I?W-<D)
zZ=zV#itOV`@EZL&FMM5a*wH3fGu$ZJ&ZK+{qg=xdIQRrkg<g~4RiR#R1R|}g1_BlP
z>^QhMA(Oa*H?}fTWwqAL<4ICNEsMB9yQ4#IZKMi6Sq0wIEi%oU)OHsQ1G-B@LyRqM
zS%Q<!<rrnnvq-L%ggou=QR^M3yB;*rYc=x491~UC1!8r8nw_J{dbS@B?}~__)E(oM
zyksAIP}$aHIOqxtvHt<VtQs@T``T7fkPcclz(1n!7G)n}+ifoP(L<mgcYkeESL}W1
z`5nRwu^YxR4KF<F{E&62JA{@=4y}X4yb<#fAc+{g{t~X9yZ)NIahc+sDe3<9`8#d&
zw^_prB4Q)LLy!6{H=CyCOa{}OP|;P_hNUD@<jDy1Lw)OcMbb@nm}yU#84^uTUi~{W
zEo2ERRO&I${AKmVK00Rkgz+VyKT@N|nUq4qKt>ldOuS`&)A};D&gqaLuJhd%8~#J9
zcuU}z=2Nk;8)WA~l{hMRq^pleE<ayf!07^?6S5i&k0T5S$rn{&>K@`Ip@hC`1v^pT
zH<hTgkT4S%tWj}w!WJXn4m&qTTp9#xmn@CX!J~#lH7BCFgs6S=uXUuw$=>>!6<HqH
zk@2g^=Qry_Hk51o&HbP-KmgnHJE4081e|BR#hm&#?i1zwKgE6juYhC+Th||mJ^vn8
zPXE?qU)y@zKKU2)+n)h^Ga&yimwjNUqGk1}RsQ>H+1`Hkt5!AS|Np1y!U$W(Ciq;!
zEN2CxzgN8q3XDb>Hy4P*_S}&?OydyqcAkheud?vk`7qq{LpwK6#+X|gY0(Ti6C!nk
z`cxKXIi{Rf_$tN~5Ljr5_t77sw|5A={bWbp)5K+e?QVd!F;U^FUch4xqn54Q0<E$Z
z_dRa0J^YSV7b@7gKZkN6UzuXx`a@INv@hSLFCANyrg;+_Lj3o&>2a>h%gsuDr(w)8
zVZu207IN{RB(hmBqi%$E^b+?dv4Y?*%g;$$SFH+tdM>usZX0U>8@Ve7dO7dl4#M56
z!};9k`iD!=ZjMj?V^V_H*fJf-C7)UM!_9g3{849&v}Wss!g!l|!&{#lqb>{zv)oB)
zEn}v2#i}aPA~tGPt@>+$9~&z-8)gvkQf%2id@~6-8TU<;jna<($AQ|lL)H15vrFX}
zZ_boJZ53n{v&1dh#3r#ifM9QLdMSJTs^6<Scx>vKeGj6K@C!JTxRP<<1TLbrr7nGF
z$*#8-*Bct^^L@bM7UO(2S<=(?wo6()B+d@!a%e4AdGfwyTKfUBb686C0@d!0ND^Ro
z3->tQ5!5$|5Ob_sRsOPh?!qw_pelgg;ySQDpJNH7J+sf8BnEa#BYG-oFZjtWT916b
zLh>rbKEG$)HKpIgVz>$`4(;ngaGPRa_N~SDry~zD=EqFca}E50J?)WU%+;Q`Nf!!d
z!(!!yw_w%rb~SDoTKea!Ru!KQBcXD;R^|#KM<*-`n})a1pX^fC`}=<f^;I!$o_7z2
zn5{7+Eo@hPP#9AJljh2*9ij1NG5L4j!roek#v{-$jp@rX+Bp3@MMFPob9*Xfhcy#^
z`cm=Fi=<X)B1Mq$uwhuXyq0L@z}ftZvE?FQZR=&Si7A-?75=<DXW%YY+T!OW8r*Yv
zEwHwic(Cdg^F@MS2<Nh6)hhLhNHQQ{dgxh=e+1#lCv6V3M-no*_O;A`zuhed%+yHp
zk1d$-m|=S^N*cwc%9N)qGxha^k#XWq$+dbJz@Kq(XWYK(JQDJ<_Xr1QxoQ<TaHYdI
zJEPacIqZ0Aj_|T^Q!f5)z0w~lZ(Km?-$XZtmFCTN=tm~{*`E31kDam?Um$6+h}cg<
z!ai8lp6U1OFsreUGaoW=KJ2p&9xobp?ry(6!T|%ADB#}Hc7J}F(0jIY#5q-yx7e3-
zEIM|BZYm5ANTqGc+Pdn8j>;B4m33TfM1?~(5?lSzsvk;Ln2~?ctcv!Nf{Wja>;KXu
z@m;z5>xTdS?tjza|Guf(%ds{QH&Z<n6qukI^m@jM(Z0ymMH4fws^-R38&tDi<zp)n
z8%)f5_FfT~WezhrLT^W9M6KI!Y;KIG?R|sD9%kTXC_^L4^g3N>4c;szs~kuzz+c!I
z9p}un`hk@DwB;t)3Tup+B7OjF)o<pX4Hdx}y?sryUTJs|?x3~BRZSIRl9k&-+?r^j
zgwymv(+vVNMw~iDbjV(m+wx|#fwNYB3y2<xL3PS8x$#xo;=T7XvWbWl7?j~1rVX+s
zNZ6K+)t?i1mG*_l`acmjWn!0v-7{<4>&T$`j_AB6JbPU18KMO&z@(|2q_pxfzW--_
zbuE=7U>9*)@AVD`T+&$6cYV+>k>PCm$b*Lo2n`_f&1OOgu$DJxCsRC#2iYLx#-n%t
zS!Q2CN*2=EpIZ7Ks|{#siCmOCH-iJI=aeXfz(G@%Af5Fsoc|!<hOByh5dV=w<(}3~
zsQnKj;(TtehDvgom@ve?^<s;^p(p^B%o*4YqQ%1l<W{|<%R43es;uxLs_6Zc%|c}R
zPFwn!_woOiO{kZo#rdgD+(=oOCEgsALac~uHY5xX5t))mZC2$>ern#M!)A&d`{qfo
z?adP<&2Nu;d9nQBmR~O}PbG&c;8~5NXx-Fujp+yXNoW=mL#-Bo#DS#=_%}%&;LOVi
z)azeuBYa;%wN^tz$QxSkZp5Pk9u_B0QR!aHOzm2mu*Fxj(b<?1xzY86+ZJDDu6VpT
z5_iVutu$#%cMSKDaIM>G9i%t|H`K-LMr3!YNr>xK%G!n@*m5Z)!Jw&^o7UEPx3hJB
zpEHqCm%iB6ymYiSJ>una&}Gdub4iYk@>YQS*4kfPn-oY(0b+>OJ$mW3zD<6SIUtzW
zYVkUK`I9@MQ5;anP%z&Ns-lQ+y=oy9oHipjil^?8I+D+mkV<~ngoN=ZhZ$VQ$BKQP
zwha3V;}FV@qX0b&Sc_nl6;C1pVo7CdL&7Q)KP|kNnXNHBXq-LzBspoKPVxufmo!Wg
z-4S8c_!>UxZ`!@THtjp9N75&fVaGd<j>Xnu)PtBL5K$IM_aRTg#JX;)_IN{7BwX99
zxCl<WI%_!3w-H6}kpO9-P~HUPS&MC6hc|((8RzR2e=vN@e(os3Hw;x{h?$C4H&|qI
z_-q_iL~5nKyr~ImH{P(ke+&w&TY5Z(+n#W!rX%&a48X#T$$fuMtCunkWB<a#HfWo1
zYL)_Xq{uj5On2=%Ie6FQjtZ@ZpalzS<LO306K|1V^>pDwsv5#S?$IU?ZB~^HM?+$C
z)D$nl@>lvGuR*DfoiIEUM43ndbnB*)20_F9R-FqLy6f<=MD7l5h<+ZBr-1IiWA@&s
zLbG^19(h1$`C4(4*u6(5@~vbt9&u-UhtD`6YgC3>;)h*R)`5jXnmGQ|)S7H9%eG`}
zqFD8a7wHDoGdX?tKwi0S`y|rVdQ3txeZ{*9an0`c2+ci&se9!Zj&8fr7>K#ZDbJCd
zKy@4{4V2n<d+xm`^daQ>WCBhPB0WLPh?XJ!goZX}@c3=$dHDeLBZHQmn5f{dV=eMd
z`U3tn!UGK(u0(Q6tHiQYe2Cg^6r5HC4*w}$EAUh`#xR^epILA~8N?L}NbOQnqp}P(
z=aK}kpD-G+kx9m_GHc;ltw_qh0s9nCKYYY#@Tl&gS2?I_!MfTfgm+w*?h3utaGH-_
z?&2wf(yzTS1k<?Z4b(P<D;yUZ((--eZPXdf?y{dL+EE|d8Fv)MeK?8UBV#z9wh=`U
zA4r~xfWy7*hS}E5jH&G#U>Cz;CA$kbCkO<=nq7vo>j39R0J#+lAJ#7?Z}a7|En-7m
z>kjb)!0tV2D!~$PIVpIu$G*nR@VgTHmkjWd7efX-UIbZ@Qa(Yzh9r+o_kfyKE|{PQ
z@l@<G{0?mi>{;UpcXS95E*O)=#urIhyg1-T(jv)BH6&4!b#-(`v9yictUU$F??G*n
zc$5&QtWPmQ4w&`tEccT2vv{LUGNt=D#rV@a`V1=@t5D7LHk$bj4H1Wi*b>KuDZ@-I
zNiAunL9V}EuB<Qf0<`TMnDA1;_T?T)$A-2Mg-K&hHya?RJ58uJ93mjEI_aiI4V|t+
zxUI)$A*)WY^j*k3`r@JI7c=U<jY1<tJMd>b=_81;VJ6=?OVTatDe6OQkd^s{JWi%R
zUYHxFY$oTyRh~S{fkj83z@F07di&viC-s}CeT6bc`z&UAUx97Tc&U5~ql#a(0I}z~
z3`c?61lSwMjZ8-#mIi25f$F@#8iuIQmhjiqV;siQ>PRRYjk#Quy+BDaWr!OC6S-}T
zV5rp?_PA8mq1vlRbjC}aYXv|gFL1^+-mWh3+F;1TlAjk+sX~#nf3Da`D8(}5fi|M0
z;-w1|%jz!4#ZL9;jikhi7WVK_hgx!l>7Ip>TW#@eM%2fE)SjJaLi*fqn6C=}M(NrF
z({3&<G;;9+tMWiHC8b7s?2E4L)AKp0XBC0evIR;qWVZn!>a3Ir@&=D=;t+D31w`o_
zo+{S#9Rvr8Ge)9&tU17M#`rfezc5-yi3=2phhvsAN&hJu-{^g@e@&W_B2^(1OT(q5
zDG#ErA;80D450+ZV}Gi#ECtYZ4G|j7c;)*QGhj%$BB}wdiYw*ypT`l5+J>QVZ8#j{
z6UgS3UC9*7x(y44azB=6pI5fUYsrHIr44T&sq31z6w!fs_)u1j8Y`*Tw?oO#bbKuj
ziH5QnOeBfn;?-y01}G1d9EyON^^Uc84nU}-12kWWWP2n?I~+8XXUp078N<aT#;Z4V
z0OO~rD9sk6Qjyd67|GOa`C75ojRx+c_-`)Hf%!9RZ_E*xRgCDWgSidEDPzgNDS3aw
z?93jhvb+J}c7kW%84uNY4My;fx0l(DjLX>*d^>%6dSu&x$d=$Q`Lz_ku#_d4+Acy&
zHs&yy0uMBHo8)`lc7ndRj(owF>=sxc!qnXKI2#swBDU+{LJwITwS`!sdra2+=yDPe
z$lcs)IXd^4QlA+yKWP=2hrI`~iPKRb+UPxiw0m$n3|w*4XT9iSVs<NvSLeVZH_%e<
zNR6lQI48*OqO0u2p?Au5Y`Ogt=u|3n)xV^M`ELrm-Q223V#c-YBZ^e4b=5GpD+x|Q
zuum0M->pg=u4H5+V)EFS(SbgWGKilYU)D+~cQ=w;BuB{;@!$ujy4>9q;>Wxin~~&9
zDeA$5;wu>lYNZIlFLGWr7KhW&z_N;2_tWkFE33Y>KAK>9wl^1=LCco}WI&j(&MSHW
zWG|0D)O(Rqn=&yX{waBESA3c@MydXBO7$fQn##;&k$8TL3&HVK))Kx^aoU>jom~C%
z{PIqGpvPLhPSje)y(Mz0HgktA);<_M)`?kk)g@Iie%s>56Q|A!GP*<CM3%C<s!eKp
zpUPGqsf!Y*PLg&ms62+5udMS`_igD5o$F*4%-#p%j+ys!5&xApha|I&(qYM4(-C_=
zS#l--7%p9VRvWbi_`NhcTDRMV^BS{+1e_JEjY{`M|5nLcPj0qc`Yt`fqx^!Fn&NF%
zlEA^<rDQ!|sx_ffe_tM?9zVge_|}+s{pWs*(7ERm_4U{fN+2gL)Yv-!7^v6IHe4R-
zSSh&y;t7iKiNcLoTqO(KLwdK*l>0M6-jMU^tAtlkHQk1GzA@<&-bp;HNQiambth9P
zfrV!n1lBpw@X&OlqU}B_csY-HKBI0%@-;0`&^b7SOg25$Mx^?Fr1iKzG&13>W?oe}
z&mw40!}jh2OnH_#6}EH6NnommeWr+!L|?`c=RH6LtVI}raewIfjdbj*D>9ZkDWh%#
z^{}MkErg<22+gLPR1(zX0M4h}OXXgZ*izm?YE_fryaz!_35DBZfZ$3|XVxMK_M449
zz^%=Ia0`gQ;nHcLu4NU;%bB;ih5G#5`tT6vo7a8TnMyIx+EMJ;a-o#+Ib6aZoAP*b
z1ZwS-vM5~BVj|I>+ZD9qgs+v>w^G7><=QP0V=s`qw$6Bz@fzZ(!%pvYW&wg&Zsji_
zK~8MvzOufeI@fuXtbmuRl=hQYbb=G|j-Hzf3(!<;>AUCS7VowZrqq79t*`4Y+t15S
z=4n`~E?WN30X@ngTFi5206MWqx)!UQw2lU}Z)PXlG@VbzI{TOV_k}4$3$6no`>ut>
zNpRSG1%r=X<Vm@dO!OQ7V@dZvW-pR>r|A6Cx2$FqtvuB2dSXe{g3E4kuVV>eAiaYz
zWh`J-u@a*7g?H*JtwX@M^PyRKk-BdYj~7dxzfF$@&#Tf(uJBta0LfKdC_z^0jTNNp
zqIIUv(i4a`CAX81tPS`xHYRqkq-VlCZ>~UfF?ToA6`Iy27?_{z3Zl`QJRH<MHZkqs
zMO!83ey8g`FyNahotpTp)V^1DFp7A!9K<Ew&AhzA(6WllHBsSGU5_`ZzIM!JWViHf
zx3dF2wv@b(dI3(~TZX?rQ7Q9h+=r8`MeTwtVpn(vGKD#aYco4g!tkW!*C=_eq`f@Z
z*qt%rVXr~Cr5#c}8<QuB^%UIcZUdUmkiX!b&W(HKy{$i};<9aqw5?5bZ}1oj7)*9P
zWJj9!;mHG&aqsbsRu3<^f_eTJHCF6pA`G6;rQZVxvAHVEcZTh2rAg%-H=oFU;jv~a
zigIACceD!sIQQ$~=betyQ`;U8HwASc0Sa6A{~|4_Z&=n+EKT8Cfu3$l*GqQB8J`;(
z%=)l>$<a{i04jBByxQTIV#VJ~{bS<W5zW&5@3p8+!*WW3%TDG7Ff?)Y2cnXp)_zc0
z`G_G%iWOi()u!r&p8OZr{~U`zP;tEGE9On}XkRV4N^CV=f<=|=e8%>q7JzU$U`b^b
z>@(9bVdK_sNsHyOVPOw$?+wjJFoO4{Sy~7F&{C_dYgtW>S_()elU&fFS(eOa#=8<^
zmZd1ARc!DiEt-QOX0NKcVqfhX?r@~hC!-TEFzfWkveihl5u9y9EIH75>6A^R8-M@p
z*bI6)e94WD>0^vEYTa%z_n8Aqzn?!Uq;{~2tzLKTOU12jvk7;o7$e@;uqQcWONT!8
z1Dh<i=j``$cF`98aTim11W|*%B8T_>=!OV|!Y@v1_gre|{6n2eFTS{5^onSOr?=ev
zqSzSwwu${Y6Hy4~8FT~A2Ls=Q5kL1FjVR#I7UZ}8x)-`Sk={}$gG7c&ZpS*b8okqZ
zyz@)1{e3GfC`=aJ0BU-4MIC+Jp+H~=z0d((8-R6@E2`F{<QH;w@$q8UuCheX{swW|
zwF7&KJxK+H-6n;Ae%7;e0lIC11Ib4Ew!jL9MX%)NGYr(aXU1ps+(^@)3#yvZxF*Wf
z(~5#W)GLlN{{Hqg-E00=n<dp=HNGYrvRiH|mG8WzM~xWHcrjneyNfa4{I@9jkRYE^
zZOJo7C%f4=r-Z=A*n8R!KHuva+44<gz%TPxq<gWUA-E14#)wO`Gi`N^06x)w^SbPC
zNFuS6?T5xAJf~v5L-E<HIavW`4tn9ZrD6G`<ZxHSdTv|Ew!$FCT7fp50sVEmhppZB
zOB*vm#x-C6%qme(<f#ME-Lh`)LSn&M`&xlMK2y+HtKq@Rdga~Dos4W6GR;)N@#x5V
za`ozE54fMbWmkUb<GSA=v(Ogy<%*Vx+?0S39?9&9OUf&JNQ(;#L@rM`=7uKPW_^g8
zxUrbV>c#D)vL>DI1q=~GQd_`@xD*_Q&t+$T_t(m9SawX_rD`5o`(DuyW&U5I(Hb$h
zGv)z<Vflw{Ua<DU{L-tna2ns8W?bEHW)4D`SR$og^NILztj^9?L(_EChsWqbY4|9u
z(X=IaY58x^VB@MYgJ<TJURf=|@9<b<>8Gb;Be27D&45g_x1rMyAFkUGQh1|bBAs5E
zt(crDigY1}`GK=nj};NIKH^?C8-y=c&qn!a;;e({caxzimhKiT*h5WPHaxJEV9Wf6
ztH)*P$h;jA;NR+mP+)oB5l?&&*+0scHQbjJt@qYqSxDu`6&tDcJiH@y*|Sx3y@;F=
zAu`;8wFj41yjHF%kY_Ej=-|G_1r@gNPLv)(ogGZe!Gfn`^Qf{6oLC}o&rR_iLD*r?
ze3On+Xj_rIalmkryYoS=Ptaf@1Xx}#&Cp5a8+)B4DrZGn+HeA62Xu2Efb%f7i?0+Q
zc=GJUNEgtNjGCvCb53TzP;xwV@BymSvv7>IjY)vr*2JltTERhxF+2|9ivdOK8AOG8
z`(*zl6?KAV=G*(k&CZoKwZ2SFnL@QdBQc!7&|#`_jWkXV11Kd3D!INNktgZTcj{B5
zXD3YSttI5nh+Mleo`7<2FbI7r-N1%*eDBkdlz2t}T#y{oQ64Hrx;4BF8)PBxP$tdz
z)1P!Zoh5IsXP>u~@7GjImEc&iKKj>in&}=N^ZQpy;=&i7-@w5_!)dx7cX0CV?8dOv
zRt<BM6fd!>gfoKKbXB>Cjn`(+J8>pcJvj>>cGBv_X4#wCyojKgj+E6MiY%o@=Osbm
z<gJkxZOO@z?8YiladEa_o`+F#4tWqP@Uh1-yqhehE_%+)Q!a!8>%Ii|JJ;1FLq||W
z-WLmCVEd9P>?a+Kma;b&gKOM;uu-LBkWVB*vDOHBS$m?GvV-i5?AXHbg43aC)G`6H
z+xLoO__s{rURIWzr0hzuMlcfH`s8g?=RK+ty7~=lJ8?bCA4)KLo4le-+!G~ZJo7p_
z!8z>^8(9dmWMw4~c<V(QnKu$DB>_cwZ<i*p8zdJfXkB{79k$0wiHCOx7)zR>O!K9h
zXf)6!&eiHj^0K~TgnM(>omOioSZz$DDy7uQ8B!|t1?A-@3`a~IpU_Y@U%Ih7*|13k
zBf>K^<3~Ivs!`hsfI8tJ#3dR5_#k0uz07PGJwpUWEB$7IBcs!+zH+AW!oz3gkb!ZU
zEtywE+mB(fbxPKsNZ-WD8{8M7;Br`0#~d7$nRX{HDNR*Ags@IKIJ0J3tzEoZxhRNi
zVL&<OR)nWDm8B^53KQM7sH00n4z>J1Gsc-){n=*lcD5z+&llOex09t+P$2fV0sv?7
zXBTf@&GVq#TIP%FP|t~lZkxf{DoC4<F}HftEYPoi%`QK3xR8s*h}Cf&Ws#peb`Om0
zYrLT!5v^k*IlzoL<AnEV2xMj^x!<|=6yr}Nw>?l=#Kib#A)l1kXktw1g?djoY$h}~
z*Fc+JOwzhYUYR3U=y5B_9_x~~EO)CY`jqPks+1ZrkjuOn+EzjqP(pZI$o6ngW3?)2
ze(6kUcG3j!_98=T&#>ayv_)XAo*qij^5NcpPPF%l3Kg)kw6;?2X%BKw#z5nVxluy5
zYtv%<=C-lBj+YX*a5me5$oI_x4K@>1M8?sSgQZ^LPLdvy2~YItQMHOZQNWPCVt5)n
zazM__?MaR1N#-@jAu+{RgNWkgQXbGWJik=M_#S85t<wmr5QrU`W@_RgcG3&OZT$sX
zW-^ZLjAwErR|B1eV%>a_9KcvW2e1h36Gt%<uZCFRy7HZgN`NQ{+9w%iwQ+B{)8w>T
z0C%fwooXw?6WQUE7Mai3e?{&=dC>qT6{O~Kwo)y#=6(hl&Tb%Uz+2SdO<w)k%zVX%
z`_a3$074N~y<L`#-=aP^$q0`un&AWic}kJH-E+lJdK0k~HK0M_FhSQu{El>mlncPa
zJjzqbqM##4l5C<R`&JH<4>^utq_D1UEIh^7n#g7KPo)2;xT|jlo5ZwSUXjN|i{Uw^
zn}UpHF}E~G&zzA2^`_cPc5PCB*;z-dl3U%n(k1l{5C97#k)dro`WnQiS&dJWBk#DC
zmGD~Kv9m|b#F``dDwUO4z=%7fh714Zm%LDUf4)`RnX5y-kgyl?Vff04%_F?+pQu7?
z8Ss+HxdG<`nlH^x1a^e+s}OGB@0U0VB;yG45c2kba%MqeCGRd(zEyR;MB`InDDzT2
zcA9ADa+>Ly`%313$9dKn<To$^qMkyz(@mvncw0q^MZ`D}3Y%(Iw}s3GQtytBvMFOh
zgJ~36GM0_3lAJ`*7Gyqr$(b``We=Zpi?<%er+4A*j9}L3ai|^4XnOp<shnZ)i-Hw~
zNmAdWMkzW&m$4m>qH+r^j-Lw)IqAFQr?<~HfiLJS2bX)mXhoLg?{ht0npA%+9F1Nc
z8J+$xWi(Pl-+9Kj(+)h?Ay(xuUJ+xm^hx?m!1Y72F_Y6E=$kR`Evl_gc(wAlcEF4S
zAkI|PN$Rqc*E-P_8XHb;4<Ch7!E@agY{@C6CXD0Em20-CyiuUg2kb)NF{*N7L(>+Q
z;3PA}F(;ur$-&{S1Lketvz-1fF|Cqk)~@|?r4O(kFY!I|hy$}Q?};GE2n}oKP+f69
zF2z34yCXaD6@ic#99bCYn%$$X&M#kkBs2yc;gL%b5ppXsF$V$C(l!40DB2LjL(veA
zRft7za-~i;7gEpCTuZp8slr}tv`U!xWzCmhmX3QPy4!Wc`G$B(lw>1SR}Qx}pfm0?
z!F(4X&KwARDBh=s5;Pp%4!|GLnghpXi_X3I*HeUtO&nEFjgsb`IjEeZq&Rr>$32Ea
zn-bKx)Sb2<3AuxK*G))ALsgWr;_RfIQsP?fOmYWpD*XlQ4>>Nw`!ngX{6@kj%qrQs
zZY)O=W38O#=ik->xdd9BYg*Dq^+ZK~1`}h+tmL&1n^_)8^RDV{6D{?miblk80sq3x
zmp+`Romxu!V1evZu4Y=^9V|Jf_8qUQDlOq{Qb(28HGQ$0eE{N!9ldb_ms5mWQUgv$
zqyqLDvNO$K>iM4-_guUL;Hqb4TXN>+rh9(-19NXreLeKLPOn{yq@(#0uQIxg%1Ca%
z2K1GF7jQ-OT!U&jl($E{o({i$fnF<hXEU0)@#M{%os4#{Wq7aal;ZS|_?7b+kT2<N
zvEZ=$hV~5<5V@04WFxwrq8IV2RL*sWBFuXm%M)d!GAfd1{iU7LrsKw^hyxfnzi&a?
zQqQk)vI=^~W&rE5{*VOvl%JhKN#+GH>iHKn7m~cEQgwtgbRl~#pO{wN0P)~-AwWC1
z?uGLh2+eg?@~V^|^5^E!m3xQtu4tE+7MX!vY0b#^&5V$8`yj~$S4mVP*;G2(dwHS{
z@wk+H9qjY3BwUj?Z}Ex#ye(IXpa9Z5IVl}Ms?Tm10*TKQiAm+h7Z(GF<T2V_yrh22
zmN>or^~@vwaXzt{Qaa9nFORt&*P@))Gj@4H;Pw%L9w5<Dm1J*_7IIRu3!JT@SeWK2
z-4$J$zkdWLs<V&^qMN||rrA(9BoaiY(kl3PW9Wr8M8PvNm_f|1NbSelx`goWLp7UA
ztb7d}Uz~Z|l6=Up*0|eu6Y96C!_`w$mUhaIS<<f0y33>k{of|-_ut#{#GIksSIfV{
z9!LlZqX-9}r*dm|9jIj-jTMJ(AVU3~wdDMh0$h1+#RW5`g#VrV{2!XKT{KXmg@T78
zCFxAt#$$_g^oMQ|&w7u~Ev59nObflI1}eM5Dx1RndB`Y)4Vsh(>j*T-h^CjHIlbFN
zxYpB|0$sjZ_bFrdvQ?KT)2<8SS%>iP?2X&r^7!3+vys8EUAOGHn6+8cMWA`IO1xBV
zATF7e6~&x{?Y5dAG%g{Pe;T{Xr|Tq{ChJ_%!P%aKtuM19!|Im_R(6XMUW&(Wnr+5+
z*2TVCVn(Q+Z0>Du<u|br(RIJPXrhLM;T0h*284TIu-WT|m|YANzvywxYL9n`=?FWt
z_VbC~IzZNw%o95CSB54w&e=l-yg7$79BZV1eN!*$O+`E4(4m3z{FP)&{Mb05;`(l3
z*Ium08(KSqQANM;0(3#@$<9G}T1ttVZ;D09QhBnlJ5Eh|HI#q5p-ZJw31l6MSM|w@
zZ3EFv%qPqOXx)gx5;l};a^lRpEK;P5e8o}E#IXzl_P(PUT*h=#q=aj=_gO4H>Yf5e
z<@2?ls`r=!!C-At(Wv6OZE3VDfKl2BpR+DSDjzPi8cG>@ZRuc_W}Z@NC5aVY_sy3u
zu7ia$?lTIXW`p;b4>=-@I{N^z%ZtmVly08!7{fOx+)qgL?%w6)Ym*)>r0(zBE2xUc
z+6hH^w&AwyZx$JCWb31Nb1ve>lZ-8W<-nZ`XRYtPzA_p&Q>)!(j?lcO?}ftoCNa!m
zkr7uCMVYrg$#u4EZs=-<WMn=Y<-RSx?!d;BV*v|1e_>TrSC9mk5N>d`0azRbYMh6M
z;AvFMcC&jDmI<A%e^^qI0+?!)Ma#;HK6F3UgQ{)u>)2PzEU=nj=Hv+0xEdb6hC1o>
zhTgQ!zf-M7uh>j}u^oh!%8lQ+cf#AxGOD^gdy>WJ>Xdqa;F7?Tkucar18CZZQurbA
zqv$iJ%+7m>^siG?c{uGl*%^?!TG36s+bSfq8{yDw2@`bMiYMAKt?HoTkEAC+_VNSp
zaZBf$$b#Ahml4DW9qv{)J(|zhT^<rg(p$mtFczcKCZ`K=C2W+u+-b{ws7OQAr1I?B
zwsJm&5~YRqoU%@!fW=<0j^D!*dbN#t=Bb(v7RHx_{G!UYQ!vvZ-RYINr$SHgugaIl
z?^dNp&`gFlHX@1Kk@Hpkj+w9OynIYOuA+<)hS`sPTRdm*JT%-OxFQS^C!HdbGwX_o
z@x$c4#wysyASP>Z0f|ul{A{>D(b{j!m#uH2^!L%xcS!I%z1~k4$<_!@(_|`Du5<6+
z-XY({I8c*DKD`?pNWLxFqIUEJ6xwi`9T`2oGkB#E=430p97*=S%dIeI@fwMw5?eX|
zLkn1`?#Cw&#h6b!j30}Qc+|0-1oh069&<TKugSNnUHEC+9V?!(+YSBk>}TZ%xBz)=
z$A$Q39YjYu?tbn}Uj+7pQyTK}<v)ZQdHoWH^|Ci0^$2WTpZH%Lu=|z5<EAXq(ibf*
z!^nD9oRmh=9~=k7=!&J3{ZPVSKOFi7ao8>%RQ7Yqtkiuk{unBE3)RDqL!a&h;)6Zb
zM)~yrq23DfW7Yo(F|j><k#+4eCx`6Mq{oi3%y|)qkm@qn!^zPqnS-R0*^ry8*ZR&#
zLMbLur<m!uH4?zF>bstVqIltlS$!~<@)*&)Sk9hy&!+STfkS%Y2BPC6Cp~X82<BZ3
z?(^FH_^6CeW+v8#l-Y~pG^_%rTr`eB3G?kcuZ8Hw7natTS9Es|#YXM6Q}w+Y=Ssk}
z0g>>ooyXpYn+Y#OMYg<OAtw?{3=EIRjr6TL;t7z-cM(e#D3`HROwk0+J-A076kCvb
zF08(SelkmQt^I6PPJG6X5FKgnc2Jw%YVbD*u7#{PuZ@mUTJ$ZuR`uBcIYH1(Z>+S_
zUqpW1ceoY*=hB*}vx@LzWXnnS4SMH)s9FF$pP@$-(ynH}2e_|io<R4OhlH#%YZ9UY
zN~zCdT!!0rNctKbeCnC70vd3=Xysme(4A^DhH7*{Y|>Pj@&;0f8hq@9azZQSVUQQ&
zU{4V{dL}Xm4i+-d-~j_bl8}Lu+(^peG9HYV$*i=Y@3ye!n~aXb9>Y`KMTZpO5$QB<
zp?Vl!hQ<zv?%V#{1uM9teTpEV<;En?#ItZw5dq(L!IwaD^}#-Oua|~C;6>q@o$=in
zJ*nO5ncOodYqcZ_8XBXCv{hI9Z?se)@_a+WarD#M5!8+D(Sla{Wn63Wp9kO74e^ME
zvx}4n-?>LaL9EVZBfkolq*@4K#rxXAv&B>Lg9w(u31E6CaSf!4C~pufuzpycN_=yO
zV#(axhTJKm<d`*5mPM4@KM-|)1D;`VRSRkVgJd<*o}2E4forP1?XlvuOB;sAQ#G>~
zsSH$_l!>S(?o88UJsK67^_x4BC$b_eNkY4pvJL{n4`Gk|qQjg5>@<DiJ|?-ck)8Cf
zR)Zz)7IW6-S@@FbuQ}u-7F<`YI<SvRSkJmEV&W4h^^@4n5?}7nkwpvs#U$esm2(>Q
z22a|UD_URQpBvH!c{~cI5w$YT;1TLXa%4}F)OB7HiP>2ATN$ikuJq;1W8PI?bvm4Y
zxUUqo({^RTLt}7mP<UgMO_JU~$)m4bVOfuFue^%vA9DAQSIkY+J|yFi51uT$CF2iW
zA}f|dD;ayuK8hgeq}KWL3Np^X<};pNptW@ZZczGJIqpWYQ7AB{$4)YciC^*q$YuC1
zeXwHfJsZO9*`>8T9`}4X0FAtD@659m{`DM8x}QSq$w(Bjer9m9^akJTq$i@!8DsRl
zyhL~BNep$!hQLX<kJi~Jt^Fkz3JW>M@Iq{*U)&|99)kpYAJj}phQ??NW>it<1UU^G
zu)v|c^GlW>X;Eh)gY@SQMz-rLE+veieME#G+6D8gZIIAGHZof8WQd-6nxy1(oYC&t
zqX@|8;FA|FM_?zPuH*TWM;^M{PUd{0OXpvt22MU2Pwh!%H%2p%qsDe4);Pd@Wln$O
z486jBq}87Dlceag4qR$ON2EGDkjqVPiu^Tu96F{u1E8DF4<C`cJcOe~MFXH;qYR74
zVb+m^u1TcfixHSVt14w<;b=(}Fs1~LU8oSK2MoVxnA~0llk!s22tCocv)rG1fA|<`
zBPf^`Nu5~m_7_@7<!rvY9_H%n=B5#&tS*iyV^D);2+$@HY0V+q%~I#0Ou&o98w`fX
z`v5n5LU~vA@s6si+U@?LMr9C?FnkJIGon2;Tr#!&F02%ABA*!4l^iKrew~|i4+yY*
zmf+^&rpIjOZYG;E<aC@iZf2$uqHzM}NfJ%P$@IzmPb7<iLe5+J>1MDhrzA!=cUohv
z?vDs)X}M|Wm=Bpg=x4t+sne=XXZ2f8k^UQf!yYI$chC%Da%1HFo(Zo9R*|2HCDRF)
z&VQBYe@XX)UbN3o#v@AoqiYwkzSwE1QIEx_pbjHo3P!J{M0g0ccAgE*2KUPg$F?yZ
zFGu6rN(y;Vlm+dQ?0XGUs&LVYUV|++%Eo~qplR*)4&(+VWBDcCr$k^WJ4N2=pR}}D
z27g$?uax1gdS%0Y4A9hiDn2|G+qJU;2g`f{O%KED@ahF&hP<iqYH_k7X>n<PZFW^l
zK-{I=AJvM^mYHK9Q*euY@Tm`E>u0aiLAkw6nIt5xOo|ZeI*@((qe-VNB5OxUB9?|U
z7;4J^Zz#77r&;PXBMH6pJGeUs;v8OTO&8k%M{)Gg)SmYUJk4C~3SJkW%;v$K^D6h1
zYC(ik>zL~&Qk?nWCf7&Pa;&^`|J@F#%h8(*iNEY#LwTrEHV<`8-+-e#)WV$4D3w+t
zDPwQ|JK^x{cjz9;Ahnvr^$zgHJM#5cAin$I(PIgh!g>yNB-r6W2Wok<w_%jKhY#^A
zFI@<;mw^cK!c#My$KI!N%;lAf54cuiXRVJu_aj>FIpp|D>~0I@gpRn@j&)bVn9E{}
zAWs)?8cv7h_Fxx!8=)bQwCvMxI-UMo3p_DqP3CCi#jrHIg#OajyaCKL>E;qZjsfb=
zV2rT0;(l~A9X%a!%clI9DZ6N1OhpEGbE_iZOnt<;yF3izHOZy0cd0o3VZ+2N$rO#@
z;im*S)@pSlrcFV<mDiGd|4BNTXUX;rGClq^`k(UC#oZ+R>sA5rgTQ0&(mm(Hl&E<y
z4ruJTn6`z4q~J^dY^EyD^cIjfp>i|Ut(+iv`KP4Hcj^96B2H&=Lzi^fymN-Ad_7JF
z*g*b4{|0Jg;yn02@kE`g73@G`5B?J}Jo{aRJy7!@PNdvue#npV*QU~t-y?L7m_%#1
zVB>p_LZK%be!p(fUY~EV@i}S@pTsk6eD==SVPb^%{k7MH`>m{hQmt?ICmU=ozAJ|$
z=xKmV)Bn&%i9hh)_6Z7`GzJ0PKay;{PRPILp*3433=3~8o7{FC`hUJ5lZ)T?-wsof
z*+ZXvT|c%g1=*^6a3(@_%vJP!PYKxYM!7?=it$|?gwNHWM(c@7)7P_qZeLVA{V{Oa
zKu6s}XflB`?f2@&yU>YFbS4CE@KJ9DFZq<XE&r9Boym9edsd3h=ZGh?Jt`71?Z|rQ
zdHPa`8*#fL;C$HR-;iKnSSRb~rF3nt&{|<L@qqotLO$f+TfdDu9GBbsfStjW@Xq8c
z?zaUf=ky5*uUX{2m9q}AWaaWC-G@IO68Y=4h=%-&?w)Z2y^kg&elkNvOKv_#H0^_>
z4`H&q{>_jMLLq0?|JqXXuM6CwY3y8dn?9&!$?o!IXtLfyn%x0*S<fUv<9iUT+%y=E
zw%6CH&jVOuI==-NmP9Fp7EgxOn2(CAQmSUP2~%peCT;oh4rT(nE|YarzLnWKxBP9B
zVu2Y;g-)hI_G16_glHj(IUXu$pM^*M7G|zB$6s<d*9tp~jLeFrOV;Ymm0ZlYlhk+(
zzaicoJf+=wx)%4R%a<N@J#l*H1^t6^Zc<mPsusI(o4NRrI$M{%(Ol2xKT*<w%r(~y
z=7UNS!9KQ8HhPAg30;(d=k`Hy&;rSEx<ZgDDq7pBA`xiWJ&i2?I1041jiPMeK6=0V
zx<p+nk_)z7Vs&Tva)AH<JbOeZ-u1B=yH9-@ZN;DbDX8N&5_CPaaS!hl=<6s-ds%Xc
z)bp=L?N1>s=|lpvK-ue*`<4b0vZR?^rUzxXi+5y$V6Q2ipH!p`%`u!&->3FUUMt$C
z88u#<e(Ng6RYm7|W`X2<7?mCOwFc63H>Il;ab?V<LWmcL1gJ}(BT`w_#Lnl_h#qPh
zi=_N9xueIBM4Z=r+XjjnyM;O>F;{tTm#|V{b8lwVb{GUY%32t`JCFF%fuQgoO|{N!
zFUtklBpM;~;RVY0l1BtW7*&7ty-Z~?GEJQ8al)k!h|nc9cs5VppXC&p!hQw3C?@>W
zWf3>8d(&IhzEo*tYN%USTv=(TI%hOWD2ZOTj^_xqn$U=owUVQrmC0yrCfIQ2Z~6rZ
zZyj6AWEJ~rb^Q?<0_TlKYXQx?$^+bp$fImkGrG<pM(iA!GBjF8_hvN9w@A*TF{w0U
zw-L`Qkj;Lj|4iN%>}{p4wT`0>rQ8u`KK3Wq88pH9EPXp<^th`jJP1}J4+IGn3zFYc
zDf5dRNCntUfeXbo(s{GQiqZ%Fm7j*}!hFvB>IYCrlfHjVtZ8)wA!3%?loMf2tzgD_
zo7+DQh<GyjC@c)PQR@q$-ze<;ve?-4`4iXyMu_Ro$1;B~fV~(E1Nok4AAjU8dxZ+F
z%TywKJqpDLvGz57_qMiZ?i~a2tNIcOT&#bU=%zT4P*yg8dYE930@hTNHm8(GX|-dK
z=GmvucDoLElzc8)(5VoQtcC7sd9qk0^0b%PYQRviriY(4Dm%M!WPl?!qc?LV-KugS
zwY~icZvA1%;U-4R6D#(v31uV^@<X?)sMl?0c+#T-^sn-*oYTMO<mVjiVwrt=!XM*=
znek+i<fyLq5Z{(zrDR}k>9_iR*taOIKLxf|a~Z)KFNH~lpCt>#lr0MG?Xa`u&~q6y
z2xjOdt5soeD)kby+tr1SX*pe2`SfbdQAirCb`sgIZwLa0-#Jv0(-nO}S`?)1#53T^
z&<K~lH_J1UZocGe586U{wxmxaP~vou1iE{~Ke~-3%f_PHTS4@%#a5NZRFlL7L?6ZO
zFKz!C30-wl{0$pqc}`1u-09xSrA2j=Elf4<4391muW__FD*s}GW~?|l={F5(dG(HR
zyg5c9l)6^YYG$DEdS2qm386HVVfdW9v+dJDp`(@h%Q1C2J+SrL2E=Pr!Em(cVW};B
z7ahQ=a90LNf>Fb%r07g+pSY4mTweBLw5yBn)7-i<cMAgACZ?&u<%!bN?&R01g!Fon
zjBgG%0RA=B-nL)Um5EM2Lz#77E6uzLIe|sLVF0ft-zjj`%rBA{`(NT=zO?v>RD^XC
zW+)XBqz?wHt-A7GRB@vIIS<qGAtR;^Qd+m{50u+5QNi0rGNYTOKlo4c_Rds=d3;1_
z{eZM}@BZ54`Ey|e{V+XJi}>oV$aDX3N1#p%eQ!hqVzcy0Y~e*k@rt4RH?fb#W@QHc
zV|1x<Wy3#4J8k&~_IgcO^7Gy9^*?l^@PttXE5{9x6teMm@&8~|^_f67upVs0ublq-
z!Y=QvjoS6yQ94;N*>H31svnL9g^8ytT7a5Djkg<r^{O96uK$;TJHyRT<F6L}e@s}x
zTR|fMg9*6o;P=~{wx}2W?;SnNwI)9VRkRHBpNNf6g#RC1#QJwl%>Nt(NK+<$LjEiL
z6RVBp<Bj(V&xMg9R&45Wm!Cbu4sr;qA{$%HfaYZ0KgKc9I1!T_e%<@s2Pk59{DVnK
z3NGf}dv|itvEm;rqSEZEwFazwyJFfnV+CG*KEx|WC#zmb&{$Qc!G73{z8vV=<hJ*p
z5zhG8pE$X43X(!cG5sT(P(qw(V2GX}w1i_-O5CrPu;Rq!-)FL+NE%A7)lL+>JMw{~
z#7r#0dK}$tS3ZRB(l8X~D^a=9X^u7Yxt|k-%j0D9&<qzCnYM(Map71|wveJFfaftK
zT$7gG@b8xg#EQ4Kf@)1Ess}9N>`<DoCeWUB7p3rm(zUY$8coMH3^t+6^tqJxHik-H
zG{(5mb!TwMk`Om$eV5dwM7YEQk0;Qr^Zr3_E$o3$sj;z!VJ<yIHAXbBhfW+|y+-`N
z*4<|g#b7uw36YvI!lJ~o$Z5Diepoj1<;sUY?(+geKF2L*n+Ly1Km3r06WF^FB+xbj
zp03_1P??x&VygtKer-?%t>XoUiOuH?ftm#`TuS>IhUhp68NTi4k<5O7ZhkEfRQt%C
zK274yqu0_0Ieiq`%j}i&qRD!xpQu?#*M`)a=Eu;I9QqYiWqrDM#tyeI1_aN`g%nEq
zT#lPb$n_mFsIuwiD4S$rxd4Y!$$1Rl;7ftU4H2Z^+%L>1N%*8C`3C%a*wLuWewnaM
z5%Om^sMeq>*S{3x({%2lA~vJ$_R5wZ6YCDsG-W0KS9@O`*5tMB8{2K&N|m;Xs36p-
zB7vl6nH0#bO0A%xpbQa+f@mZ2j7+g^!7V5_K%#=AD1jm*42CchON1y9r~wi&422LP
z2Et?#LP&Df7jUR&?|aX=_qpe}f9(JAB>C3xu6KUl_4{y=PRG;JT52UBs6nOG@YD3P
zdOUqa{}&cn<MP?y7x4@s?t5ALD*|eAI;%vf1yU!I^f^+OB=7xZo5x+z)^?WL$R#{w
z<4!NO-Bb^+9CcUOCPWkoOp5(w!V2D3RUk-|Fa<uB5rn0p6}X-HIsJk6XSPIC)(<#c
z^`#u6T#6hW_MNe>nG=|&711$pveGxy#Bq4f-o2X-x~=P1uFrBx=)y(&seZeOsXE6`
z#gv~L=vUT?cQw-Gt^GamJh%GTXf;lmt`42fC*b76TfJwKy10Z7*QvTbuv$M|gy&F9
zzOgS>tn9t_ZFA!te7F0dj<D4Rju<^mWnP|NQ;A9H)9nM3Z*bFS)zV-S>WBs3YB<H8
zOvNk0>)ACJpIS3GW#h*3jk({cns*^Bh_fy2m<+mV5ZpPFVd7$E@TJ{zedEf$5dVkO
z@yzJpK2;OuXo8pN$y$dZeS09u8Lny1BOU!coLOJ#-5`|Ts=LzVt?R5@{O|xNk3*|=
z+gLlqe?@a!yN`UO;If}(Yag<WYXt6b$MNnO34rQySxTDJZ4e*JQja((iMj#??sa-(
z$x_^B*|X8=+5U)h6hMPPc5%DDq7_kFj_d_`r=%Vfg=RcUsM5u7q>}*o_X<BLp$PwQ
zV6w=;f2^W{+r<i3&2&mB>-Ndx-GzNqV8UDzf}fQ}2uNT;qK#ahMVxC_S*A{{$GxU^
z$Ez(HLTB*T;-uvMvUAhw>4y(Winau}VKeXlgI&{OX-wA76@kmDooD@wPniS&@BwA)
zS>L~|Wrg$DXfcN1kLSF+1>kl#d2q52Q!0<cje-MCeC3qbJgi5baeN5w%Z2wVDPrPp
z<MFc{Sp}G>^43~)5y~|o;r4r$2SrYUpx-8|4q@*a|14K0S0GQuv6kZo@8CIwDArwg
zste9l|Ep%g>VelWsi=y(#sw~lbuMweeRjvx#g*B_I_jaT`}XcVb+Cp#tAnYMkDw-T
zw^|kIA;3wIMD^k<wScH}Vpv{m9afIZMZF^2oL9f4O?memyFDR(dbVA0p|xLiQ|%FH
zi*1a`bhS<aQCa=)U>u~8T?w4Ci}Y^d>kiko_%Wuj*sFe~rnk%H+A?X?YBJX2Cs}1T
z3Qs|$nR}fHob$_X@pH#{WOpbg+i?XB{@KF1Z`B>GqHm-gd-vwyDbz%PZeWf&Se4pc
zH`1=`ZWXB;bp!jP$8dfGu2PPCQ8!Lk^0P{M@ttqL)!H36vARO8$ox=R2@R8hkZSgK
z6dj|VkJ^IRcBO2lsZ%{(C{1tj+g+Vy{CBSujK8d-1i8B5@EXRLyZ4@!NaomBx~126
zVt(`5)M$_0zK#4)Po=-{v~%4zLk}i_Dasph5EV6?n%1^cq&p24phW4xeX=vEqWZbJ
zsOj6i(}pvns3Qrg@dT+lGT7@qowkwn?^lo{t8Nk)v8Nr&fw{Px4<}<Jq%7P_HS+8o
zZIxUdJME;JN(F>Xg9!Utj~)(m>mKYFgwXUP;hDdxM;MqW&BWBnySJ(vhxgznoh+ZK
zC+vw8@@}O1LhB{Wq<t1Qu}wI3b^k(`&}FHygB2QRA(>h5Y$LKKz8y1H*NU2DVQBJ#
z66;{Rwwi?G)$z5|bHhCExh-+Nn!BzV>AlW=xeqc9id*T*dg2Suxo9Qsi^9l;u_k0+
z{NUf!A;Aac{giBWi&^YnHDFO`Ti<`>48ct0fn<ipWpPVjL__vogC4-%zTn}&`+uQ^
z#W$MsZxZM7KD7402{7{90fV7|UjX^mK$~0#iJ*mQFspuQdGLB55Qou=&g182uqI{t
z<^kjY(*<t_QwYoi@H&3kvS8@pbZ?*?K!WOT!0!ST;+h_}L}jJ6W=-$DgZAS5uLlLo
z`Vlxt=mjcy=YBMY4n~Ft`d1scLq9E?gA3aF2aq%R{l>hBE}({8`CwI$2e9qKC4n>B
z@WIoHloAE)qY=S($AC48_JA&f2DG&yljBI>`sda*ni>TQAujk!V5zSx97KYqbGSu2
zcNrR7-aR>rIH1@@NQkITurVzJYwFp@h+Z^b_JY=t<llTS33GrEn~yVJkMD+8ECmZO
z_{&?zRj|g3PF+F27nJ%F8qF`E2z3dJuzEE1pxS0;E?{PHl)KOyJLWJ}^^9bp1>1_P
z!o$gI1Tfe_jDie_<G`Iz({uw#Qn}GhKaZ;vW1uSY69Edq6y?`sKVf3UVptky;_mmF
z5)omSdL1c~zml@na(f2n;lqb2;!51c`1@@1D!$!FIk^A7h9b}u#=(u>7PDpCD<VDB
z-k7Wj_)l{kf26kbi~H)R#)YsD!;9m~cz`6(Lgtx@B6=<m4A0G(C?d`0f?fRSw7y@d
zQI*pu+lHza{hz@?<`!6Xx<n2gW_nfz$DCq9KCa9Aq{r(?jeyOrIW~7WguLcc7&G|Y
zE-@6q3ytQV!hX?tPq7b=mhhkWk3jEJf0oXN`oG_D?MDpu5!>5-#M2*h&&`s!=@6~7
zOCLxIP(GVJ;HQtcQ5HtZ+!XN&fJUU_!lw5SP}S#T4-Em}$n}*^<J7}Wfr(<>#B)`5
z`VsH<w7!O#sD6lxo}QWH4;a8gmNix=mgFcd5A=<_6$@2OFl4T*BCrXXWQ7*YYRjdX
zWWWzlnhS{|vs)&u!H+y`)lA5re}vffcansR3b6*k$)TsYl!5muWoHCd$r;D>fAkD8
zZY(Pq7@`$k=>EC-_7#;N776>+zv{ijfnSJ;!t@oD`06^V{%p(}Tv|q7(3XJd(K(+g
zF6TZgwU^exgN5jFycvY|D)2eT9$3b6ft5?zN9d)oeDbM?erc23V_LrGkAYit$^9Vq
z0C*(`S$PTMAOiD`ksJ&*3=+)lt}(@eyVeHF(-%7wv6npxy;YOkKM!SsfOG&@5k{Uo
zz9vY})}HgiGl+NA$Xj=y`2>ZU>~~44cP3`0Njh3buh-$|aS6J=@8ezQp<8V3J#Caa
zIeD#c&>dl!M#jkGa(Rm|42x~m3b2z-%!Zkas9=u*p{Y7UpwoatD(~5@c1ZJH^l#pf
zAmGv?t1^E~Iqlt+@91CUg)B(O6$KCD!m?KnQlCjn)+P?D_g+bCNfl?Gs%4CMt!?F4
z%RGY~Q1SF%y*)b(mz?JvtxxX15VF4Khj~GTI0{Jik0mp+VB=S($}{ow5%!(czkh8?
zn5>?7(IgO1uH_J$P`2VqGtbS@ON)v!hpXA^T7s+7!VE8*Ei@Qf9Q)ldG~-qyttAu)
zjK1^Ox<tKX|6ke0V<6Cghy@J9HSfvD;I%>al21I~4@Sno0L#4H5%|ua?$p#FLbq~o
z4H-fK;)jpy)IN^BKjChPVI)GMu~p`CQJ-@Y|D@+O+{Lw4uBeQy*iK6baeE93ZdG2O
zU64H3e!;ieQOnESu2(Febw-tly?3dYzfAeuVLA8+oX#@`E{+N5Qye0T6n?YM0B6?c
z&|F0QB;-ed`5f&c07sfvNj;93`}20~TEm>Ae|yjCq<hB{nPwR+6B7WTsL>ysu(t;b
zS3jES({NW+HZx0wMJL6?%mp0(0=Pt&HGEMeD^T4Xe9v7bo;)G0?m3D*$kcVlOGeFL
zRa>CRKIa0Fgc=saTT0Hw0%u{9=Z+O4Pq|L39>r}@o10t8^kMoXd%PI)DFetlLUKOE
ztv^>4Nd$!HLA{sAd7<l4C-}gu4*ut_@p`aB9q$CO$I*NGAf(R$x2yb?!?N?=%~DOU
zA%T4Z-lji0rw!XWa+n)3uQ=KW(P@x0u^MJ?w}P<Yo#ucyaB#Nn;{6K|1Nck7d_+6Y
zTlLa1uwkeq{yy*uvVUx&54UC!XMaZ-P=+fZj1iD$ffx@g0S21~>hKb?a$@=aYwf3C
z(;tBK{R{iszQ>g8G&gR~5q@BjjmvF5F!`?61s_`T71|~fq!N`s!_?r0C>sux_;2@H
zyH}p!snsw8uOQ*f-$Ztc(h*3DGeTWPJwGy03V;=+at*eer_I}#m=izi!pYj~$hJ)U
z3JiMBhEc>J4~ofOWu#Hlp7g`w9IIW1;@+#gHH<<$ilp<)-GSQk8nJ+89(2R;LsBmd
z?G!pV0ts|az<TvA$>0oUxPpH!*3f;uf&1UE3AZTW6lz2PDbgrHC_FRy2@Sp?ckg3n
z^Ttf|*;@G8rr1W}eQ)n<0Qu1xBrmh_4j}C6x6|cL_k_0x5?I9acG4CKJaTffdm~y^
zV}r;V<BBKa<ugL6#81{b=I_p|Dq-+@<1<+t<~3xNAu}we(F#NY*(97nHsYq8x4})&
zLM0s;4d{`|oBS;B)cDiPV)ru^s=>&So=cKXL*kO#-89_%!FpFw)?PZcy2{S$`!&ms
zm}qq)6ZU+$-hVG<bF<HvoGd~qHR6rnr}zXTqq5DBep}$*@@rZ!dPpSb?Y|;|v)muR
zQ_5Z)m2P^?I!#Xtt0hHrvwIq%79-=la5iVd8&JuK-Jva&itRT2fjc~;KF6&XK610y
z+}mTmW^GnZ0<&%0n=hf8?EyK-!ojm_VasFz&ylHfQTR>rCy&f8whsd+2dpkBGUmi0
zlH_DfTQ%Fc>a@P=k$7jnTt|oJec_DQWUXFAZ>$V&+QM>0KWTAhm&C;=4@a~}BuPat
z5}jjzcv^G8CqNKezT2%h_$;(OaV9+?Z5MyCTaOWhV82m(HC*ay4DN|W=G&Xyl|{q}
z%x<G`*8=Zb&>1^B0;6yEu_Ohe&nsEVoON0-(Q+bLqkeYUls+P;x-3^z#{3AKJVeRJ
zT2kcmSQ^C(9X&giBwxxqfI*eGyX~ZjrB&J^Yh)bM!+?=eQbjhQF9At*;eGbUaHAw}
zz9$MC${%`tv-NMe9QcVR$wpb&+y|@j4}Zh{YP+PM_Ir<^Mt|RJci<rF+_k+Ua1(Ne
zE^myRM=F3H2@PnnVpt8X=_v2I?Lqsl5_G=ADkq;b6Ef-oK4+AB+}4)@SY0ovh04Z?
z*CtK06Ca^n^~otuSd-@A`Q6=u__itQrMyEj)8cR+Bbeu&nSj1|+jD8j>KRG@EH|rw
zF0#!+%HjQAYa5MJJIARgz;V3PrF&uElL|+-FH#zx_qM0}K4I9>ZR=VLhi`ovORI6t
zG|9r(lz%M|t@lQ)y8BWz%Qm+olx(_Qd|$2onZVvO0pW!+^6lj_e8XA!!_r7PHONnK
ztNplja<%+Pv!zW=+Y#J9rZKxZ%J8BZ3A-k9{llTjuf_f`N)Iz9ez<a4avc`3o*^t+
z5ZFf-eNk?}lG(N3_Sg0sup2%JnO)EVuy6Dg)%U15b|jtiF7pkfj8DHEc+sAzK!ad}
zKi>m8|CP>rZ|>5P6OCm=`1|N$g|=pr_xcSS-K%3Iv6(%LXZzbTwd4Qzbf4~r&#!)<
zV_>a>enVsHMDJrGz(R+~6Hi9Y9EzoMI`F+945NjhXW-|gvq}37p~BhWB-eH0JAn!g
zKF2z~cPMAciFr^YFzK(ZF+*>5Y_)YeOPZu~fUZ;-L1tBo*EmZ+bsdG<gw5W*nFFt2
z$8e9Jf6kgPSi+fiyFMP?0UollkN*g*aRTR;)gz35oy5#aw^fT<!pHmSCT1pw<<W$6
z;_2Z$p#%B5zQ_#MKfbAB{#@}^$>yR5te@5?<Uu&^nNH^GcI_kR>G{?Fli{;{a?~#h
zK*s9@lh!ny)LIK~XBv^^)z0v%(d$V%RZGW1Pnf>du3)2w%yO?JH_FSL>Py`m7`}yX
z<P$X+>{!`9*_Uu=N-VTY$IKj!R`j;xOcW~zCbR<L5t{+tWJY(W2c2r*_|Mi}adAps
zm~M;eX=k00v;3j(>tO}=ZtUCrf<6wrn$hME`A=2-=cv{w`m10N86u{({=5m$-hVzK
zo_MsoqA?sj!aBVT?@o%u%%7}~;s|0y`S9pyK)6LlXAXOrY5nBY;GX#AGx5#deQK3V
z+wp)4`p>i^W#CryY>|f#ObCAy5Mc#4gE~c0)J%ysoE%N8MUaKO#@U|~>b9J}s;>aw
z%AHdCd*tPGndp^QHZiabiKyibR7_fYI~I+TMO!-A$xpeu_e*J&%iG(anUY1oa|f>9
zJfjq3Oc6S7y>aUd*%dQ4lhms96iFT_p{8SA*a-=o`#%D$%O2HzxsOnbao^K@fQ2Pf
zbBI^%&FiF>b6=&Ej5!9@wDlVQ>_J!Z==JiRc4ZHxv|+ZZ#K55b4trTKNmDgoe5%#8
zEIm8%9YM<hQr7acE#GByOgdeJgVX7JI4v$S!n1pk4|sl!C_b`e1X=p1D^cJEE?u;^
zHH1y?qEGK)Y;yaER@Xb)v)_0YW;WNh^=5MBoDvj|Z&XvLQKFZ2x(*>#{mSXEIUQXq
zeUgs5f0cMXV%D70rUIfh&}D$>?uN8l<rN~Sa%55cVGD(N`Rf|c64Y4oU;y=Ml{i||
z*VkvNrGMpLZw8>Ssr5L&iMgGZLC=ZXQ6}be2O(OmGw8KcjBD!h7?{X#JwYDWNzrsB
ze@qL=`Hs&`QnbeDyU)8`K<|E}Hy#~~N&oaiK6}6Vk45JEQf4B>i2SD~U<a(E;h@PS
zsPTh27IfR6#2>aYP3egR=+Q%o@3oC)MEx2NMd$rlpS}yLC*Dr*PKhnL6*4M>T8kDk
zO8*DCRmUUegM?GjlPUfC0C9?-E6kcsWexOA)>xr<o}PB=#EUfGT?V9Mr_QB4A8-`i
zZ}q^1zVyR>S?`Jk$(Y{e?x><M6HpDXc}0WSL@;DfPDYT6cdbGK+LyMJ)9UJg!ycm6
zWOm@$G$|?aA%x)NHr3*@ZrO=COk7aa?}1PvXkYlr-q71y+uAPeQ<yzwMlTLGsyg%3
zA7MxW=v|gq1f%g;E#X+~a#mAh(qnLMJ-y`a8eLeAFC!A*@PW?U0V-tNbx0MUYykio
z9r^A@JMP^ooMYd?4<*_#rhCizFJ>F98)zn6zav-q9u{~X1KKyt#W2||jc#wm`X57I
z((1H0XLcNoX7KqtXY)#U-Egu%s)+C^bN+?pV{_~dNL!62K5Ye+c@>@%dD;^elD?d4
zqj3O}I#vVAor$kdMWHRY8Jvjf{VPco=+CqdqZuUywV`b)_Rbv$SQS%q(mIEZ^VsX&
z$U0E9>scq%o@8n=&tq-x>c%4V=1Sd^Q)nyT5Y7sN52HK6(0EQvEu03h2Q?FFbmBZM
zi{PncZzSz9-O|AQCMiC3>o11AKynK>9)Ir*TdCfV-^+(Pio_CL21{Tc={{_7WfKOc
z_Vhl*pW??X`a`vj0ze3%ODF}Vo;#}09zQKQFY3+&xck>h181QuTbfwG4AFy87P6DD
zVxW_ugwKETLl_9(@RfD;d&TEq9FX{QCjp5OBQ@4Y=R83Ae{1t#uJ29HBKP-VwfF?^
z9Tv>jfAN7#fRCAus5OJw7{ddxO}9Km5sN^!S?XFEKB=&&se2Kqm>a#Um*%@mcR=g6
zm1nZJ4bqCNt;y$>Dx&w*GHvrU_6JrR#wD4rDg=qV)^2&z#FNNgB0JW_MUhM0F1Q*T
z&mZ1l$KN5HQpxBzcb|E^{7Gqx7lAV!cru|=xqXewIwqn!^F`|PLscW~pvm!pG8Rk4
z?Y>qvdMJZ4K<Ejx{k}$Zc#2)lwbkVkiZ=xzGoDSSriyi2%R^-CUQzU0(h`=;lmg$J
zw$+rZD-_lW82r%g(z^g*$go8*GSxd%$<y*(TFypyZ#AIwD|`EUZRA5YJx(U@czqT&
zy8z?@=QRbz2!vHRSA}S7PGD$C(zcApy(NF&lba%|-Dt7uN%4W8t2hS$_N*j6O)FZ@
zUAfHDgX4o;uD)Vl;u-9jkG!;h?ZL-`YbtjI`N!G}MD_H0VaJ9y^#9-<WJx=vat^(6
zcWgTVY;SO~3HX;53!)63Lp4d-PJ^F_^E1h)Z>R(A={HK_;`>Oyb6;weN3NK~M9FZu
zpEuUDppJ=C{Hm(HS;}Lz_?{fEK5SR%o2BOz15%p&22!&!+c>M6pUK`?;WPoKPr<X?
z8m2O{`oRkt)*4hpC(-2<mkd&4q>urtyb&Z-S(1hgeW`p9!z7t2w^Y*7zP7PD_C}gh
z+r{45_I-RHc0ZOpw$c;iAc1X#R+`B{hrZ0D9-g{^N*!w%Dh)6S@Vzcd4eoE3I{K^P
z>8&74tc#=Qu@Zk<E_$HT@^$Z_Z_~~}#PL8Y0zo5a5J2_JPdU?*euzYsihBFER;>Wm
z(h<A(L}slqIrqs}%CS`~M~y;xxSS;C)rhkj{1)}tacvt~tI`_2XlD9$i&9Qby01zM
zyxQJWzK*LK#N|FG)Kje5fO@%tt<GNO6k`*#OQ~%p;Tv&p68hPhq{t$gQ^<M;c&Tgj
z*xH~^A7wTs@vl)NNi;ZFg87n9Y&LjUy*m!>Q+;XEFAEHQkJ{I;2hW)im12IdUJV|_
zgRGzNJ`eQIHwSE2XlMcKP0vM*9}IqZ=Xt_mMeofateAa|n({=s;t_-{TlChdK_acG
zbo>u}2<`_d(bkn`gpB%2n?_|oWc$W=A)$#J+|%wh(T2)T9}PhID~wH&JomFy@r+G{
zXPg2M2*c$v%J|o$$QRszm=WKV;egH$530*Sbs}ti<*O5m%XyVm+MrqFk2e=ZnSee%
z1C5~%Aax?t<*~OP`H8dhHAt>gEcM0@kG9d$$D&RuUUYYl5IEKHqv%D4z_q?d#s!|}
zJy@;9CUbXg;ad-%Zf~nxs@sI{EnLpZ2_}jR`%gdk%j(APN%QXQ3}p65ctx0X-*~ET
zHD%^b)m>nj#gopKs<CjT-8X)LMq~m{@|c_KhoF%X6R=|dJZ#%~Cri%2WCW_?6A%2;
zZ}GkUH2yhpwXg=4zo)PrXNNhdpIUkI%JTF4=LtV(S1$U)0c_#M?)`cW`|GQQ?9J`^
zmDK^xr*|JoNh<cfGsR_o)rI8r_tl@?mGAyw(1I;lBDZK1DMF)4y2;UPhX-4BTV!wo
z{R}wO$}{e#Wige9w@a;+VYQ*rqBY)xzCH)m^wHa+vOpVy0rLULN$(C&y}UgV|Jg&{
ze!LcMztG@3A8=r4OCeyrR9__07khmfd;3i~0uu!;8ZtXBMT>43p+n;Yv_Y%d)W{p9
z;_{G#siHNGC$?@YI7w`btxec(kX}L_^*M>Fwz9<TAKff+B02^;Wir8y7~$EYZLK{~
zE!C~f%N`whWq1G5f+nz)OzAqdAIad1#nh;6vC_E+tVwEjM(NnM&0&VMWv2uYRSAzt
z=C6bnYlH2rEyH<Fn?HMW<TZu2pg*(kP=6iWytv#1nY*Tmok8F<WH;U039`Wc%@R@)
z0++C6k9#z_e2OdO{Wy;C_8eW-e~eVoGagXqVSTV?H+HOfHTO9=7=WIMBH{&O5dj0{
z@|tN>E+Ud;Vnh!0;;U?5dOj=GJztv(QD+;Vj=yiAx{HFe?_C`Fqlr1V3peYD#y5&O
zguB_hkK1w9I(Qz4d0^t9w3r^Oifb+Pl;2?|Zs0j+4W+Pac+zVDcke0%Q(j^w+wc3^
zpO^dI7!!8c*JNik@w)S)a$q5qHSMnkEMT77Jgvl8Z@6@4qif;x*I#;iK^FmbE~-+4
zs2oUfH}?UR24}*c8sYh4VqXwgrx75wo{!@HyB`YN(Wu!;r=Y}FQ(G;^6Q!Sm&WW(|
zb+TYp=ddtwfN%*u4(b4l+y$!~MKY8k+LA5>1uwY-qmBe^Mb>|7jFf6>H!X3s(E6;K
z*t2Oe75VjIR{+r-gdB*C`zxe}vVAngni$C-1RP&U2&uRI3$*@2Wz+`A5=4=%8yKy+
z{-S7X14tqihoz7t$LZ>Xu2j$*^^YF!Mv3%`x5E#QC(vR;LBG{?o?}&?!3B*-yKBlb
zu1Jb(OK{BOnIP}EWZ6;T@f)(bfu>q+LFMtGCZhcDu&v=}@FisoBhId>^4W&)j_O)t
z!}xYR3!;3`@+fiTm({^bxx77)Zv^cZs@$Y%iI!Lr*CNi_*EGKQO*U%ljZZrqF`T1q
zzr`j|&(DZb#5&VZRdWDcw|k_=6g7S4JJXcco!L;8TDBG1eXk^-YB|hpnQofP^s)Xo
z(!s`;1dcntJc1<IVQF~4K;-y(#@!=g_oTykv_Q0+cZ2rJw}}02Gp9M3X<JwQPTia&
zq!=GG1@8d*V9>WD73ekGuPUX$$s4fM+fomCuVU0FxCKcjdGJc40dDC**0Y}Q3N~5=
zNk#`Zs*>-2LqZ}|n3MuI3GQgR-)ThjZScwo_PU%@9=P?s<=g(KD9;qkvyQ++tzJ2a
zy`UPRR7uYy4qI8Cj30^NOQ$AN{?RiI9a996{7w{0=4LBb1MKpM#}~fr(7AsZc>BMV
zQ=^i?tBClFa?tMC(x}6F(G%`>WK`@lH<gvP!;af)=-_GMG7>fdZhnnK^_QA<`AvE{
zw@~ifq((F+^j)nzP9dfTRS(U)nf|s-Sw%S|pO~Gva}qT?9E9S>P6>>eTf4o%&0RU*
z8zgjUuP7bw7UUMMtkl)z-0RHqa7Wi_y}DL@v1z*t1s)faMeTWJ%gwx(XM=A-dePu_
zp1v5oC2MinPK!tw87u9JIAAv7na58PklP<8x(#nOjSH=QGdbg_?-q}+k><!A@2;`U
z4^68Hyb^vb?M#sP!CFqHZu{I^;d<iJbGlzvGc`-GW4_gM<|Q*Vm8*0)5|X*8<xTqn
zG`_hJpII5$ve81)^OB8*@2>=2ik#PAQM_rbo4MBTsX**<-*^VCxcSD*)?U3E$}Fqo
z4dLN#2la6@BIp(T(Nx1#!U-rMScT9p7@qTQsL(J$?u$IqsRyqzl8iQ+ntGV6Z#k^b
z07TzrJbsCrpF~05NQum6k@$#Up`urPZUSIg&Aui@9jIxz6?SOw7Mr~;C|z-6+hv}j
z+v;K28&&~tIVno^@^Up?Xw(~&_zZ+3*U^w9HlBI7V0zC&)hTCBcLn>o*I#Z%kj@w(
zuq|vez-*sbd=pTF{B1xUQI8$SibbrZB0PT9SMRl+Tk<pe6U$>a@;RBSS>>lr^Y(Lj
ztu9LLv+o>-H`^J~%+0rs@cpno$Sl6E*~p86VFbpBel--qR>-B$3hXr7KO=p&{ij^a
zQ6z=D(!t%k0dE_9WgCkOx;{V93>a07r5pH1c(8-05#wRMcj)96&tUEEA^*?Cgp5?Y
zwmgOey=oi7;y#pqN6hqrf2OX6%$>k!|LN}pTgkzHrmo6M5>HPT(P#a;w2C2JW;3u;
zp@R|84L*PLr4`VY(TTHrvIunPK~4VI2#mYriJV(^Zra6gmdVJJMQQw`6p(ZUz1135
z59&4fFMh~Ai%l48S6=I3farfdU~Dm4d|m-!5fIBAOWOwP!Of2qb^t`8E<o|wV>5l1
z!DK{@Nh#8IfxR_6f?J<FQWgMX2zn!#t6*YKP69zACreOaI3r~I!y=2RR#iS=QJ<u%
z+UXVYO7$Sojkt^SZsI<h+^Rmmlgoi4YNazjsihO(eFd>^j>k-|Ewf9U8)^0LpZ&FV
zeI852rsL}5B;4e2#*VDIn8Y^J3-YF!=anncgSk2!xubfpqnDqqlG8_2Yn5#E+)tj&
z%kMTO83x|W;iISmy80n6tU4~y=w8|RWOfbw0V5ox_!(Ck7v%Q0OZQ%q!;Kz=R)0YU
z1z6*G>l&OhizEZYcytE_wP)?YR4m#qniaJ;%A}#Y9Q*V796+IWi%)0A#=Rq2{kb4A
zbp=kEr5c$KM>Y|cAh(gbMY=tx<o5(H$^GSrvR^5t<ia;@+#=PU16b@q!c`tHuU1fp
z5Afonv#5`NlRxnVWCTG#5SYQS`M*7)Llq!fP_SQf;+n1^O&AZg7ybLgzlktk%=tGb
z{F@X0%?baOg8!WqWQGjHaAnHUg-%;o@mC0ay8O5rdZ}67{&^F+(6kH1s{a!o^ZdLe
z58R&G9vE|PC(%||D?8I7P3NuYM)vj!WKGy?;d)VZCuc(e@nsnWWV0d9XD>QmYVURk
zRpDz(c)4@vjms`h#k|c;`H|Jx@Tz5`AgWmCeEd>&;#p?RYK^Po`X%=EOI<H$28ric
z(X|ezF?TLV#X}C!MpGBXJvcN&j$`0@&6MZ`a^(4)#Y7088Nv(6dtRSY`4V5ozxHhh
z&Jpe7wHD+YHg-0QQ}u$&E6O>h1yt#!%`xpHjeWiaIrD=v?@Z0m?4rOHwR09Gj%!((
zv=M1GU&^MO$^e;ij;@`gtXHYHvGC9>@r+&K$!YOm*&ECO{hfb$x@JV{_4Ig~p;PMF
z*j*Xv3U~KCXPL2xib#FTYi2Yd8in%QA2(8_?9@uPB+houXay$rC?r4B?nW0QgWRx-
z|M<-XZLis;lLha_5!Es`I|D~i0-|`sJbBX)F3jkSxxY4JPB6wMV}ycAIJNexS#e<X
za+c0w>wsNy0!Wp@wC}v#PC1C${;umCldBL8l|*e_*!VueVv_k>b+oZ5d4%}IC55s~
zTR=^0%NV3(y21=V`A2i8vIrOT^z%ZLwzu<zL*@$$KuY*}D_e%dFM?cD>>3()kFMUI
zDA2Mk)zM^U*{M^ciZFFUp62M8X8F4s>~DXbp0s<N%0snuq6@rs#TL8}2y3l;!JLhR
zlVLV7ARwb27)uowZp}zJigrD_rNZ^%A=`yn%>|RDsb{}P6Kd^0au-e>5nbpFYa;%Y
zIR-fG-J=wU!ysZmfmqHTc*np6*SU@_On9CNaoGQ#Og-P2|Nl<LM-ciT657~0^>|pV
a{c2cs?fU)w(cmpcu>JOj_EL7AxbPpZ4eQ4M

literal 0
HcmV?d00001


From af5c33d5aecfb61a1fd22b9506f4be51aa568b44 Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Tue, 7 Jun 2016 11:43:05 -0700
Subject: [PATCH 04/69] Adding new images

---
 .../create-edp-policy-using-intune.md           |   2 +-
 .../images/intune-encryption-level.png          | Bin 14139 -> 0 bytes
 .../images/intune-protection-mode.png           | Bin 0 -> 23667 bytes
 3 files changed, 1 insertion(+), 1 deletion(-)
 delete mode 100644 windows/keep-secure/images/intune-encryption-level.png
 create mode 100644 windows/keep-secure/images/intune-protection-mode.png

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 194bdc40b7..a2e3cc12d9 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -228,7 +228,7 @@ We recommend that you start with **Silent** or **Override** while verifying with
     </tr>
 </table>
 
-![Microsoft Intune: Add the protection level for your Protected Apps list](images/intune-encryption-level.png)
+![Microsoft Intune: Add the protection level for your Protected Apps list](images/intune-protection-mode.png)
 
 ## Define your enterprise-managed identity domains
 Specify your company’s enterprise identity, expressed as your primary internet domain. For example, if your company is Contoso, its enterprise identity might be contoso.com. The first listed domain (in this example, contoso.com) is the primary enterprise identity string used to tag files protected by any app on the **Protected App** list.
diff --git a/windows/keep-secure/images/intune-encryption-level.png b/windows/keep-secure/images/intune-encryption-level.png
deleted file mode 100644
index f094fae2f9c6951e405a053afbe8043aef700136..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 14139
zcmb`u2UJsC*DeYuf}sgSiZtn=BUL&CqzVL(-i-8Kr57my5drDFL{NI~5I}=crT5-J
zIt1zM2H*ET<D7fP9p}5}{$phCz4l^c?YURhn)7*{If;O%DG&gj05C8x2$U4%G%+yl
z8KK+bxLD}3vK+7ieZh3oQ~+a?^;2)6Z|+;ksLEhqRL0<4L9x;I51keD-7qi++wTs{
zPNxEM3=E+`B{`W_Uemjo*D=(csSD%>l%A)}`|oB=V<)9dxiJM5QL?U9jEaPceu}~0
z!gv)i+J#>JzKW!uWZ{Z=txv`on{*%V1G5IOHpw2$GfJg;ft^P$)2mOYv_G7el$WHk
zAJ=QV=c*J`n3`1<P_(tVwdXyRnR)GZ_>SU4M^{%{*VF&PyQqnk<q;T{KJ*cvfqru&
zlp+lM+10xTc!uB3i~i(1`g_6u-*-?^0J+N@{Vtn*Z@0>Co35ywZw79!dw!iarq}N|
zW8Dpg-`;@<AefXmS@BPtk2w1octLl&-$;J@bK$Db^k&U8;QU5(1LN-l?Wx6Kw<uG8
zq3+edoAO(lXLvA$nClb%z+>I+{kF5nwnggKe{GEl$v+s$zHv`|$qBsKyePVM`2ET4
z-QV{RBFq9y77B~c9Id6<RFcn6+%}KwtVR;0ZUx%x!(-WoN4d3fj88YN$nPHMk&<7*
z4oov9DGtRdvt?CiwP>s9<@r;_BUKZX!)t%SmH+IY$*2p@=LP%5(QugG+|UzX_6>>|
zfp#i%+rq77;q5pyZwgX&bs8U#eopKZlzsptlcB$x(j_+Pu>1<yP(v^V4bzk7Ko7fD
z-KGu9kTc}`r2@Yq0q_m_Z6*mbv>FoIcPnx#eEJQsVE0@SuwZv@S?4AJyH-do7A@v%
zW!hXjn4KHW?DK5nOTwGFC*q4uika)36pZ{-k6_&Mb}8D*06U?wp<l%lY82C$4x+Um
z0$ScQ?+thy)z!P_-m1BE7bcl_H5oEBCMR`-fa@>T^n~2NViGbAk31c%pU1<!)SxM{
z{neQ7BmP>xGp3)&<oo@NjA%~Nt5x-Nerd+<4052izoIwvziWYnd~lS{<gs+<ffw<&
z^HSzTUwudAo=XzKjDLL?iV!OuA&Sh;OI-hCsW-!{yq1VCJT>n3KJB3#=YVRZKg|G8
z1|j<^uQo9Ahk~602OY5?1(}1F>JNUNRHjgoqF=rv16jl!e;?qv>-t=p(q(0YG^A20
z6xrjwKEPJfEH@i)BJBeDb(+skpl9<n=k5KZ49r5}YPS-mp!oEeCxz_;8}?HlX@Ryo
z>7r~ZT(41v?f$?aF{nTk%Cv=ddS^H`YT67v$<j~@^`%7}x@4+pt<i(7l8=$x0S%7;
z#T%4Y+HUzaZ{6z@;Jo9?^jIA#>5=PeCh{w^+~i8e!YNuei1T1RE1oE2jW2`jRzG8y
zP~vTw%@Pk_E&!q){knm>(I=yifJxzCtJyxveOaA@h4y5+F|KT@o0oinJqG4|q2fOH
z0F?%*>Nby?85Qf{{)3Ts!^OFB%;k*&V9gv}La1ZzW)?z|a0u}gk6}kyQqAhU3>4w(
zb*y^RY-XwwjsBsY<yTCHA~dy#<}3hP9OdzclFL(?aNaDdF?KnYPu<Edaw?nwX`IqH
zi9STCEP078Ceu$nBDZm8<v_oN-sM0Xp6TyU0LhM*zA^tIAw_RjdwX#h^YwcR^qlxT
zR-pyTBQu})B?KdjoWPrufVJprY4|E{yj3<_X=)TYRtEt1mb{XJ{N9-%0`|zh+<j82
zyL-1srI)(A04l8;`c#d0dh{`BZy=MTfk0jvM{Jb=HcrRS+_v~k0-MAid;G3tp}6uW
zps!8QKpdyFpT6STAm=Y4u%ARiHZR-MrMT}lQq*Ava<ahac`=V9MYuaj>k99$y6|Mh
zWH;b(?L|YyD<w#kt+ngGeE8?FhpFXM-Me&vF=6HPAhT3jl1vb#;imYzu})@MdlDkY
z+W@0Gr$qHo9eS&={#*!q#o{CmkwKAtqYT`9ePjyHZ#gq~_-tcsYNbZ;)*>8UU-BL+
zMDy*u76td$LviQBQ(&0WrB>up3ym``go00}#y?KB_e09P$7XMYlmvQ>u4mn@YGYyh
zY=1W1d_|w>6ul(wyg^+lykhF2ec@)ijpGmAP3P^O(^9t$&pF-Vt6j5XUsUqP-!8(<
zX>#5RS=G)zcFN8|clPK>SN%G2vupVpIhcAH9<)#c^y?l0bdg_1n%X&ip?w$|KzT{3
z+_04En8Ad@h_6RjDt-h%cLTQaU6%V_I3>p2=)UQ^TZkTENIp61Kj{nCHw)L7w~*_Z
z&Pi$e8N{`tR@=tVNDurO&qK704}d55w%He>`90E0SG82x=fA9W0&jN)Zc0AqKbm35
z!v^ZqD`%&EM|;i+jbq@A15XyXnq02IrY>qeK=?K2S75FAjFTuIr0buxM4fXmy6MKe
z0nCyVyY#$WU${BXzHL08*uf@VX8ED@KK(AxP|<;Y$dA{pq>a;H!@di@{TnnuKmK0Y
z-+}*z5MKQM&JKBEfYsmlH%Lg9g><m&)SQ#Oi-u1!-hp!-p&MXa(0u^$U4;Da>;Q#=
z?@=C*LEfXshi4MP*2xjrK!$&x76iU)V8W#7|Nfmm=h43=+y`QzJO9fTkldZ25L|TU
zT>}dc^smLzP#e(IaPt1CaF#@?;qSTX_Embfl9tOLBqkW@R`pDy*h#5A-G0>W_(AeQ
zSCR69^|<KiCm*w_>=o6QqiHqG<3-2QKg`|UTcsr_;A)2;$xr6nwtI;vL9<6|)5#~a
z%0hL~tq9-Kd7ZS5tJB3H{Tyd=_@MJ-sJ0bi!3bne<mzF651>F@-g_FAg}1nan`S?z
zMamWPs0aY-P-{K=q*S-@v(UYFhgK#u9qoAOAd~dSopGm|nG}00*r4n!WK!hDyp0)0
z^}%Qn`h~4YbDV7_$~<<?RGMvBwb~Z5SWWts?7fB_g4%qYZ&z?)q+08%+3tx6PW4)v
ziCGb+?1?@NLe9enG5MSp%O{%rrAZ98)a|>d5#|KVR?0-F{CtZMoGw=Pw=iVt+PKo@
z@}l1BQ`+BT+FymFz1)!}NSQt#wVnHgPkqTXNXx>Cm>Uy+@ukYrrrx%~caqOi*YJUs
ze!8}-`Km>kK$_x8t=`7!c-0S~FV6*qc#d;~z7)i&6IE4ZiU$V_L!<LX`x_6Gx#PM~
zay|+3HwKbEQsmgy4HNRTrPJ+GU&(@uuSxJ?NKA~NbSDO5Vjq0De<l6NGk@X0y1l+>
zWj*jZMcdQNj6_Zj7gW+P$h0JWX*igE@boK1GLvH0Kn_$uf6>2&6BoT<VIuwS%nKfU
z8&VXu%ze#wQyUAS#2qQgW3{Oo!mS&<S9Bx+Thhq$WRi?g-dnDCZ7}WrLmQ{jKGz;|
zOxUbSS<}bcN8j@8zVy4{Jel4G)imM|S73Zjb@Q~fcNTbG{3~`>l^|7!StD2cSV0n5
z9x-jNn4O7KY%K>0coELMrO~*{qvklR`%_6tbDH1oW*%~3Ti<ii;Gs~iD+h<Tx2>Dc
zh?E-}nb4^X7f%EaBZxsYiNpOlNsrMhed{qmRvj+WB(&S8qE6Cvgj;pp3`(sGQQt`n
z#0G?8!H`r5AIV(*sFJ=9>WnrtCVx*Fmz9!&n`!P10kv2s#pfZvE73BnDyHXC>}!wq
zDlbFBx3Fs3+xqxrgT9rsRCZey)V)lCi&?5Pq&oYH*yjGsfm~=|L+?w+vnXzku=3ac
zIftZ7sQ>wG?szsCw5S*}e3gc|?Ec{?c*!Ps6}S;(X}}f^|8hH=^@9TV;RJtZJV`l=
z#urEcI66}g2amnY6iR3!2jd=JDW?gIiI}wD1Mazxz<JYtJ%V0{9kXG<+8@%L;=&vs
z_1J^bW_17nMw1WXJiXuGyaTL2Y51~kZwRu&LRlIv^~#A7D9=hx_!xla`|3wIWjOde
z1-@cg$~~}t5(d7-NAG#~cQBM>_i@5F4B7uu#)+~D3-+RW7*wsdf)6BggGbQZDu>0y
zQ?DNIgt&{)H)4SjTm<3`9pCFDbTY?bEXwiLlK{hpHpD@Hg5&0a0z-KLy=WV#Fzp4N
z+zUq{4k~pRF{h$vk)0A?=sE3|y0*FBf-g35`V8K+L0hgO>ds>Tjv9~cqrzi)W#FFA
zvu}S0?vWIEJg6<%BbJoMJw8U+ilq<g%P@f3mEP-zAcM_m$X?#m(5WwdGgTt(e|uzP
z^b=3DW{d*$==}S_tm1D8*5Hy)a&=vwS=P<4Ik?Oz45*d>?VYMF8G2{W?FtOIj2yIz
z#~8S@?!%PvHU!dc(!PN~h<q-AO1Qi}BV{1|N@*F7j;ZzVFVEv{7)#%`?>c1)5yPTT
z&!M7ek}uA&5R-d8&Clms9m|f9FqVMqSUlAp8F*i5b+BTElV*_*A+X2_(hER4*25R1
zt=3ghk4<U#f-Pj*6FYKRT6~l`A{EM$3{R%L(QfxW+CM|}BRuzc?VWT%)T&!?0a~-(
zxM*j6?{B!c4}9}qt{VSePmTV{-_XJbeA4x<{@q_Mzv~XVU-wV*|G?oRX|Q1R!a|bv
zeTc(i(t);%@gP%#|LSCSA%8WM=bkgc)4w5QmJQ-%b2D8n6?l}n5a4{1%Ta8%jXwCv
zdFVuLE;mg4eQ%~2k}>~A7UW?#GBUYb@_KmNjgE(tho`>3Pat2NieE}cM~B-eEfBS6
zr%T4}wq%}b;`A~}buJ?#r9kj<r-&uqpv4d6<M8>})GXn|>uRA-9h*|5L+<jmK4uli
z0#hfxVD^(BRf)*>s8y3Eg)1kU@jsIT^UG=jZ#DvHy`*AoNA1@3_}3ZIC?dbUzy<vX
zdkEXE7e1kRE`EAg8|jve58&qFD)p>sXs{l1-a{p(M(SqyZ61qx?#u7hr4G}37eMqp
ziKeL8K-8cB2era!gl5wwJM+9fh#I<i-6z4bf(1)gc#Zy9r0IneL4Nx`MwfC~KgLve
zH(BT%kiu(g1>0f8#l_*#R~Mdibv?5VeFaIgx#0vbj~#(r@Wf+Gpd$dN=FtJoapuhs
zNP;v(Bx9f*7vwzw2_VpQ(b?{Vk(ATKs3~A$kF_)KdYi{@3GenS=GJTZhtkmk3}$C#
z)gQ=v9d2dnUCabzX=4ToX%1vH_*>olJduC)!JWjaP5b5`r{dC38cr~#G+y~rQE2*Q
z+>dUj*gWDxhzG|on}@{Q*4igp(PA5&e)sZ|cjL6<RqfLsCbpF@9G3^-vV!?889o+*
zW8u)v&Rv#A0psQ>TEIp)^FhaDiD*^EZjVLa?%w40J_8-GbZIjPCQK%``vcQu(Q}K-
zcOJI0>%(f51)0}&mm;jCW>rJqm#HzT98#!7#a&tl#CGH7D-oJDWgR8*Cl|vg8{wQe
zkXF*>0Uv2T(~!!y9g7cEZfa&d`k093&^c?j9ding2h7Evg>0<e_<o*aZqRt{S^e>O
zZaxNjlc15F-{R$EvQycUm_^m<Z{{m|8*K-$fwzBt^4yF}?>0{)>wd&>34k7cr;{KJ
zLh`2AIi2p#c#1wUAgm^QQQfR$rJxgo#Rvf<MyXRiGPk$IaW%x(s<AXk=`Z+{I7M4F
zWG&}MV(hm`4PxxYEpewR8b@sGBoaDF-mj-*$PM3%9?lk?vKE*#>mJe-N?4t+j2_?_
z&?*qc&eTEmZq|p{o5bpQ&gg+&Jy8`S?m2olgHxlm;`tG*;F>>5P(P_(_$sF1cfD(}
zW)^ZX8oTv?^GkBf3yz5AmWI&qfvyIViDs=K=GV<%CP<ed6m7wyB_F1lwlnmFyBalc
zqkm<k^<-k9A*Fq~?9$%;Zu3wOQff}mxV83>D0?5g6nMFBifC=BtZ=UunY-|U9vVtr
z*-)y(TTEws?Sx#dJm+8M?SEv58g@})?O|~`WP2YPO|ActGhSYnP|CPoreAe|aj49c
zJ!9xM{t@l788}F+fI4NjVvF!Cp(;BzA&dKk*n^dt4WgqQ-aR$+i6fui#KRZ%Ybtk(
zS1k<;AGc0(>&p6V|5SG%c>EbEr-ELs8U{9e6<KOy4ESBgYr*8lNhh8_StBCBpJUsC
zu^a&!Uz)=bOLkaKi!#CL5n;!KEsugSW#)<tRR3&o&@NQeCp^bSqgw2fv-vrP-MQ@a
z^_@ee7j|8r+z%pJV(7#Pf$N)<Rwj;FVou0T%hGNn>SEjJc5DB3>FD;n?P{VPt^aJH
zn)Lnck)5ph2I@4=jUE7Y1B+#$B(rR9+mAmX@o195k*l91Gw<&t_C8z78B_?$f)CQL
zNUZjV2x0<l=ZRUf89b-grJ;kvMQ#P@eC^3MIlKeKG+=04{#GUp7O;aG(8r-q2EY@$
zdM^#1aD+kheiuf`KreJVi3o5RM(gvPJ=B3`_{B8hqGC+Ewlx0U1Ef4FY@E5e(bT>k
zsHhWg{O0&i*jlfOU4*fLL9_F5N8x&nzIE09x$eBU$LEs#3Vz-{WRgh{`-$mV6q3uj
z0J`2EETtJE>jW?OUfC9H5>1K%d!(~Sj*i2mXE@P{R6-nu{ZjQ(+fbKX0e;c!X1WN3
zB7Gzk59YnJ(gP_FNc*MWo}~u06+}bDa3s5S@78Bo=$6(itCV9>Ny2DmWb2_m!Dm*h
zb91U{tjT`J<WeszMnwkh^PuIyL{0_R>U~{=<~3p?+auNP27!AEeD6<;CKJfRAf%z)
zcJrxZz+Q~odZIx7SHtS$vaIYjsJ*4*{3EzGbJY2-ZehCl>|2}oU=i5q2eLG;n=mG2
zYqrv45!een)g4!Wh;v<#N_us++w2wb5G_d0`m<*4#}Di6N%(YPY<N8xdkifV`eL{l
zapknHNE6;65ipiSIK)Pv(GR}f#L7C$8j1`2Fs@U~5<TNs@f_GOS2GWe@7mIxGIVW;
zvmonq@2`X*Bf6AnaAK6-dTpi=kf$XCfy+&?DeESZ3Lpg@54eiG(m`Vb%^F_7f^4ju
zN0=}PS@=WdHeZ2<Wcz9ijbXU)w=BO;_P$>?H*f95L5#&7IA9I33?e)Og;m999bEfQ
z5*wL^Y^$BpX7)S>ME{(7r9t+54}QDwv}c~6wl>{1+A23H`K!s}l6AAwvg&xsCEr?}
z*e!UwpDZ(%h0@!2IeE#Pe%6=(l)vohhMJqw<vu&bZHc$ApC5{P1es(6da#n$Z4i41
z8|c`Ln1~)%^toZ};15qtg$J|5Q%_q@sy_0f`;tHCDDbl)9&cB!-78FNgWt0>70>i`
zFIT<gZ0oX*UpPsZtehu1L-hK`01KVh?@oU5r{Emtmp}w>fdauk!Tbsy>?S?t5m;<e
z%S*`cUEEb&iDiHyP=)0A;X-si@3{l+aIkTbgJ+-edc<gsvqy~4aojrF^?TVU>zL=j
zC#CZSmuq63bOETwa`Cf}@_@@&g{*+3+S7pQfJ>nXj63X5cMk~I&%Ne=Oy2v4%sMaw
z*U@VY44-@P;5`Q{<{xGYhswbH)S=XX%tVGgaD3d7S+n2jA?uE5bEL*BjAbtBJDBtz
z?rr`24rl$tZqe%N9UYgZfAB9+{_$V1iQ>O#^8W*Q**AlicB7(*4Edd|wtgIyx4vB@
zccK&VaNYW~(~&7=bnl;`Jpn+Iw6>F-fd#*fdb*6;-#uH?7wF^H&t8S-+nYw+g{-!^
zE{k_}LP3u675rd%tysP7&&6yfUT<%2sT+Ua=19k{n8d_HyyW$4@w4efSm`p-(&6*?
zA0bsC7Te>YM(|c`MEAN!3qo~?N?X}f@cN+Xds3lDqxM|6M)??3ylh{afBF6>_w`hl
ziue>;-*bGI^-zyL-|i9N*QeJKy<)!|a+n#`o+Qj~Ar^9VN>1_7ogH7nf;8m9ov%+i
zTJME#NVa;o?8V7^|MKO_aWok@Il+^D<5oVm!=8Aa7BnK6J2SRt7^{H8tw4XuhPjs0
z;l;!6tF$2vsqORcvKcPIktPb`zu#LlG`7hoCa{<PT%Dq$0#OUu-h(lEGF<S4%n;7J
z0a3or#{zUx0~W-dy*>N=aD~x6%aM}oO3vEBq0f0~YikS6*mg4)UP?i1DXZw~{A8<^
z;7+ty`UZ#8Y0ghks(@w@ml$Z#BAOCND?6jitbU+QNbT4cU>^K4Qe|R)_WDQl{|b~=
zt<4q4{c)8-1W7kdlrETzEVvbqa!u5)qH7Ba3psNbJ!*1weHYy05prXAVnl!!EH=TP
z!9`O5PaEfjomsi2OZE3FP2OJv>vzW;XAHPzdRcH)#^ylES*wLY8tr?eJ|5VACRwWT
z)iY=)4eiHgXA^?YOX&e@Pd2KvuS<5+HYKLRV#H#oZ7{1y;m1)G_A*4T!s-|E&a~rq
z<7-QwTaVXeMpYHY<8KL;7ksBj%^iFf*>xmVC={%{uPo@+<GkR1TIerJ)^5M&9#K*R
zofwwS*#U9CyEu2R8*5L%X6<*dG9;P7g6=1Jlg&CHjvR%*&ix!1^jGWW@m5P8wf)Ym
zuWTq|DA@g{P7v=*esm~{vv#fb6@5T@)j6I(H%eeFA)f~UurFr0Y>M%o!T<`jQmYcu
zh%%`s=@uRMMEo(|C(+sez$nR${{XNL-_0q4oP9ez<ykNir2U?58PwfjY-d+L<Kgf9
z)9cX&IT_v65Wht>%?KB&NTvLd%%@FNp+=g?%Xdnf!}9X?P-zeEnV|Hva|YQo8(whb
z#g!UTJPx@ZV#!#4|EYI#O&@dj7#04i{C4@<EZka_xGdvcN?{3~{9oPNEWJ#r&&BjP
zB3?Fa^m6EV=@I}o#ijD{)wBFDVcn+HMK=D76Iyx<l`~W=MHbG3Y<0Q{Q*~cyRck34
z9m6sxYe*8WqIcaNmj>F-)W)4Ivf<;gc-Hu{?8P0TDzEz}Cq`Jq&yFn=eh`|0G7;wc
zeJwM;At|*H6JZ{5L_YQrLft+ZT)wnNDB>4YrCef4=Qa*?#E7K&U9wW}p#ys;SifIB
zm-ukFF!^0+TAz6N;n5y{f3&u*tMkL+Yg_kDY_t;h(faiCWbU{0Qnq6W_ri1o{m#W!
z2XeS?-F<rn_S5P5AYU8K>qMRDOefk>IrTH)DNd}3q>(N6=c+8^Y6QEObp+UU%7f1D
zxVd6PdCpF(q+y-jjrImXRU9wtgX?`*tje_SV!Ozw^crRJQjKNTX-}o^X^XDQW_~QT
z7OVS4tex76jG^iIF-CtzazN%{Io3;h86WNVfrrq?t{pMoHu4$+UzHb0n+GC1JrB1@
zn4GsLk`UPkm0Wr5kwuabgUl<Q6E%_3{v-D*w>fsqP;!b=o`b%*v!(z*bs2|UvLr;%
zcs~~lwl@94`}L>OvOhakx&^PqODN^>sdcvNpwP!3oV4hHEVW5iTtt91=GRBb#{KgA
z!5yCaPL4}!vaVhckN>P*9aQe<GKz6ypjq<E7>Og-qgiiKNg+E`vZM*p=Cri`8N~_u
z*^9Y&jM<zfwB}Uw>~Isk6PJIvhn1zyQ2xnfeAKMU5E~{_i3jIh`hNfZOav9dSapF{
zVC{MlKFsFfix7KeAUo0N<D80b?Z(f^d7XY}X5wh<BUxmiOwYA{$3=jlI~PxAK={+8
z?+TRbBM4zi$~<bCt^w&=FXse6?pX#Q@g}%18>OnM!pu54&_|d)hx8IC8V@bMQjBmY
zL`#UB%lpE+-M5#KsI@P(Ke)L{jT?McUb#(k3QV0|aX8V6X{@g=^9a~1DA@_tFZgPN
zXhMFgQV+cmR&tCza9IRz6JmTPC~o+Kp0%fmmt7p(0fqrQ180h+UWYStjImRB-19ZG
z7P!PgE30K(G_SUH)oY-+Q^LR=ETAlWTKM82U31G&vB8%E7pt_iX{WJCEuZ%psLANe
zw-qJ$st(*=wYq}BV`M=Im5aOvU&mjp=f2{VFl8<)*IZiBgrxY^cmGzENOW8*pHgH@
zG4ZRY7wV2!s_Qj!Ym_nZiQNXb5LrX?ATZ^6wwW1+0~tw3A`zYEzL%h<jzz$VLJsdf
zP|nBI8$><iLLZoL9}NwC>&M4E_x-PC={A0G*r=)2Tk;r7NCmb}{+dP5gO8M-9HquP
zNg||fY~s5(Y-UA*dv?}cAt^7wVxK6v1zhsuH{4I1$J?l!HNK`6!#;+_981@c#`XIj
zhKs@*7MFDir@55oKi_xB@h~h3!1m0`fJj7^u@11w(*s3eqq9V?fd?>uM*B$=o+{FH
zo%?y0sr7QH_$P~ar~910Mflp&LVRq#&ikE=PCRD9eK7sHPlp&d-7*YgAsEX{C9g}8
zm>qvHFS^QEmNP<DquG$7Y;3Jb2soxqw9uP4H)$jNy7AeKJ%L-dN)@dW(POXA4Z6;T
ztGcYB(_`B3MIq)$^E7U~<rU#qOJLF{tm6)zd$0>;ozeJ~WFNAy7zGC-4D=+Wd>zQV
z?a1ov|7D_RV&ZS>Gu?`~7)_lj_um+ricGeiY!%4R75O;ri@=#Ok{Gk|n=e3^<z-cA
zc!_mW92aQ#oQh4~phNug8;JF2TI0d-zU0MdWO?g?xSN@`#o-02yKqGP${rOI9w6?9
z$#5SatgXFpxz_Rt8x!VlTjG<DLLWjwj?P+Cl;}8>UZXNsh@{SEb!o4@>$Y8YF{-y6
zO#8O!xA~{Dyg<Vsh$)1^n-!_kNQW}9;#DII%Yy&KTh@9IP%Du}Qd3cYeADoy$XG(R
z*sOv%0Pip8f*-<=GC4DYITbeJR0NB@U;ov-ka3U{PAsSJ#1I}$FH`KkK=06M&IOh7
zHY<A795CEJ>XYeox6+zc*mwE2h2sC>H%Jh8zuA0Bepg~sZBWE(OuvEi+0}z(iOYG;
z)2OfB`+ZeT=dSb1Ut7)uCZB&$xmLIjSi7_r<`O9PcdT8EB+g|y*ACg*t?Oftd<3?}
zk%6A+$ag!qUM2CUCsS-7LNxGD%0)+#{vcD90CfVoUi_a<shX&QCYRCWe#3jP8&*)=
z13>4ycx1B6D{rkQcUD=yg7c#K`uHHfqhMS4#IJO-JDI)L4xekvSE5mEkF3}ufSBrB
zL1Q*1Hah)s2T!5TfJp$lOU4XTq0U4#MS#rMxqYlIZFwlFd2=Z_b~Nhq>s%6rc@oe|
zgW*eDe`-LB`su1azVM}F+}X7DCBGI8iMk~Vlg&#keT>~G#i`Iy-qZ{K`NbLk{-I2P
zb5q^O=e_OSg>_$D0Y5@-rbIVZ(ix90SpPm68}#P^IGt~bA^<sX`#b;g=Kx}Wtq1lr
zz#IA6y@$c!rg$QeXX}FMao1!7B&9BouaqAL;3kR6^nW5g^`fb7HJ`~%GB``4FsTg{
zs}*4pCC{iMbGU1~@q4*Bo;bYViroSiwne^Raj&SszFLz5J<YgLkARM*h1&_mtsGVx
z(s1c|eC1^bh-zeyR*n7>VMPLhX78|dgLHinoG+!Fb2%C-#_<Y`QsJi<x&BQzS>`%U
zL4LTfs)%Js!ONPlzeA#h&?QS*IFTX!NJ1!*d#RBlV7WM=7z_`1(7b0Ah$Srq{dNpg
z27T;1Aw8m7&O+KkQrgDvWLx^X44L5r*v(cpaI+{pra8)}*y0FlhCcAn;Pa<lR1UA3
z34m|g+%l+SXoo3sG2w+K@jO8^Hw&i_!uA8CytJINf-9!J66BW=<Vu3l;g~sj6Wx0`
ziO&CF!mO#Jp=Y+=LbHmw1(ftl_q=z4YoC0{;XN{a(lJVw7Fw=OgqPZKj>rsm{o{M_
z2AJ<+Pl)3BJ;yly^P_w$pLM-sWeAMr`>c+J{$DDC2EnKoq;~@C|4@G6aPZQzno_xi
zyB#?Q$$2zG_WyzH{NHqDEWrOeWtzmuIXLO)2ro?)4tTqKuDc+55Lq8XEhh5T(qpBc
zrVR5Rv&66gJbk9VCmT+!M>9nIf$kP>9sJS9`tllMXW;E@vD1L5;VPf>9gVv4Q(lLt
zv3ye>|GgF1+S=N9W9s@J8?*J!o}M0<%8@#)-);}sf;+>0bURAv+^o64Bt6BRjMXj$
zEfHT7BrX6;G`?cp({&pbP;hHFueY$B$gpQ>JK~rwQGIEz#E-uc$|BJ>+N9%ze=NPm
zJ*H}FsI?z-ybASH+t<6-!j*tvTuZRf^S7)TG4_#^+w2cR%WH1`F+D;KO-E0$(<HUU
zBvQK~eAk|af9j(#dtivVfe+5_;Y_kPeB5@*OUQjc{brB80~;V5YgxwyOaiGRC~;=G
zu4R`j8Fn!CNwhx@0QclTet!Fo#UTn-EnLl~d-ZIF3Z`}Gr{agMOvRl<wEJ+1?x7&C
z_I_rHsNbK^Lt-KIdVIV9hMKxM%LeDSZ;uCK(agSGr%=q*ZMb=~lLT<7K%G+&qciN=
zr3YSm?fc|!*4LT?elS<vXgDv?u<#Db0R#62<77{6$7avE9xV2Hhx2!HUZwu>{nnZJ
z5GEz!+#q-v`;d%>+qli`lyrcMtSmEA<o5d?x-9>-Qsq+~LBCmo&{|n2fv<4+#CCTF
zQ>v<2wIJ2#i~=n%jnPL$(bTd^g>RfC9K}~Z#eV)?rYlLLi~X{gX4t-g-=4z-c-z39
zT5Fg)^JcdMnZXR4uKV>scL<mnrEk;Bn5y`x=4IZ2iCvf0x?}e+QzC!_WERF5B2J!t
zIlGa8h4b?_HF(p&R{h}NuhQl$_56W}5t6XdOwZ+vHcRH%meJnveH$UGDTh(KJ`>ft
zgUqXht#JLdWA%q?wFZ4N%yup4!Y92xvcdu}5iZM^Hyqq$7mhbeG>r2iFD@K)7(#rY
z8#~`1!V#X)Pd590p8U#DoyBq&N@9yCsdBq;ZTh@3jIuOb;`FV>wM)nX`r?*PO1KNv
z<ia7J(?h}MVmx#?&hP&BtSQ#2^&kldhWk~${QiZ1`9n}$p~R_f2pF?)-EmCmDc{R|
z_wG{FV{Z3qZPd`Uu!&BYY;k-@y0#+zFynAH7gY=LL%o7>dPovlYdw;U#;If5QC;Yr
zrR_h&OaS>gKX~j3&gxV-R<2Ws7N~T{pcRKzmT52cyBNG&jfZR3JAK*c-JFk-_lh#t
z(<<*JjeR`RJMQsnXr!tGUsQ<}xHYe}0e*ihyn8sX`Jzg7M@v;xO(U;rB6z;`2eB;Z
zqZeQ$bHw3X{ANTnU$Mk=e>pVF;myE%n=H!+)FeB{*wDpC01UMncC97S%MP>^?CH<d
z+PM*>nofl@xSn{C$VJP-|FE$WZ=m4=?rxyiX7jC0L`YpAwZt9_?jX6I!}sN*PmC~d
z?`FQ0iUxEw5;eAFNF^L<Y&xf>*EE&k=#Qv4E2X=sdHIO-kKrU8Do9Us><5=gIP$~N
zisLhLIbWp4*6Utqu)xgIY+PW|O4%zMEvmi4ZDLS@Y_mbvyQkL~T)>`_&G}$K5>0<K
z4^B>YgoNFV7hMzSYAZAtf!o0Kl5WXNi77z6>u5vO`WvyN*W~@VCy(9P1(7MVU`vk9
zAq;@_P46+#)<o0L|7|&gRr)Xs;S%=irDgjagRbqZI(zLL$bN>JnDryF{S0n4_6c7-
zJ8xVI4+RbHA2e+5G)e~wASp)c=Rn#F3j%<I>05k&?~c9oEPRl?y@~<!Dj&mRh$}M;
zG-8<lIxBxrriBT|Z8nr|Mye@Ll@J;b{z`NnayH4&BRr5Pyku5AZVvU9s4Ol_9qVNA
z^K&ga9t~<=V`+DHqGJa>@C*uoL*`9n<#!}yJ2USy>+yf={Q>7)*5NEsv;g6gyb4B&
zXUE@zVbj*Wp6zpCH9xn0D1-+vqwf`8u%!gK<9OYI81KP8a0pAP+4a{ALsD+WvIdp4
zn8NSDyd@37Eg3TTLy_H!>zder$R7TuAa^g_=3<a!R{*@i)k@Y25W{-LOr9o(Y;_=i
z9ljOH!)utXi5BID;umOd-;%m3x?IX<7lW7nGZq!A5QO?lDj&T{<lS3g(gFtk!lT0>
zEG@(1ZP<U0`}&C}TPT<-8;!+6Jz1#;cz)z|I2MJ)v^)$p=}$y<Rvpx3h8(yQBCVLo
zSAw`?F<=3~(9oE%vd0fUTM%T$$|S`Y$QZt=cEaG02u17P&>{WaqD>EYFrG}yV8T)Q
z3=2S|w%4fGd*GgoC&`@V?iPbvz4*_i6~(1$$0S*P?@TSn(el&br4_X76pR9f-)ZQD
z%J<Q-F1nHeHQbL!m%L^FIdM=e9NZk7hj8QWmdWHpE1^E;_qShr$eo>yPhae{#AIKt
zWOy_86>g62d@0`8aH2?0O&6B4Hc>K@bVK!ppDIW?FfclzMEI%(<(kv22EN-!SHFfw
zBrQo;tc6nbzE^j_Ywz3&d3zr)MpOG3{}icbi%xdCp5eQ3w+;SCA2TT)TLp4Ez#}{u
zhVjMhu&x@fY7JDmi7OH{NeirWd<j(Xu~xzH6?QNQ8KTv<>?@x4tUTK2Lb$D&hx%PP
z@&6IfF<YvWO2h}}jtq`#OA`9o`pd^zL?YS6pF^nF_unK4Cpq`XRUwcq=C*w#nf%SI
z_e*;wqC3Q_79~fMY!eNw8SXX5qJZ22Y;=;*B?=KnKX+@DZThQfmV5!3_4P?R_Gor(
zO{qqJ!*MPSH8tUHW{o-stH$?zhvbarM0WC7w$Q9}NgxnD7qjP1JKj6Lc3`V(WBFh6
zcYBM~GgGgpJ!vyrydpR-cNN!u;3%v|(WhVd^e<V@v@Fol=Tt0+z#e|?=8CIdK4T8)
zCAmaI^&{G=JC9*3R{r9(=aVp&WoJpx=tHYL1Ag+>n>mGSpTn`!bSp>Ba!wOdNs+e~
z5!tGe2ZJ$I+|r@AAaqLkkLh7`DKo=9?j7aXwd^2h<YIGv3bC&7vD;1Frw%;p-e^TF
z6186JD$sggz$WG|`!058{!y5xWgyl@VKY8MF1P<sof<QEg@n?xs~y^Z?{jlL@udAt
z*56^lJ1zaLu#4fpz~O)15!TdFc?h*zk21~lx*4k{yjtF6>{L_BOr2|R3%A4gtDrBb
z1tC?ACbF*2)Az4VLXPN+^^FZp^^MaTz0SK17o<+NW{xJv8u9Ps?)$)KDWD0$?|3uW
zB>U0}>h0b5*72)||8&ZEWmT2y((qM0j%jn%AS1cZR;|Z=;aK1PA1kwwOXq4K4Lcpq
zUBzx-3A!F2_?|E;YmcCD`IK<nOk`okRc0V9Yh4~?m<u>Q%hFb2lmkg!FrUKd8THY6
zM$Kc37g6%7!&Nn}H=}#0#?V9FN94z+a-%zRZ-)1u76o+d*O3<T`4J0$J^5scRfm|#
zKHp#eJ}B*!8^Yy%3(<Q*$X=t=?PgGwI7;S5^o$#w&c7!F0bPz^oV#k#T3qvME|p;c
z8FC(N6Z{8qcN3#0A7M9f%j&Kd9=sy(2PWW>;=~<<7QCtL)$jeS&BKIEe#<#v#UZS>
zl;Zoo{PWAU=U%|_6cSlm&A%a)a?@U2j?hM}Cq{es8ElCm_FFH-r9L+{7n*6)0s-pg
zKKXVF$1LXGD&0EOk*@Ql{CIR6=kE=e_^?%qKCO<iS)J&nR}*-K37c*T*II0|jCJIB
z*o|%r74up>gdL}C#U@f!53?N5^X=?CW<yLo5t3<HclZ~Jy?bM*cT?Zec2-K3>-N6?
zNWLB}cl*!>97|-_o6rCL>s+VOCSAXTOTSH@^78X8hpN2YmMqKWP)=Ld=af@5UK5+^
z$DFdI7f>CG={%ic?`HFBCJ`QP+sWSQ0x>rKryQm8D7AcTv)0eX)geCqznV$LTI?Cg
z*C}W9G7NQYTGmXwl)}j0dIhOBEUk1I|MYcc_vZdv()fbNFYp%Cr@caqupvvapRKL)
zXm<FYivzSyVg=?%4uLu$U}1a*g>iexCiNG$$X~J<21oM}Ty%4R@%V~DK@Aq$`mm5B
zM6ai7?*Vs7gHpy?&YFEE(GjDnjbYApu5ZbDUUH)>3E_*!K$Fj!{GD#`8;3pVjTWT&
zQ6rK0yr7g}(hs6V$?9P`ST56S7P*2?qCPp<3le<kCWS_FiN#Gj)?JUO#o@r3P6bK>
zpn<)1q%)D`>0Yn_NJpKAh9|povJV%JkWV;agN{vEPRw~0QjsxvK&#Q>#XgsJvN<kn
z8ar$5@pbcuhGrJ;j&h^Bg3}7U=C=BMc^ts4yV=|G@eTs$gsw1IlA}<*A-XmvU^`rj
z<|$AIpU#smuv+Tj{(FCxeyPx7;Dd9y97y2ViS7&Q8!l$+wFZ;V5n~y<XY@1qVolae
zK+z9O)WF9kCB281u%;}ka&DK2Xlkqx{xS74z2U|M(hrEN{z@bcQTkJx4n)AV`mLv$
zoN&0&4W3ZZRq{65C?XF9#y#DFt5PFL$!m2Nk#_VA#xGZW=&&c0acraWE0&B+4d{9a
z=v2snSxCLCXP}SshA8fCUaO%(Kn}zbWVG3n7<uR7blxF5v%DL<_Ye>1(ra1pdbcBt
zRr^XLg_c(0wMz2|smmxN_lN;&4#MU?%CzXWzW0P9pJoq3C|o$mbn^Is4<541z_&ms
zIIoVEgY}TOu$ttHvP>u#YJV`|$7%r|3^Lv=iFyEJCkImlRO%uCFrhD{0f}sJANb!I
z<y8Eh|7;xR4~7nMO4DNjDqG<PiHx0DnSQw~gXT?dU7+WvVS_ixN#oo`EiOeO4rFON
zzBh@&F_~Sx@NgK5_mWxauX&}unAe|3iN6Wd=;Fc*BrS3VAMUFOJy8{2|I$HL{J#Pe
z*;CEbJAh*L@qYjmf6%B8SjJdR(iYo6Lsf!7)_&^1MFjL}Ano_CzTg~p-Ye6-q6r}l
z>9*@;9XIc1J8GW|ZHYeV2cku{m!6u3WxReyj{z-OpKxGn`&>QDY)=Mf^d3o)CCf4r
z(BW9=I7#0vB*;W*?eUy1oz!Wk$dPiI)=24;itfO`0<RFiu+#fNL|lj8`f57SeoWxB
zoIkTF5yVS9^Fx{HNRkU^+m4M=Qin#081%|BL8H2Yd*1LAK%Un1o#j{K6_`}a%biHq
zt%Kqp#PK6D5oc=fjj$yz)4W6>3uM6F=f@k6I}scVA0{0orQcfqh4ZMF=8B@`=JS^v
z`#syo7H}m>(4Qv|A&q*=qI}-`3j>|8873p^&l)+?nG8p&)v^jXgR1%@fLh6QqX-FU
z`19Uf2J*0&Bdp)CDt!8uE9DMb8B|1oqdj)gJ-@+&9&7;d-NN$nKK|2qv@m%znL35n
zjYbWs>NDsBy(s@>?Y_9E?;(jU))R6Y3{mB!I#qv(4d>AfDtNtWy$rhWtONBQW!LWm
z9pwud_EvY9S2CZF29QKgR<{4$wY;Xq_2U8O{fFV%etR55H;cs!0jsh3re3=(3ndG!
zeS-gHl5u4I|AhMg19b4;{uN01KL94wqv1yCdq_1Fyf=6h{SR*#N-xyp%D}IK|1T5A
B*k=F$

diff --git a/windows/keep-secure/images/intune-protection-mode.png b/windows/keep-secure/images/intune-protection-mode.png
new file mode 100644
index 0000000000000000000000000000000000000000..80804f79462534e729ded06ac99f27b7122ccc65
GIT binary patch
literal 23667
zcmdSAcT|&G_bu!>7WAN?pcH8bq=-^PG=MY(RFI~i6e&@Pw1fx|kP=W45oywq08tST
zsiA~UL?EGs&<P17N{0}Tk^~4LHy+RX-rqOw-*=4rjS&c&ojm*5Ywc(4IoDh}=C;Mn
zV}G6gYu~<o$4rcktoH5OpTzxp^zb3>Z)1-`4DQ<>P^+5;`^x&n7rBiC9@osT?c0Y;
z<lTLEklQ};*w`MrZy#UVub)4#kk4-1e~LW0Zui6*^5{v>Lx1;uj~{yZK2h;?fAaSw
zl?y6bAoXyIefu0{OpLDGed<hWW+l2~16FT-1%Nodz`vR0#>)uE%CVUn$x_Lo$~-a8
z+l4i*{e8_-_Spk5c{h&B;Y!VPhYBU$skYPy&yljp@}y7ZodWcaCS89j8h@{dHn&ng
z!>474Gc>Fm-*|+`X<kB78*T2<s_=`j23Gc7_%qdD2AOW>bC34rzD~4yP|c;2*YEuM
zx_mq6a-#;h@a&t9zh9r7)nY#Vw{<AiMD~Aw*3L{u@xPyIbrCT6&sDA;6G}1uPtRHJ
zicBM`{|*t^A)EZ~wa>meU9#UqCa7#OH*6|JK_0ya*~7^`(JYqd;5n>;uEi>d1-UWY
z!)ht=zu&muWRQTWleJ22!Nd0Uf>Ul5QdoG7`#J}<ozxXUhj3^!wh?q&1*yHxD}pBf
zxrfh&w>yV~SmrYkY|8G945K{+XN;pO`q9pLv$u+KWxEE*p|6n3ce~3k{O{RbIS|zZ
zLQ;(O236Ts8T-<^Q&0B9hVS)VPP=={!2XNje`l*~BdzMNtdXR)4Y$n)6txZMN;yNP
z*GHu2lsrbEu;g}X>|(Tqj!l?Fd^tbt>S%V&T$Cd7w^0+S402Hfh>W2E)Rg%899_+P
z?Lw|k0ROAK?{MmVslB_%U8Vc4WGex4J*jUcj0EiA3NqQ}=|P>vdMgTW{*&FYa~nR(
zjOzcG*xXh#LSjNA$xy%`_*K9y_d|;}6QcmPc&=*2Nv^c^D>%m@TP4Euf1ZHqOMYdJ
z&EMgSs>$CN)iZgSY2=+YZ&K#jqnnuBn+v12-<+u03ANcu6keMY@2?#t(7e<h{$2`M
zDiI7H&Ycj=S0Dq;#8<Mp@4kIlKdW#oR;R)yCGvO%JM2twYD#Bjzxc?3AR%Q_fyH|)
z{*!5+%16TX;wN+evp7C4Cac>PN3!JoCDVw@wwnDb8xAqoskf6mw?I;C$yr(dB+80p
zb^7@j(7j#$lk`uJ7Uq-xIoFKr?fbtbn}1R6VU9gICVQTA)=aMfG5@a3b7$Q7_FBbh
zzRDY(rlS^bbw&88<s~gM@6$cgme0u@%a^TGMaCUDd`lp&<%*0>Ken>j#H=_Aayc!m
zPw=F%;}l*#?{5s5EKAL})eh3uoi#OalN{O>K-@{`v<cp2CAa)wE8xbQv-Lj@HnnMu
z1*v{v^lgrao*B>o$FWz;qM&$hn4p%AjP#p;mN(H*&6y5E&nr(cZg-exqHl#R;He>W
ziA&K8TWi_{r%;<pIe9+DSLgLY%1tQR{JrcAn2D8H<x~}6uUfXiwCs>Xzg&TQt}dlu
zJkT2Gv!b<gXT34j!-0%xm;oy5srj{5c4+e7_EJeb34SNU@pPzc!<J=l(shfyMj77-
zqEdM|08~En{gZN^+Mj*KakpGwy1#1w{Uk1ZzSVcJly3#z8GMPPku+;KeQDb;41Tnl
z=SJx9a>>KyAFc1HsTE0B+*~NXcUkLf^&QiF*Yo#7iozD1b8p*?V7)^o8(f?QKu6x#
zu9%vM_=mcTmmmzXU6o8-RVrPDdNPQe^UrGiY$A#`+C4p|QZkB3m#fW7$BD(wt{(@*
z&!?$QZcID-juox<#TJbIYrv^wsKq~v!`R>~zQUr&%xOcS!1dzoTm3tH#5TSk?r?9O
z2{zMK(N>3G5o^1rV_A8N`6}K}*<O6f!>J|0%i-?nu`GYMfx|)W{pg(NW|u2Gb4F3D
zwp$Lk<<7L@TPq)%y^;?Lu3y*56pC$l<Ov~0JW<qPuJx<+u9*91eAbb4XZ;Rv=_dX{
z-Zdc<qrMR1^Kv&VbSY<Fd-E`#e!h3n#CY-R6-b0l&CFN%KMeUcM*FNvDns}46FdBW
zkgH$1zcp~M&^7T=bRH6rzN36ZWu!|`NtvZ1B}RFKOKeaM&_eUbQini^-8~24yjdN6
zpMKCr1b08{<mLwrlHvM7i{!8t>wluB#Idg6f{|A4no7I{W_T^Mirh2ryKtoFoMna4
z;(I&2-3-2xDu(S)X4mt0+*?`yg=-FOV0tuXQLpb~=Izf$$6ex?8#8T*lq3_GLeKOA
z?!Cb>-P3mxC&NyYonfHl63(w7#Rki4eTzda54FSp3A#&XP5TV~SsYfPcPJX^RWLz&
z3;%*H`CB;#AJyn$H8%9fK+Rovn=982rV+5y>RJ`x_#7jmVg06t^I(!2woWL|)3UNT
zw{BSQO;cZWCSiV!D4*ntdGu?1k{D_32hH4)v5v}S=gB1n_HFMmSib+x7&W6b>|N6m
z6Bk2J;u-T6(CYp$Qu~mfn!lf_#HM?B`d`qssn<13?i|PbEm7uLd2!~MUhyrSon%<7
zg^Z8M%bdvk^+;^M`&TFp*%+maBCN08F$m;-lPRaQVAFyaYE8Nxr6(&NUPfT%{4-nc
zZP|Ia4G+_NMkk97H@=g5c(XXyC_SYh+55=#CI~;ZMlYH%R%o9b-?Dcr=33Eif9U1<
z%F^aFO8!N|C-|5U{|~NKrZ;wBG^noMJB1h}maS@HS9i%qNY)Kg8QvrBY;^-Syikl=
zCJ*m=E#I1rCKsD@zxn6uzjw$USuMkw``pc>s#`vnd(D$6nd`0Qe0ht<7kWndqV~R@
z1CP61TMA%)yLOs?)@ka&O6<~+)~|aZGko>?llPYs5Dau``)e1+frP>4FH+!a5L~2i
zP(ugF_UcN}pU9Ygw3<PTqtjulH@zfrX-02`3BBBKkry9DxTvgWV>oY8oj)8N=jt`F
z<D!9h1S<b&@y2^KH?dSQda$`{@>^yarXxccoA}#W<0tz7(+WurB>i{0jT{CAzo|UK
z+0^G?yBIzm3Q}98m+wJxAu=gbe>8u3vTu{;A@ug8H_`5Q12buS8FvOBReX4ChXsHg
zB6o^CJ^i1Zqh~1GEOJzork+pi<{$FP-XV(kA5Jt$w~`YY1(>{CKaiJO*PCK=t1;6~
z^VD*&T++vq@cekMbC@sIAyOZe<>>gXkmb3dFxqT*I)!fa&90#k;pGnfko@>J08uXf
zR`0PZ>pyzHYLhLs`*@wg;pe#8ln?9Gc%RlD*9=)=0TS;&jFPR~HCO%z=nStb&Uj5L
zc%y&vqAx%Ng4enmQ-G`*pfx>wO*jI{67p|>$P~Hv`x$dlj-=%Xy0qY*_<!Fb$`Skr
z7d$ljwZx<bW?n68nZVzg-_n}9xcD`>b6H`eK7pvw(t(&it?aX|tRL(&3nBayY_5d=
zHD9%s(wX5L4ld&;tk2rw&Gy(4TdVTu-5&Jvo-*yib4Rd524rE&d}d7$9re$i?0xFg
zy2f5a^l&RL8g_**=2S}O^qJlL@XV|K%)G|?uX%C#r2nF@;V1uBVV%<d9O}XUXQ*OR
z8B2to`G3LFo#v(FPODcYcd8b~JrFdb!_qI08yvPb=K`9%7!%olTGGY*DaPKH)M8|R
z^+~(Y9}1Yn%gZPI(|TE=XC_lL&@P+&tMBF8k!Tay%UPL50>4_vD|fhv?uKBB@jopC
z8!7puVNWhp{b!iYr8e2*)8=L}M}7|q`+sxLg6V7{U*8f|h8I|O;<rKEF8?yYKOJD-
zI&KH-%zt}C<zjaGqxG$t(5xjWZZe2cx|w6kJIi;=1s}uHjsFazZpkG%;If*o`cTis
z#8GaQK|rtkqhkrLx@ef4tcW${cIn~{(Fuo{v#Go9+@6>$CQx`i;bAGI^CL@NXQtWS
zhodDnG!=02G4-qC>ODKtg#HF3a4xYU8Cf%)Kw93|?v&Y!yX0H>iWZdkmi?qZB0FIE
zJ4JdCx=jBF(Uokoe3%`CDVKvgtWkb2?zjRsmLJ2!eVS~a|LntM7=?48XBL0hmbFSu
z(|nr`jtiYfbxGlKYXC2u0gz#EJ##_bqk+0#IHfaci6ECm`*SY+1fj_&lK*)@uICTl
z6e=`fzvTz=9aEY4@n_%{@k$qCs8o&0&OKqQF?^?KWAp7h=5fuf_hB!Q8v$fHaYn<%
zQVysj{Ye?$)Zs0_=A_+bNd0RD%@NMb8R$H{j0M4PaXDi6GwZR6NOz!#TL*SPE88f*
z{;<c`HaaHkN0Mdzjg{aT*$Mrj30Hy6Gt%-&ydy|cnKOP5eTCJTtJip+JbdU)vVSso
zfhm7a)2zfmK#?ahi$7K;b(1b;zxlya?E)9PvhVjHNA09Cjmq}j{960LWai^MPKG?t
zA)7Q<CZ!I4V4^gp0cbd|d^@SWh9Bsom%yLWsW;P0@+Ql!yKOw@-$GP|FYNch@&0HD
zn|_LiB^uTz%MSEL%<bgdl=57GZPw3`1%JG|wX?HS4MQ;<(Q_WvleGvl8R0L}?~Ha1
z-XKfcySXK$<E=HS6ya4AO@}Cy>5*)7IePmE{I)HYB+J~D&jy`>{fw0A6~Yp4#IQS}
zfGef701PW6ZwxjvH8AfH=U#LSSrt0BJirb>)oB*8h)0X^roCBl$cn%ahbIUp(nHW#
z>kS&3W?L)BdgA)WTF0?kNim9zt?KZd*<!Jv`m$W>u9ZPY>uG`R`}&fh%gCa=u{npo
z^2*e87)K%=I79~Chd*w~)cj!n#atbGx0$>>uh@ZX*6u_P{ve_<$R6q~TcBGL{Y+`t
zEhi}oqyMjf8mYx_&`_Vxg%54bv9!8?S)yJA=L7ZjVooLzjU;tIZY@6nJtq5XHd;$T
z?|{%6n1kznm!Jkyf3u^WKG=S$IvT_DK^cSE3%4dPLauHDYD2D9U=v|+9SMY}Fif!i
zn7CIOSuUPl1zAlXpz?RB*V?r{!bEPw9U-3I99MEz3-pqlS<o!6uaWGz$@zADucRNH
z!z+^L^`NOj^;GC=VlJ;AUyysG6ChmEd9fw9c1FDqQIXy|g})=a1z3?P5fr@EG<qaw
zyFehh(GDR0I@ye`*m`?TQ1IrjwdQ9gQwt#Nhcv$b{z8Sf`|UwVVFkyx2hg31Q939^
zgrC|Qu}G&>x3#puSqif3e!Igb#BjP&$m}tEZ7IS_pZ!9VmF^Lurd&&!FZ^={4<no<
z*8=JR-|JJcnhiUc^sNb^;_E~wSe&Iu^a2_@#_+*H^XOQ1V{;;7Df3Tn&^L@b`%8jW
z^4JKNh1%VkLDEt0SjwaPK>3=YDFWFkgJF(-ks3?uI~h6>^erJ4WzCYtcS9#5RG1zv
z(x`hNB=o`Oh@md<2<??eeqEHFd&_ri(fPuTo$n;$JyPKDY|>W!%TQtI1gjPwVb_t5
zBmoXvU0d~Mj>sT-J?~^A0foGoJL2+e2As(l;1`^3(Ru~z`GEpo!ymb}Q%q3Z#GC}3
z_=I;+;-v*1h!`mJtbJo@N~!A#XiCL*1%)XTY^Q*#H^i>#Pl_BZ@c^sDdsK_*^NtWk
zpZTSQSCl5>*6PDBnXx$7-h)O$;d=}};@$S!<snzO*;hLyJKjY(g3IE!TB4deiTy8-
zSi8l_J?L2O+5nImm~mq5!$_Tp8x3x3!f-S=+vR9{E+tIB?$*^w`q2QRL~@YKd918I
z@=AiqjOJFy4RTxEcfzs#!g}@#-(pE7Le<qjy??eiU1b~02?I!l-&CF{2kuYxanvb|
z&+n+j<C}8&BkaOTb=@fyEoCXo^zV;kI_GYS@k1QsB<)L@q>$xSXcu_AE<^P@<`k)y
zJqSC3gxw9!-e^!MC@9N`*5tVbw$l$2t+vGu+<6CSnQXGS%<zwg{#minK^(6U)f0wY
zq!j~ll;s2EfDTV6>RYzgx?RzVzQn|k#v+gg&pE$1!q)g!_vJoq#YBKh$@IJc!)bVS
z;3h|ub-b&pCCFuTuZqx`z2Fl4rDLE^_;O+h<`Ai;TfV(~qBP8+4p6XJx_p$b?r`5N
zjz;(t;;v28X?=>n=(_-6+jGQQw?Xq7FT#o24@uWboB*#xcv&s4y=m$F460u(AWvcx
z;vj_Ft3Kww_qqO*ULy-ryJbd9^%+??J~5Hj5Rx0i{(`U}OU0OYSuEKd(Ik7R1Y0$M
zn(woE%wPYgGx=n>wGKISPr%+}E+nP%d4TM5v$3DY<hgsx8<Uy6uLn_(J9wd`XQ_(H
zD^I0JG3^HjR9?MVzK}#pTAGjbjrR%<gxh}L5E4s(gSK-HNQ-@dir0h}a5>-HZOl8!
zVJDr+aB0b?@H2hkYYIBG@Y>0`Ze*7$g5-Rr+#yR<2x+>^V9fk>K<$MaQOKc<^AR?2
z?CPg&>OLN0kG32)yQ<5HN?W%LnYxh?2S1fwB5O)+jax%BRH;3kESnVy29L2V%X7M@
zu=XxKVAt_mAD8`7D8>|RH6M=s^30Vjzzlosse>z;y>WIstp<^1{u)^Ckme`ZUz<Nu
z+<QcP%r|_K5VK+Q_5U#XeKD~1>zW?Sao2${&XXp@9^3p4%^p6$M_N^K{f-&m%A2#<
z0<l%31K;D?Oj=^S0$BNuUKVrE16Z;7cW<ZMsUt+7?>EQOS}`EGm>hFLgY3m!bo?IF
zxjfUT@3sQ_!04_blDh$&lTT`E#Yw-2g*z>{eRvaF=wOEXwk&k6R;}>5=}M15H0+cx
z^>%qv#i768Et3}>tEJ%y&bx{+`FKkZWn5w>;|hwhP{_ckPSq{8Bc{dy2OOlp$iTn0
z96PY>x0W!0rtB~JBKwwzIFhg9nmVSSxf`IvafCb)>-Uu@r_u(dmt6?tv1zgCl-h^v
zpYF-{a|yIbHYfYkQddpR>L1$VQHwaFj_KaVL?Td}x@8vs<169?AEW%4cTbus>C0Ta
zmoWP+!$pF0$OTrhmPQq6y97KydF17r(H{T~1|xLZDwh<%-HDqPy+m|;PGdrN^p<Pr
ztk!#)&BkXB&@HIl_#uMF7Sv|e_Ypc5(yVsS;lN_mr82#}hDp951)^@xuUM7M0KL|?
z;`{wPNRQQojH-|d9kHm1Iyg7m$NCz0<w15SZlQQ9eR*v4OUKUi&IQ+^IiYZsW(68d
ztfx2eFDoHZEXo{ixIh)r_vi?}D<B$%`5mIROg?qWB~M!3a(MXXd`qbrehLqyn#}yX
zqURUqF8N&}iAPpGsY;sH=II|f%P#hz@(T@K58v?0lCj6yb)(JCB`fb8oH+D1?bQw{
z!I64UotU&_x3g;m+?D!tV)tk)q{t%9G^pHeRB7(&d|oP;6(@Epcw<m6um!F+w3W)L
zQTvKJ!Y@_lch6N2^x~o4@J@d!bxA7?FisRVgKdY7ChG8ANmxKP@@y!N7f_!tot8g<
z>&tp|St@qgrW+*USvS|`Y<lm#PvUuZ%a?#hmaA$M;){IMA;O4!J@0A6A7JA!P}uC1
z?L<^Hz@P+)?$i6)5*v~o)>xFgCc0eIEI71-1vn`!XLi=CX`{wQ6rV9Z2VZI<e6F|M
zH(ycPhAHkKKqzf?SjHkqjcqz<<w(y;b9H?_?Icz^$U3dc${pD~afRX#BT<7i)TiyH
zQt#_(kAaTPo+cTDy5vZ|hZ)C3#(Mz~mw^YwJpQ0I>buGBX#CVo0t~SgeWYB-aB1l0
z(ob`LCKRFPS+#3MVqk}&Oh<TtfiBSE1tr!*rf6DDK56=)#>XfZp^eCytL&qM_~0iK
zb8jJmysH^+otHlx`rK>pe_%mW4F2T!MSd8oLe>lxb4H8&n*?>PX?D(h*#z?QziBg;
z5$5BcnKAw*>#xY=5<*8)j4!JG|Aa_s>DT&Fe4QusCd1gkTu96Mj0QZKv*v&s!ngEi
zhs~NnS$#RT-~8r-ZU6GYKJ0d^ZC3Q&4>4RVhmOUKYmmLmChNwRof`+T^@2VG@6<~H
zfZ^*7xQ_F-hF-t<BA@VYzNn==uj1(4vc=>~G;LS);QIP3s@TNEuF;~5oSBW472l1W
z?O0r7Vt8pVb$w5;3l~p+1ann)#C487YP2i4?C`_??k8Fe{jr)h)hFn(7@QZm{EXl|
zdJgGS0-=YW=@B87;^H51X`G|P#n>=NdJ?RKij9h=*KCh1orx{cSn03NZi&AVR9N2Z
zDh>7W8hu=rVS4a4E6$FG*ZOKO^>^>WuR446H3x_LFU``rND#Dceeg!X&`7bZ)5Yz%
zs9O0#eDjD7K^`7Nj?f=2O9CufR4ht75>V`VUCB!#&d-IV3P_kdctp>KI0`M2-fmYM
zHJM35tzF>19@WBs#b%?4zsmnOO#D(?vN4)0H8Y%X*_F(>T7_u1oF23+oMt4sn=Num
zKFRdDCZ0?B8LHfXu{Jqx39!`NXks1mFE;-hGTBfwcJW$G*G#T#@>rRZk7VdhD30HG
zg0IGBM(nlt>FI|v6)DC#P2JK(+PB3wWUZFV-=U2uJ3H~>`Gir;LBPcrHvui4;!Goz
zDbhXpBq8~vnePvN=L4$NH2C#LK#1Tr_Deb~h&<W2u}A*&>AY=t3v+3)Dn$yhW3tgN
zNI6>L!<8qVf>VsghudTx0D>q9A&-QDfVM!Ugv#=dd)+}}@-a_%A_-`%zu)85L{Sn{
zj8Cvo&)9MbU~FuxD)8V4@ciQs{ip<oWy@_>4ddy?2P`9Ca?S?{4V7Th+T$p|N18qQ
zOU`}7l~*H#I+Sd|UT{g|tdFbodmO;|3w|{G-B3|U?X@s019_CZx?x`HgHd`<F8mHv
zQUEuKWZAuT0Ywofj_dnC2d%_-PGN7Ayj-u_s&7IS&@cd3_KxHECVp=&@mWwPGrR%_
z2@{wN>ci@iRTB|^t6h`o04&=wi&)>b+ylj=TqVRqV<ixTf_THGa_l6_le9p!tRan4
zSMw+;H~g00gEvL5iMeQxMpxR;+I2kT%L1;TQ0k0Xw&$r8?6#xx{xH&{dQ4(g;|}}V
z(=>`gY&HKzrANz>8ck|`F#Bz&CV&6R6Ux?k#KW+AjmP&##c1z1Csw`3BKKOd{2xS1
zIDia6*cNc}N_Y*>>P&lriEK@TT1<9)BD-Tht}k@#^mc(Ca|hQ9ucaW~`%bKfFq?fs
z*Ue`;dTil|9D0TU?R22pC~uxprl0HM*uwGS)32t4c76AIY23H}Ie91vAlImsz9L=c
zcRioY3z)As(cuve{YkqI*C57Udvl${zIL4z3jl*sX;86GG1nKLo#a<HC<QA`KdamB
z*?sm(tcgC55SxIMTHO+7F_8U!?SWu4A+fsg#O@euXYc*}=ymP54|LOx;&?5+^5^st
z{=nTcBCb-=CnJL1XU;i1>@C<{22sP(Q3f!<SRISm`a4-EhEpSBEe}XViKY*IJGQDH
zh||=?72Fg51_X??B(69ah8j*(m{$vS?VKGi%T-v;wt{|Zx6Hi<jsiUPr9N$Iy09fu
z;2{ExXW}$s5WFI+Q@U%X94?G*l|aN_>gg}(1$!gc!J}a1c$l|*e7u;CApd3ZhqBt%
z2pdKg>H?o18^6-#*e}a@f*v$q@4{FU@mbc>pk2r{v6(9RnEu5*12_N!FD>s6J0*^{
z%Fc^lFBx9F^jL2kd0l^2ok*d3><H+q`MO<McSdp3Wi+6fjK}nfJ{s*MXp~{(JXzmT
z3uQBAobrCDw~oOcK@jRNW5xq4uw58Iul*1hAGW{M+*pWMw=ji~`Gm71o>iK9*gAOu
zK6CrAp<f;2Md`XIz<fkcX>)Y$wNK+D;j!WIrd65@kC^e1iMRs+#}5YvTERofs78Kf
zgMSo&SZH5TnkZ81a`Ya@YqwOQ3^Zn24@4fD{+pmT+t66jeuFt1L(2mJPl&1O9KDN`
zS}|qY@ys_p^DAP_O`nAcH|)0(9~&FZ!Vw@;bguq!-g-VZ6L(Bo!KX$0kq8eJ3UeHE
z6j%=X7SyiS79NXl@R^K8ThJRsP@jVa`zg^6SSEzPfUpYZO63>s^of|+Fqjx6OCqpo
z?LHAtI=k)88V1}1g*o*eYHxvvAE5Fi#M4cz6VoJs)p$K0h#S}leT$o%h#uSx`r72r
zzD4rRr8ip&dFjWQ<HKs!%!V;qwGN=}`J%#=a-=2w4t6Jz?ULQIYRcQ&CLq8M(#K#D
zz?3Fack82S@@|?B#WChGtGa$cQ08Q*h0g7;vdtxE%krc`7Hx22|8O2N=bwbnl)85V
z7inYWTQ;9o(TVm<=;(%UL`zWc{G9BPz`{h7>B@YGYW9S0%g>+Izr7Y(C;bB>vk+BN
z@j5!bowMn)^T-7Wf89T+4zD6EJhVmvZhp#Xyx-W4AKdT^#jSY3%|Pnf6^9GJ4h41!
zZ?}mqu=YB4wU>3lgLWQl194OKjrJgoz9028>oT^xCFp(m>v+Gk<9LGm>DawBENelk
zFZd5y2`l|=sEcJ0@EV9X5oeMY5j3M;{RBp|`<m(QdVuhBB#a5;lls?9{<at!@r+*n
zh1#u>#!=W7bzQt;Pl*jXj6%Ew+hTdBawHi$04k4G#`HmMoWx$&%OLfVgyCPH{1s~*
zl`!P07*FfYb60DGkAbdDVAy~jtEBl3z1}U94LeIn!4(UQ0q=8IFr!cG2OguoOC*fC
zmDK!%FH&*mEPc7E68!)etr|&HmqC4$5^)flcZ*&u^w^!SYg3P_ks!4M+roKZR2{|X
z`EXXEmDL4w-zDZzv%lp0LO0*3cX-5(GSm|_m=nyWYoeDMe|bmHQlF$#y&b^ep=J|v
zoBU>*n|UFWOrsn~z{+|b+0>zMLaGGHvCZ{tSzF%t?WT^C8lSv)!|y-YKvWSMUMLO2
zqInx*KI8t>xD%wm{fxJTroqz6D>@IzSJ@yKZOTvg1Um#sETcyQw{Pdc67^w&;HUjS
zu&MN`IV}d5_I0g`1tvYOv>Rh6j_p-Simg`Z9j=>yTCSW2JCfPp$sAtef6YcFY;;r$
zV;kn+!>xuqqsXUdD{U*G`S*0JQ?aI(*kfNiu{Uep4!Q2)C3w2u0FAgUOTQa8Quj%%
z3ZHF0S+mjx<Z<AV`~o@ZnQAe1FG8W8{~GotNde!W*5yJ419_omWdbVLM9V));|UpA
zyk!(ZbUXq@sVM>-xU0>cj?p7LwFe<Q8`tx$D%*@o)|ZVF$$o0B;oka}PhD^ZyEY>O
z@P@!C(~$J;TT-*kuBrLhh$(8uTycD1wQ9%GbT&yDg{fTE>e$yq4C&Ha6olPY+y5l2
z#*#}~ussc`r?p3|R1>Ns9Ks6bohnU<)*A=9AHu9|k~3_$;Fuk2G6Ql%`&HGm+M97c
z`miDPDJj*On3-|j3}$$U7k06C+f?OwDtc<VgEoXigzY?^W8`Rm2t0<q`bt>a7;-gm
zAZ~W^MG?u5w~6#1z+qj<_dp1=JL$R>O86AD0fm$PaK4c5Fma9`<!eB;SWWa+m^l9&
zO!ObHOkxSyfLCU(42*dKktJ)QCdl>Z!3Frby1;JythI3f!U>ob4nFFlfwHVm$fzMa
zg|A0mE#;3r?YjL+bnc$l?trbAbr~|DQgCGqroMW|JzE@O3*p`Jb$vJm%obCgQs`5x
z@5AWbmWWPQasH7TpY}}6oC!PXB5KP|Ow;q(AYn|W&M}>WXVF|Y7TVdPA1^C?;cxBG
zC0J+1p4c?(hkkSef&^DX9mV5UQ5JhT&!_+13!F}DF%~CAU|X!?ni4gId{s8L$}puD
zAIWSRnpnjp>uc(txa@n}VXfQ-Yn_mm6Y3Afn$hzydXu%T%I^^$cL=p#Cu*SNmg246
zKEcFl$Y@kqf~0z!M^S`!U!cWn-N2mK0M>knXO#e6TpYdEY+7bLR>by#3W2dfMjghv
z&*KAi2JJpHmp(`^(Pu-`4oe5dn#;`2mr{b|_dxWO6@|RytC&!=cdWiV{wK_z3T0|P
zp!#WPh^}t@15!lL?4+efK5#OZrm)v;L!_?M?DQ1}8<5yawQ1nhfl-7N5Nprf8|R08
zJmC5b^HAJ*59c6?akr%d@Jc{8oBeh@I4Gz#cri^KC$&570au^zi@xs$Dv<KU+ypdV
zXL#{DCtYWnCP>xP1LULE5|T%-@)~YhNwCuN34fZMI8VA!ASdDzE8_1Vb+ZXa1CgE@
z|Cn5p9ocaxzKvsABsfSYvy^YF{CgQ6E*OJvf3(XvGdo@alhEK|tVG&SxkkiR7ajn7
zI@2|G)1my*>dG>}mNM?;thwzErBJ{CDc0~je5hRgxua}xU6*)!Ywq!fcc9160pA_v
zW1pGKcz=~$f2>&{E0ChpglRX|Be^N1*Bk-v%3pLg{qv0pVyTMN7TV-eA0jYL<OgeC
zi|~Xl?$mLUXS<G#;d$GI5dE>RomN#1DfSi+fab*DFCn(4Y~kfFCJTpis5MahmuVqJ
zEM=Vjd<SavH<Q7h`mbPzIFn{%!P27Yn8>0|tXf*i1k`USIjhGgaZAzu6$kMK$;KvM
zCoFFouD>$LYgUnSTP!S8JdvXj6NhL-RFb1-Wyk5v{1TL$uHZ;AZjkQxKQ137n>4(3
z^1s9VU)Bfv@TH_$xNxnd29T364=>l*#?AeR*tOZ%tWv$C0Mr_qXn`uE%KRg2&iwpW
z=G^exn@XGe5V3V*gBHQ|gEHc4vwSps0gYq6mkRMtp1I*G(YOr6t_^gpd*pW3zqB{%
zw+!0XSI?V~rMkz~*MRIT`&U&}4S~>sA(a73?h4yYjg6$H@I9A}?|DEUazog#U{~oQ
zT3HPPq2&M<!#Vj-e|SF!fmezV^qR)3cw91%sliBuD7-PNquxe})p-$PGe;xt+^D;<
zbX3Zft!E+CsF!~J#`%OM4ojpb?@(W<+Wa_XhxlzwX3_N*A3k9UJBlF|W4sC>;_jC4
zT3GX;)eNKyK>K&*!5`pDZkU|l{ImxD8Jw@hoZIdy%BWR<pt(?U4hOfeEq4y+nt=<G
zv$FM=HX9G%AaXE=eY+9C<=b2S+7gT(u-=2#LcW{k5?MB9V^Y<!>HXDP@%3?pE3~iG
zTrzu6z9Hs^tIixtbM8m@sdo&?RS%^~)H@?df$heiev=s;R>y!_OY^yiM9la`rV&H1
z@8N&Kei(B*1!s-dS#5bf;VszdQ0q&pF}n@ESg#N>Q{yw1h0Wb_-iQ>gHKbjse3vRT
z)V5px(N!gr@m@7HtTtGZDr<$Q4}9jhEU)gS?)2&aSQJ#E9u|iUlS*X#*yFldOJB1#
zfuYkw(UniyxJYqML*JZU4mOivEhZbA?K|s@mKoZHM<cvZ_@*D>-*y<<t1FYi5s>xf
z)rg4INU7cLGeHr|AO+Q?pN2uJ-D!x`=8&D`8Ej$rpw4Eyh9T|rY{vm%rO?|p@I>vG
zpCH>VNIT$CH_ZO-?8Z*WE(Thv6};|7s@=9ZPW*OosAf!eC|YvN7eD7i%edas2r&7y
zgjFI~;q}^3u1*oO>C;>`3>C8wP8lwHzvFXI<%!>^dgKLUESuh8o;z-M0CoNitU;uW
zP*3`TA4XBD==(_qBq!atQlu`%nkl+_^sehPF*$Q*9?6$ptEaG;X)YEK%-=w@afysq
zOmAhuS{4K8nQ}`g22Sw<03-Uy(Mo$TsImuheF47z+>L_7r~2C8U-{9^k4Ds1(6SIP
zREYNdC{}(@qmKrmu7KEDxu1MOFmXa-GDs^SP0QL_n;=dRzEcZ8X=*oKsi|L>zx!nl
z95*(y4O(tp5AMAj!bh#cWPT1FeG&MH<>K>Yl`P??-4>S48c0whtLkdNI91goT<nE#
z!@2B_mxL$4B9I~UL0SxQF#^JZeZ8!W(M!*$)I4OM+qWa3h?8=_kd{|}h&%zHJ`;wg
zh%$j?rL#UC{|1aL8>t5X_eA?{wr&GO&L|en2YHilYV+3Ua_|{@&I_0ZYwGry>R{VC
zS-0?C=n%U%_59I%vrl~3P+cf{j*KI%T81~8{~fWR5m9x5O<rZscf~ubT9RR_#N06J
z;I;LUx#<XY{_VyW_A}bwTbxrLOAqs=77Gg1)Ey4Q-~W_LeBj6?)I!dyY<ag{0;DhB
z;eFq#j0*p;bhmPx=_+hSNz{J!^+of5$|ox`q7b|p-G!;P3k3lBS6`;K1^To+&{@7A
zLCQrvC)JryH1&KpsJT?6a-vgkQ<%~d@qwH5sOaZUnn!k~*<-M*`a=&WWDnTm&Z&`|
z7`)GSk^551TQ@IY^!R4A?$ApwJlbz|58UHXeF~iFVd!!i(GhYEv+}O?4kbgghUY7T
zLT0XuzxB|RG_Jf%mo|oN@>7zCjZt>mNqP>G9u<bi#Txhgn*O5ljCS~Cj(RBT8LXI6
z?7S*bIM&A{p*a^y-E|-_*~|Ifyn3o%2Dm;qllfflLp(zr<wfbZG*4vzvHVp_*!9vJ
zD+*sw6ANvLWgdn0S;2V;=^=c>>{NVFgjk!NRKJD3bC=MyCH|NyhCL~=PVa9rGN<oG
zcH`E#(<tR27+$M@8s8Sz8)My?{iM3aL%SEC+;0=-N{&b@|6%{vL)KC9k+?{SA?eq;
zrI|*_>^50{z{=hR3l6yU#AIe9hZ?Fq2C>{5f)vWGM{xARA?tlLq?Gfk%PZg<V(xB<
zxeRBsd=J2V*o651cDVb^!|ryNXij!fhpBRZ_#Z=J_wy%(N~DAh<c0#J?9r{hLA*O@
z;lr5k-NCHK`wbmQH0e=HzbXo_){Ts<Al8Ayz&d6}mkTIj8iEjM@P!v-<2Pz|>DIyG
z+C1$88AHfqk=Nir^-9<|);Z(=EZBwhnTQd_;?k)S5p{`BW8$~)3n~GWF!B6VgP=Eh
z4oG0NQ^$qPd&}6ka!G5EHec~4y{x%?7~_g*L9ltar*<A?h+OLCaGbb*bKIMv2#ICX
zh?#y?AT(&IRMCqRNAI<aU@!ZS2yx*0@C)I(Y9;vd9Q&nnp^oSR+Vef$QIwtYN`{^(
zye3FZFC}z+bs;v+wpx@TEq?P4#IbPnU%z~}_vTR!RLDVSdbR?(zdw8_+<Q%ADe~F0
zU{MVzU8PUs?m2iTtHM=gjI3fiT5TUH4C+<u>slEOG|G*M7}q@Tu^HxiI)-gLj>BzP
z)WQM*V=%CGH|!XGIXh;xPw6G#-M^00W9DPwrDJ^!h^k!l)<$!WwuS<b!>9`7tm$)i
zs)%hMr?#sW!D=PvGsxWScLHw@)U2Nj`|+djpJdh=;UIvUP99hocUwPrMLGFM)#Gcy
zB|vW<q4n?|lAGt*!+<*zUypmum(^SrZX1MpG%97CVo}8sq%sJP)DBI$0G+?Hrflx-
zPGhDAHe_Nyh^i_f=)8WtE=OORPg#cfvdkFt_Cq^wj*dS$IL0^J5dxb|WDe+yxmH)L
zI2f#$=-gskRGng7Ck5z-#GQH+b}!CJS7MrwPB>3nTvtxh`i>FrE~+~qR-rTHdONf>
zWbX9`yba4@JFsRo2lr@Y{QvYCy`%S{n{&}Nh;^`FdzD(iKsFH^ca+?{S3g!O%({hr
zG6$kcc^N;nFLkr-Jq46bZrMMa@^tke8G-EMGV(m)su2wc6_l0K9R9Y{fy;W&ANsAt
z*2}N9ji&iPY`bz#1Lj2L-GaQe1*TKt4Zn`}6X(OvX?F-MLi5ZeT?ZG4=~|OD4$K<b
z=PN6LeVqZ|@R7$psNKl7Y_7lo$bGsqKKB7v&eFG==ccLR&#%&)p0Y5qOJT*(j39<H
z@yhJpgB%um-Do4;1HoTI?KHT3-)v;+JK%sx`eVPYo(@EMn$TpJU~AM}Rqt;3+Ruv(
zTY><uT8MPdPRI4Z?R?fXv8fkcuBq(ofng_z>nXjZy`v#*Yid7Hqtns>Q!u4y#+4W5
z`E`n{KfBX=r34M#i%(ikgR#!U_&_gG6iVW3YycSHPgA8L*8+Vg6VRry^nsSAC6j}|
zI4qZY8;cFtj!ACDu9a@f2Rv3OR{LWIR1+|Bg^{28PHl9vouIoB-UXvZJ36pF0poaE
zY`yxHwB(F+eWojdit*v*h*F{+KjuCi0zw9;F{&6bga(?#soLFO86OhHvdq<q*&D}G
z(s;PfV=Urza~KLb01SnXRP{41aY}I_+Kc6k@lg|4s6z?GGcq-CZ?QoaZ=ii#?<(H%
z;r&L<f~mw%H<tm8d8OI<_Y_gO_}jptstMtD{K?Co>(%>tTH`a`wE-k+G#gu5SGEL0
zP07)8!?H-H5B#&1vrheLOfV+IMT}Sk>xXstyA%%J3=P<YI*y~_2`zE?C^UBL=h1m{
z+GMJalEwjK9v8h=M*P|t>0%o2M#~9O6JtnY61cWz1vk!ZejL17m=T!WmyMngFy20|
z_e&<)?JAV=^rh4bdNT!u-<@?-Iuqy@`0}9YIXzYIpH{%ySYF%Df+R1EzZ-u%(64)3
z)KT|L2ix$mIvvFr+fidQnqSa~4L^r4P-;(?UOQP~eq!f2_<_z6@@K3*`FvVh=<Knx
zBZ-u<8&w-fA8tLH<V}jr>%5qNcFg-xt~}dwAJk;tm2O<h&)av(OBkDXX>Xyp+RL?g
z`6VlW^5CdZ)YI$Us5d#IE5o+1IOPR+xYUp4d(ijd!U{hPv4`1Unwp;<EmPzuto94E
zz2Bp_`uX(SfNQEj@qBJ+?DXK60xEI(bvtsESl$$?RRCtSbk>L#5Bp9^DhYGGACnT6
zI6v#*zLM%%c4zft@APfw<+CuM;jjxdQqYa5*s(3X@yac;ZS7h1EymUsv$mMR^zD6=
z3Dw%xv7UAc2FiFQ!g!h?+dAS?k>8guu=x|A_-yqBX6M)tO}6na=>EvmxxmqGlZeaO
zYA+j9A(8Phs|txo?3MueGARf*W~X<qPf;5^)1Zg${%;Hov}g`QZRdsRjWzkt1u)}3
z?N-zCtqUh8{ECR6pdfgLv)0gVD;L#iL07^)Ur#v4hVQ!c!`HS_`SyL&5#zJB@P<CH
z5z@7dLV|Ll+7?p8FGS6}eml*_l`&77$;`X5HmNwN@bxO3uw-!M_Q2?QT%&d)ZX_r$
zOW2}iVuBe2$6@v8+jE;#v%fQ*|B^$G@prn#X+6HZ@!CXIlvkr{@9lE+0%xB=XXOd<
zG5I7n4!1@R;WGxg#Mz|HXIbiR&CcaXaeC&M`fKmz)PcL+8#Sxp==xx)&Dra}%S(S$
z{gkx|S8w{vxmX^NsJn?4ct`mwWq_+z{ab!2xL$scTZ_4VQ@Mwe+MM~xoNZYe8ByLR
z>wo9Me~Vr1Jp~jae!d9PuKUb+=gjFc-VP9zPl|o<KlpD-=N41Hi<2D}5eI5YpSdXV
z9(~8rfj{EYV-Egq6-1_ygPfFq^Awz054ix--!hjcV)UOs7Wv<WuLil7!Uc*1Z|2l>
z=&zlVk6yVV|4h1wDo~q?DEh)tuwr+4?oTmJd)n<@F+QQt#+|{V>*a!<;!5ld!`+c?
zUn9Ocw5#3|!evHubhS3~1VVI(#&Pv}!;A1pf4wVlOz&Ri)CJAc3`_fsL;^8pRgt+l
zeLXXpTRYBBD0%9X<u+OSCh9;L14`I5{{;K7d?RLTv5Ig4*ltk<p-2K>jz16xuJ+rI
zpeWa#kXU|hMV`G5>E{{1wz`bf{uO;8m!<Vt#U(pEU|BfeXE%9U&NVpMn3J#sZU5na
z+hpdUTyd<6XmV#Bs&9lm<PMDJeDW<zBT&FgX!yNm*DbNRy<}rj!KS`a%rfcy1aCjF
z`99BJN2~0*XNvNInM}sZz5Um*$#O}tnqe1XhTT?olab;kpCa`ARAMK2*edt=&edyw
z4(EI0ZY+~{zn9A<fd=6kz5@2-<3pxD<b{+fyg$}Q9&ggo<vA0a^i%hnFt0v!&r0AO
z{hmShPdSkTDV=%Gd)Yr-;K7KM9#&Cz0Ms#q3i$F<vg}$8PFV>~zJvZyeG$JKDzdtb
z@+*B!-A9aCEzr-*_sEZL8IFDyz~ajvWD>LXI3MKHV#b_wURH!ZUDR|{OCx-~!uCm&
z#NHL6wX*WpO45|?#3ofg4>#54=GpQ_0mS3e@2Lg#kqgLdNO;HkB+Ra-Bax1h;DCP7
z!B0NwlaX3NbDWT$*Qd_VMlqK=ir4i-f9f9Zf20lc%bu=U*PLH%Li4Pt^!*T;F8@4d
zExbQca=Iy8txq{nyp$s$KWAr=sH{g_Z9GZx+S<;{h+mD_xS1o}bWBa$aDLu3QFm_7
zDJN1nQ1W}2A;sHO2uvm34umsE9)WTBje2lUNsp`ByhSi<q3YgFJIYC<H|%-;*;hma
z9nq}+^C+me)aTEHq|a`yYJfDRW?wVG*K2~7y||OgMHu(=2e-Ol9D8ixX2RQ9g}7C2
zv6or*;G;$7<v;<JNxIaZ;t!{$dhUjf=O5MENFmln2|98vpSg&{nF@8sOqc>5Bc)Hv
zC*9;9fBe`FYyK4veagH)lQS6I{8Oh%a4m__Y2{Snf#?dA0>AdT+FpL}0b<cme+Zlo
zF#0fz?QfX6$yC~k<DO6GhrC@A#n^P`GyIy@0zO8R!NmFZxu%couK+?I>q8&APw%+M
zBK&l*$k7csEbia}^s&=)EJ1ksP8QJfd_pN*6nkUGQcWl<yKzTz9_M%*<ghqyQ+21l
zTtIUl8x9citP)REUZ|o2N#EJ=jG{^mFzk_Q6Y{xQ$$L!I$@!m0UCA<Pqpo+ceWiE#
z*-CU8s|t2(y|@E&<^{7OcOj+SDxTiI?S(P=y1p(-`u5aLY#>*!A{QKymlHa8fN|z%
zjR|WW+o5X(?ZA54ILxXuiitrPV5y~G7a>+-<~g`uOE9Yu@K;NR$ZK53)06#b<;;0K
zX0>Y<=pY5EZ`CNEkUg{|O8UDvx;N5hnxmft`!3tF5M19i@XBOn;H&b)UPs^;m4!!!
zK9D-xVd|TS8xOmu3Zw~bhqziCGW(g&^BR7{4~z;S@Hne?6gRc+Gj4pVWXYX+614O4
zDC{R~e9L85(B&p^3-|mRDiScx@OD22Q%inYu-`QN?Kcl02jTe}K&LT%;xQCyI|`M7
zA)~BU_4Vrl-2Xz>aK$)65D3oz`issVL7o3@_gc5(?LCYrHKe`Zd-QNuZWN;weH(x|
ziG3eO*GG9wXM?_J9v-v>>Z`5X@zdeT8Nm-(7VeE&g)SE*wC81>Qu@+79pdD^T+!$0
zy{42%pRJ<ZtT|=}_om$}$$<g7s<I-uNN=b~@k!xA)#dO&0<+Bod+}oL-X#wSO~B8x
z!&`iT(4(hv<v3AcxiaSh3-n9iXwE?p$YonGe3)z<2KXFNIs7u1dwOA+o3On3tU|h-
z-J!CwH0kf|cZN1zXJ!ww{c29)8jm(duKn>{-Aj<_9(~}eUR6Mq=DzW{qk6?5<5%)s
zg-Lg!-zt#<mU#Z+XrbPX-xa~T*c$@lQu&od&YUX$6Q$A@-_kGy>iEZIl07oPobBD!
z?vt24jM>}J^}TJq4Tkq?bWME%@_6VvgDbCK?{pv1-<hkRYn(q{OGJ^@8R14C+U{-c
zP07M9@EK6H>g^0Enz@0Xp{5GhynA!0|AoP6r@Tjb-nAQ2Q<TAZ;J6A{urH0>RCq$a
zpol*V0b-pX1tQEB%1af-P{H*Iu6LG#vP##g@{Tv2Zd)Fk{!GlkUr=3>XvYiDBJ?az
zoYEeW8l_S3(>)l}U9Q2tH+A@Rcnq-=dJ=%=NfF|*fq$N>6n>$^YbKMpukKw<r@Wn0
zzq$Q2fI_ntXluSe$@lc1zC^~mYJ1WI3y|I7K`6){j*d4e^+jnJ>VggNbEGLy2B%hF
zT4Lz|r3TTfD3&9!cJ%|lumH6z5u_9P>v_IgDYsKPb?+-9W;T?X75-A>{4WIL=@ZN3
z<#(+?Wc_u;`JB8x_joZXSCq9-wfO;jY&E47C!9^yb$w3TMpTVrMZs&v;{;T>u<QHo
z`w_DZ8(k9`elZWYS{2bbLL&DaqXhjrmxm~P8C8ZOAXda^$t~694GFpDjrS(vpU1>*
z<i}4=Y*Zch$!5XU-nRHj8l&ZchQ&Qkh*iMC02sVIGS{&upYTjgfV6gH(8I?Wi#4oq
zun(O_QW9Oo#j>>v;x7mfta@_mLU7~a656_>BEn*M*<PrnAmplO8E|Wyk?7vFerBV3
zq?HSgxF=GAFFlTJjzCU+I4BGn51U{=E<aCF-VC>nq5HsJfdGWE>O6q6ry*G6A@pQd
z!Pu{b*}9X@f8^Ps;Z=C5?x7kjF+|m|6FaT`xx4*Sw*z)S&;8!2fjFgr9XmAa6<~aA
z`MggN<}lcoIv=gTQ6hS@`n5e>h`h~*iVx_psJ1L?3@nV(CF5BdQ1m?}q4(e)tm{(u
zbV-lo_5#anu^;7H+GOHPY{_v@rB%|2(65O^anxRSz(b1|Z`aq;^PnZ-hT4GIEtoy9
zgmWYg?7)W+bd|jY$XfF}B{eeVP-49?<VsYIgMugk>sSwfeqrx5>Fv^K>4nUNz~f2^
zYgop}X>rWKY57Te_^TEU_aQIDUbOnPb+w3lmnpE64QW`$=I*GPAO35!*GBJTMlfYh
zELsYQ9BL8O4w+IQFpu?|r;L&OfA)^HZ9hZCyPjM%f!7dHX3zBg@f(B6z5uDjl4UE+
zQ{Td-`TeqOdMshE?;<H{i>9M|F8Z=F6<l<7Bhp0ngiw{&66Xre{9PQsVBEduCbIUI
zw#>5+&z}sB9AlQMO7~b~&Ic78c=nNT{<j9x={+cy^y~QlXW0LfN3S-ZR0eJCm$Ev>
zncbc{Zy8<{yd{Mm(P1z1;<{}6F4eA19LfI&TOZa6`+b;eCM+BMG(UJjs%0RI1&o-;
zhE12w5#!;wl^QYJB2+l55W#x5F{^+cacuIxoGSlYdU^b>^il;~`IbKy8^OWj;QEad
z%gf7`NaZ=Xpq!9#6TQ`y6+k%xP0-m|7|W_vS=CRPn6QJ4Y5=P6H(!<F=E`d5yBlf`
zeV}>v4wS>T&)TQTY95_;OfavZB$PfXom2n_yMKLQ2h_d-=wXdYO;2}hYTZnyH^X1W
z!8F5E@*%D(IXq0sPRIKbk{1CzEzaHKDx|lnFLxpQI>V+VrU9AsU5VH#0z7XT%nsey
zof+;SrPNZwL;W}A%nOTc%NyL*al8<73q)vfaD_QwwTTn{c{0*ebN7(Mz5Bfk^of=E
zXVcV2CR2aOC2fFYMm~A8n#^pv`H1pW-6Ub!bWXa%RG;dlX}&fbS(2DI)VC-nhQA&+
z#8q?#ScxC^+uapd6rjtI^%Fw`6dB`Co77&~h(m1m0fcad5jk{fWsZCkabAzgElt5q
zDoCEyZ}cmupI;Hgp~BMr*Q)MOs$kx%cUXAnN@&y8vUZ|gKO?l(b|m^oatp?D{z5x9
zbJN1w?V2m{$PJ=g^{qKFQ|eI5xG(=1@NOc-Xq{N&gLAcvDBo_4C2@-)zJ18keUJ(m
zYcrFX#whZZ*3b#^Nw7VY^|zX5`^;pRyeXX>QeSLVzoWR~qzl<vK8cI&cy2B_*)`XE
z?sZA&1RxvdTX?Jl?1uVf{rlN#_e^EL-xS6u!S^z{++Z|1tp3*>?alot%%Z77>JSwz
z?7qg(ATkA>`ee2n&ve#>1+Gt9>w8ItOu;_{Mkz)gF%t(1D8e7x9e=RK5Zl`c*(vws
z>K#};_qA-)J5wk72c^gQ_HGF*0y+p%6B&C`_e%kiaZxOBaH;Z20C2jh?ASy$FF01>
zDL;+60zak~8%3*%MIzO!Bf-;iR6g79L)GCmv^2fhjb{X72On_G)&$lmqujSzzHH~}
z2hwqeTN@|lU;RCXG+V00YpCPRmt_p+-p5~mQ_8~<UEiC%i)n4Yv*aqCY&q+<7Cmqo
ztbsbBR)o8(TNqaI^QSm}lc#V3ycGE6S`mLJ5HB6S**v-<+C$We+Nf?4+TQvwsUq2G
za}OKWd_A7Ox@b;jLN&h7HxG@zANMJK#&W$}$cL9pF$%+;)khAy+=Bxf!j??OkHBJ_
zigIe^kXT75$5}N#=xOvcx4@9Au3Xy)&kwc=M<}^yW11i>E;_#$2DJrdU(d5~bv$RK
z(GG?D7MQZwFgX}{c6hERKL7Bv3wB^f3OU=)r~AK}IrDI++qRG2?Rix0d!|GaO4fv=
zn}nGPWkN~|WtlQEF*AhhW|Sofku`)Ck}Q*DW<q8n`!<nf%wU9UW5_aNnZ@%{J@4`S
z@&5C?$MGJ=^Y8reo8NVv*YCW}>%6|7FNyw;Tt!MwcGTaUhi)LdMO;jWaF-p;QAGEr
zo6{u|jGM{#VxeAd{1++U835S6V3ub5IQTO4HW5&`ZIt6jZA;5oD*AigVq}J!9;oY1
zg`FPw@SQso*vlJDZ;nbK=*X?HHNzR+cZ-X~A#Qk{wuX7<Ljpu{@WZoki%;aKtW*ub
zuvir0NtZa*G|(^Z6Pho*dM0q7T7Gd{cOy&3tv%o=%T?zwFDXb}E)J8GL*nAxB~~BL
z?d@T1I^vTvJb~%(XsEznw%~R^b>&_ly4|9tthpmhuEt{9rky->D8p07!DtO8Q;>_J
zyXvB)QSOJr`jeu19j((wY)CV<P-n;trLKKjfgHcA_`OG(P{__D2(9#q9;$7HyTLME
zLi5-JHx?O!oyTSSd>OP_vp3k019i^JA9>EOniHp;CpC|E;UB*wBut-TsXHPA-i$<@
zU^y1#wnkwD4=7S_b1N1@5`s1xh^?@El4%1^_raS$rs?mN%ZBKthI=Hm2M;TarQT$o
zr@69Wty?y&_UcNW%*67sA&%7^BoP`SkWvXYy6$eYPY(07-tV=&MDELJmAXCyH7+wY
z(=q_lVYyabDz^%pQ0BxtkQ~*%2Rg}PXVodGIIJF%b?cxOhWJcjeh>_8Qd7JYZ&RQ3
z0J{2CbXFo*KERz{U?y1^W(I2f0k*P!V=-!e><!-eag(!31Z{*IF_T_b^n`*C=;fDn
zC#xwpGS2p1Q<39#pOd}X+qsLkC*jHp{Jq-icnb{GqVwQO6V_uNP1FBO_sIKGP@_2O
zYxm4a>o6|aMD@tl41spl^0$x_804Y-pWPvc#r53|zc0QeL*3w~UxDHnuK3#B%*mp=
zElTX2c-}8pX2EC~x$Mq#J3^wUtR}AH4)<>qB~RBD@4o9L$^Ri;Pwgj=cQR@GE?&1|
zD9+!CuQFg=({3hbIpABvm}ofQFoHT*m(!rT*LSkA3*p$fzpOZpEv3xPz4H#cWov9`
znq|oBHumFe#B;Nd49gQVj`nmfMdHK~Ms9h>hyooN*Qp<I8w-2%4m}*o{i3riIf)kT
zSwx9(kCkcKqAe;SoPqTDjo}Wb1B-#%=ZM61c=HE!Ef59M^cHVce<`O{%87)U+XN9W
zu6qWjcIxnC*i4Zbbi_a!DjCT*fwYgMC(<rk&iD3|@@~mpeb|2a{U-ij*#rt+L6&|l
zI%Zu!x3|Sd>x!221)Z!L(}v}|6mI#YDEH?`6+_mp*qbzfRJrhRk^E4j=|NbdV&XT3
zvgaF2vhf&pSer>fYdb_3?*bQDy$a`{5d~JqQt-_;$QJxK1QMYo9nCp^Od5PmxRw?G
z5fCT&f7AgP{eQd8xs-AWQ2cwsP`GcSJ`3RyS^pqLgr;wFvs&(R`y^KRqvq@to5Y9%
zQ7(4dUssrbb;+4K>kW<c8J@$I{eNa-Zj^zECX56=Sa&0}DZ7oZTa!r|Fdp?UN3b#n
z!;ZGA_aKnUPjc=f-LNM5^LVhwbAcBVRYK6zDW{cl{<bq1vAYAGJ6=55$gJ19pB3(e
z8X$*h9-8~41L7>GdVQ%sQ-pjzEv5L7K9=gTzbgoYfr$YDCH@^_CfdQT^E?xMNf3=2
z(vD8J7<+Xvq7cnLeZ?LuR}ewcGw-86p-VH_>|S|pg7^sykyo*We&$RCbSaJ^)s1ah
zkElogl$XUsRFX_!bTO`H+{-zT#g8*=K`J#?m5G-4kA{NwK_wq#dbE$I=xl*yJMdb`
zNcKzIU)FEb5wgmxo+1BznSJ=xddvEghF^<GNT%*=^TMeff5XAAjSQFKrOxH=J~o&j
zPCxYgvLA6xMR5!NsZdPKp=CVrF7cSy3z4%#ynNE#ZZNSxcrE^(H)|_T!DE1oe|47%
zi`)_K<5;s7icSh@Bw#_QAd`>nV3Q;4pij_UKfl(<+$^jtLr}36>U{xgIrw3Ia4?+g
zZvLvBeA3q+HJej-c}AkAd`->rILnW>a<S6frMjU`N>`QNr!j-yP$r&f*WmfR?xJMN
zR7eWeVPjb&jf0wKaXZ?HDq%5`R$T}$Es1%mWib4~B`o7)Q$qmL2Rz4_v{}u9PU^_p
z$YDLcTl90iswO9PHuiGrdluC=L-cOlo8_63=|Rso`#)K7h5gm--QhM6VE`E!FHmIF
zZryLRACQjc)2a<5J!3p-=Fp*O^=}>1Z@=-lJDcEkt~sT?j)aytE|suq*Md~$)Qd23
zINBFYv%FYF;H^vE7D0(SFZal!Dh1S}n_dN>q;CANT+9{RWckoobP1d$$0qL!exZ3*
z3XIU;x&sl$z2f*>fCM<+ZUF9n^!Tj|HDQm)dJ}{&NGCOVv8>tR(c10c$xTQH+wuOO
z>T(BZaTyv3x1xupop`M-8yR?n-Eb-ftAYlij$30Jor#_8^1tElEHvq|sSHT+&&zbF
zJlfOg@R86md7@jTN}LDGY73+PZC!8Oms)I^#kTNTayK2Gz2@AiWTmAy1*))-1uCT=
zStpR{?Fz~_(F=u=t0|3r(2It`sI7`m!+F^2)>|F%f3DZPz3%;(hPlBpVisjm^f)$!
zVLU$_-Vz9_DjT^sCQwW{)eKw)4f7_)ETO_vKUtv4Cr2)RtMloMx~dns+v#9k06wNu
zoIt%0m5S)k4ysTVA}b$pwB>P?CYK~H^j~Rp?&;gMv;|=L${-i}bfcDt*LIB@j;NhD
zSBNds9W<Mp2W6qPJVX(mA_>7GEfR9Ln#2!^#U=6o)|wdZhe@~=7mp0*ac@<7a{NfR
z?3l~szh-l#{Ft>G(O`xP^YH3c<bh@!+y=qfUq-_US{B|mkTw!M9&s9legrlx+M_^j
zmT8pJWmK6%lWJkufv5QgdbMOp5<yBgD;b(G93xY&SHXfWv80!zpvPWK6uQ#j((;KL
zkgFLr3!9^j*lJIx^Cmr;wKXVDs3>I5c%b^(J6-~#msXGFZEPP_x$6;a`pT7i16uDP
zCiV_mBh{ZR?Qa-_eVyG;sgy!pawQ3%*K4h#{aHbEe#xukk^L?FK*w0F8mSl7i%ci_
z-AI%;VTnERecx&cw_r`?PGur`O~#^HDl$IC+2BUqIpT^WyGs!5w2)Ufn83bwJrjbP
zE2NcvR-|hKjqwW=L5`}C&lL=o?c$;4^rNTaOI`!4Wo8cBDXYIh#}%HPSnYIG@FViM
zyP5Lm)7>H=7g!I%0?^=>tn>1f{8dPc2~fmOKM&ww7S1gN75RT}WzRt1D=uua+zaJY
zIjf(CGtDZ`H!GnqKE`XTf8}D-k*(DCa*M+Sx+!zT+X#S}g<?Z2!w!<r`5-0^cgb{j
zlcyCzZWk&T;Vl_&JjPOb!+*B9&RvBgS1=Oa{G&jyjXmL6)Yhy`@GNm5*bhtbtK0)X
z(g|dnb4gEq)M&3}wa)q(9*^wejK~$d#vWEG5eFqSuF#>vfQ5)G0cIimTqXuz#y!6<
z)9&WQ&Bz!FPtep|5)L>o6kFmbdcu?7#=6q9^w!h+r^Wt~)b3pjCKB-aryD;WjkJ>n
z++~i40|;QKwYmq)6wr45hgVU6;AGDzCCT7JR$<S-d!>xVpI@`<6`VGS0PxQLz)+>J
z`;(~ZYD@j4V(OCRyD;kbl#0N6%hc>v?O@-%>%z=OzXgaI%K5ydB6TB>f0u}{Gs#$9
z@OpOLZ^i2VFM*<lGQj^DAzt})Ikx}ua4G%t%atW|Yy69_z4~T<=;-!zm$FteSP#%^
zd*>JmJJ>_G6oo>gz_>6vz8U^VWLAq65=orper3CgAayZ_Yj6*>q;y<bu={G5^Bw9e
zfERzKPlzgXj6meU`WrJT@kl1>aa5TLr-<KChnR_=xoRZEo3D34_M6qL0B^RAC>aDS
zJGCmy&M=is<wsLTAv{|x^BRndz{diLbnGA^<M+61N+X0|`L)|YnUdICc-;M$JhMRi
zcoe1xw$S8o?2w`z4tE{XnlCJ;RbVtz3!5?p*Ij%298BfCWq!6?e*4-O>|1tH!iDYz
zABMM{hsRjlIVx7_eYEdAJl>A)6BHtkvuwcyl{~}5aGHd7LY0Y;hl#LOk&D>1@2PwY
z=LZdg_?%$+6=Aj%bP<F?f?F)-4k<lWKT$N*_d>Kj*Pi{`$9Dl;15usA{Pv+;Le=sb
zr&cAsr-02+SeZJH&JRJ0gLY#iIJ{-!yf5bUNBM!E0t(6yp2T6lh&NSba<!x6e%%%x
z1H!fLwllx|<}P7;V{KTo5;lI(G_y0sm~rx%RG$L8C`TqwTOrjd(o9^*$R9MBHB!|U
z6XWQq-GyIdCg%e)Q!q~;8ci%TgmA>)6<F{-6@k8DVg^jj1G9FT%U`|zD-6HeHyx)y
zIX@hA(P-7k-9hr-vg(XKDa(p774~@A=Z7w#;ZEik9Wy9lMxYl(oSq(f=3*qy{~=Mo
z3!il$hjO*#_>a^;H^&g}L#3xZ<e5tcBTI*tuiJL`u0<TkL0vaA-+z#lVfif+U5YYa
zpQw`6Fzw9%Rk;S72$T1uT;wX`n5X@0D1m+rJN^iGSv_MrRcbo$?E3GX{bDHK!&#r%
z|9bzS|8i{BFLHF<erTn)XMnq!X1hI&$ld8%^$(0&LBtlf!ai3*A+4qETB)Q!Dx<JX
z<7~rIfS656TLMx|<LM!q4F`4}zQLqT9$-#A7J4{iB0wt(Zd7Y4*QHrrsQPH=&*zYp
zb=?Q=RRnO~nJKY8{^%K9EGMUJV>&Ig^JgO%!tBk>Xe8KbbHee)g8|94hn1d}Ke3XR
zhxgiBjPv9{IalG7t*csWgX^1-^aE>Jw|)wmfyL@1TeA}TFRF1C8eHN(l{!A48)plM
znAtsrRmo!SER>cMo__S<+*qK0WufsuhJD`JHz>wUz2Jb~`Q0UL^H7EL>S~?Si)5f)
z8EgmIQh<&Dc=G6-->DEa;x3DS*9TpA$QNTXXFpc@jti^caO)yL&}{ctlrjv;O&EKr
zOp$i&J<9sDrSlsTCZUO6u%&VVk>n*oy%h!fJm3qdDZ=ja287JAQ6Kk5f))J6h?l_m
za<JDkX3}e6WZnBV)^ZH%;%!&_t&A&53PbG4^nqn_+#%*lA!l-0V|g}V>6-n@ZnKn$
zQ(3WwJR92!uvl8jvj+YN9cjjeBl&`<8TR}f>||ogSnF`Uc<R12JY?FgI`0+rDFQ88
zj$M-~5-yvz{(!x@Df7{tQ~Lo746z~Rz1*>XvBJevzZZS}vo{X0j?Xwy%Y7Gkd~jEc
zt-~zE7i&q$`{=jgx-dr-S-rJCsG!z&OLiuIv?vEq3@B^^lmsWGqs1&ghWnVV<xO8J
z?MPVm_IYJkufr~_!|N+@R%eVrdM_lZ83T&=Eo-=v_^GI!9l<FIhXXI$t}GM9%7avv
zF%5rP#iVa&aJsR>Y(eE%B|-HX-Q6uzGyTlqYRK)Emc^%=`-<yN^qsWnVdOQe3+?qB
z8q41RdZhJ)p$G9@TM=5MAE;26pK9k;Ww6Q0v-_&NIK0tj{mMYwT#_;jozMsq=2LeP
z)w)0%Ke$T_<094^Fo?VN_g;Z*sVtE3d*-{1=VM><8NW-x<-yENcc2e)J=?)%hyKdu
zY6Vp~YAit$&75l+6)``&j?w98;wO>31B)n=mD8n>wyM{@JUsv2JdjwDoEo$z@CwXj
z$1zBS&5MtkohTO(U6kE+C%y11D%VbXU0mX6C&t(K*Q;moJ4f1j(5M00bs9pjGWb0s
zJ>jj{3$MKz<yobayPlORHJ>fR8Gm;^fK-2eZ}>>APT`n5scH2JiKbwr&WFplh&_l=
zUQAuN@}%nZ(3*MV9v<@>KVjJ~g^x3TM*5<&q_=Wk$C<N~NNgR=FUuF0dZ;sRjtoDA
zdham&xwFIx525b=4`gL9w^-U{l#W;me&3$QX@Xb}GAn=ZV&GjX*Tywwr>n{Uwx;^z
zQt<c4F$fJR=i2);^zP)JvJ#(o2OLfc%&e}SystLBVbHGSU?n^EE}iU?{W%CtC?^Qv
zD*D9|Ul9mMND0xTnJ+k?cvRN((?6h*hCrQdX|V<3yI7}mgih%CJep&6-(K#d^xz%7
zW=FS+M{(Y=f{!tzREh_TVJ5#=b1^;kwPqCeHLaN-S$sOJObFNe{(3IYIoED4(saF)
z*z|i3`#&LLFwdL2G|6BkN!|fBiRF#5^ZC0$hxBY3paXJeKz!9iqR-GRS>|64R<>pt
zJAF3~CJ{ixUQ^mVTu!d&@-gLmK0a7<;HrR(3`5=oOLh~``F1pA?aAxjJ6^^R|DJm}
zblLAAr$H*IzA4$nd4XuM@^-`-I}sHzWgQbvRi53_uD^l3*r(e2GdTOLYaE&s;u%yx
zcGsTQ+pZIQk2aoW-TrZg@-#7vM7cMW$mbvY{?iGeQw@~{TP~&PpxQGeh>eFYo*%SM
z8W~kv-!1q5CiNGJajV=h3D`>Cn0Tx~pWqHVX>1^4U~EcXzfD{j;WopsY#T#ntp<6m
zdMm}{Z~evR98vqV347v;?5Q1sujDK=R5+B99*Y-frnA;+QE9ZGx%{?X3ST%jR%rWj
zH}IE0ii!Atau1wauV5cP`|UL7X>j-7%&|=@dhOfRB$90VWvs-K0CVs^{(zfYFfKZC
GGvuE`N)`J6

literal 0
HcmV?d00001


From 22de959f5b0b082731a4c21240779f6c977a3ed8 Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Tue, 7 Jun 2016 12:51:28 -0700
Subject: [PATCH 05/69] New image for new UI, renamed

---
 .../images/intune-corporate-identity.png         | Bin 0 -> 7409 bytes
 .../keep-secure/images/intune-primary-domain.png | Bin 2718 -> 0 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 windows/keep-secure/images/intune-corporate-identity.png
 delete mode 100644 windows/keep-secure/images/intune-primary-domain.png

diff --git a/windows/keep-secure/images/intune-corporate-identity.png b/windows/keep-secure/images/intune-corporate-identity.png
new file mode 100644
index 0000000000000000000000000000000000000000..4ffb6223ea2220fa6828b2963125b05c76efa4da
GIT binary patch
literal 7409
zcmd6MXH=70w{C1Gn<k)u(gYNwi)?z6B8XB{dRIbGN=OJ0AOtK(5g{Ui0s^{q3({gh
zAao5SAYG&;gdGr~gd`#mAR*xd-QPFPzW1Cl&bar_`H|#Z@0xS1x#pVddFEV6zwBTm
z@Z0g<004l1?FFl=0Ki@l_ZfYNhx?82(|XVS*#o_5V*#ihl={YP><>1#H|Gi<`L?eg
z;I?_e7d)T<fMCb&XAdr-EP(q`BI>+*lv6}d6zqCrAOL**CMZe+6c}~lca1X|24UKX
z4gi3Zzpa(IbF445C<1vB=X1-kM%{=`z3@eP77#1D*U<WX#(O1z@R0-qo`Z79?|AjQ
zx6v@5kl6kn_28~<hsd)HO<w0D_G_6ICH!Wqk)A%a8HFCQHb0?yVh<#Y&j!DSswi(R
zZz?Z^zYd9kv*KPU!A57CW=5Ow>)snh(DGO3tgNg$uf&$eu2Sg=^78U?T6thg?mMaU
zWXav;g_DHC!otEf@}!isv^0GYUcFs~><bt<Zf}+qR)E_HISD#R;B3HmV4Ex<x)gDh
zxFNG7Ex7)@4au1%RiM~-5^Oep<IFpuUEQ2&+8+rd#TV;JC7fE9yH!8Pi5zi3GZ<-(
zB-BDjq|)Pt;DSTXibNxJCp3tbTxgwVSek7sL}L(N#my2XZE9O%*Y716wy=ufOM$SN
zXz`!6<v2B5CK`cY1c;5a&x>%20&3R|lTJ5~QxX=B7usEmt?N$-MU1P??}{=-_~4+i
ziG_R=OtWLXC2=Kt=^3#Zs*I5th0|{~F81H2T*{M^m&t9){6U0_8hLme>yVhnogLUe
z$@t>?U@Tyiv6gRh2QLKSCyB8Nkji&-g+XY#=m^I*eTQFp-f!c{{n6Xht}#=$r4?_k
z+l*;Tp~OWRW<C9kM{v8+JA2LcL|deA)7Ovt!SBR@M~&jLUKE5ml&t3!+D5b@WHy>Z
z6|J}Db2d*9ygO!<!Uxb{ehF{tX!%98V@;bw9)Ah(F9z4*+I*al<cqK5<{)l95q&$n
zRdz3AuUAYeF+7*}wjjl2PzR9_UXPL|(X<w6GFV#};{7r*4aln(xGZ!adsxMXy85Tg
zP%hZAbH3V}d{GaE3qNWJjHyt{*4bGr!YlCV)q*nFGGuUHoH%qeOO<f(Zqn(r)bS9r
z(l<EhDZ=3ujOxVHr-2y=U%2R}#Gzp$Pz50xt+dS?LF(=K9hv;@1FwanOfdufu6u-;
zbETbqk6Q2$2oW``9=4MHt)cp<c1~MW=Y<Kl6<kCIACqEvbGf#QAF&v7#2tN2ruSGC
zv@)w<WXIcKdviW2O!l`1hJlZ|?xPg1o2+fvJ=Yz!UbSxV76&bWn4Ox1`t&_Om*iJ(
zygFoO^{krd39X@F1d3YDuNDU{^NuvVE#OOnqV;Ys(rh%oaIEl&s2a)~5tgI{6m<{t
z`Rd*uKy`fdVrZ0otaTyqU5~-iZ=#~QK}E-sJoG=CkA_}-3|%T3%4)XeU<TTP#^PDf
zWK$Tzw2#V$N;4DCt3dw`MBUh8xCGPp(9NvCsVzO+xKyekj5NIDDGvP_%M2wWtf9|1
zjRI_`<h-$Yp2VOpQuo@d8M=tUQ}X^78WSIbXjym_!RC3fw#%AM_Rkjfd;7j(_iDxq
zGv?$&&hYq)THImhS}T2dFM<9lVwq!igEd^kI7yS-@l;QW@Lu(WxF0!<FX^)TM4i{d
z*E2-*hZen4+7|!V(b2}IcHc-6Dg#O}<6h1x6(fKzTYa`M%&c#QVJ(wGPbHW#eBrX5
zuiI!Oh^m6w>fEOddHI;r6M4IvOA)<ZGnnXjqYzVJe=TUQ;Q1>PU&bTm_+*{Ju6iUT
zWmE6u^wzA7`OXR!4%a05rMf>~XFr3CaRS4%)}k|~OchOB|BCIer*7Uz;>1QNv)L*2
z^nx`v-o5K4662hLwaiLJ42ga>kStHTwUWm+S9<GPB(xz_pQkSACdr9UM#>7KQITwA
zlQ<Y5#aF^o>*~~sQm~e;M?re$Na3bsPG>o5HPgO_(}@q>yN=Y3s`l)QcL05$uGIu)
z4_`8I4YWCwGB{DQc^F7K7Vl^j;>}*CqB4(bGYsZ%A`MJ}$=<jrv?Lz?4JfGpMPHJI
z6i0>tSqUkLitNCOl8m6KkP>O(l|wX4mH&-?4VHs-{m6+LB~BT&Ot>%u8jBUM7qQ$B
z*Ir0oE-5r6jl&{E*+3Uj+K(Z9EA4cnmB6A<cpMz-=GP7s1znO7IiTF`*vZ&RD`_5E
zHuK#M9sQcb86JAoUO9yM$UwWADVYrF$@|+ia&`m4>xLwnGDvu91R}k4e=Vz27a!>t
zPcHl2wDBA7MDw*&#dJ9q<t%q<WUe7$JN+`_3FwcAwf1f_G$5<gfDx<KskFj?=M{-2
zwZ>6Xy*@&7ez2^<kWZLTS;z+Cx6?ouT!|WCn{H6o9-UM#44MA8Ub+@A1JPd54yZ{>
z@p_bQkx6oV_`=q|htsrdB&TWSMxFmA3hHR%8AuM=`(o&o{^#M7#|_&EB(XvaoBm;#
z(b`^ZLN)R&0rN$On!zfjl3D`EMr*0BcGnp84O1U48|m<Q<NnTSR+_$D<Lke}zI9%)
zUTGFIPZAT%eTcRtsBI|qOq#N2s6IK-gb9vC4&(-_t<T>TpN9)g6bK*1QHwT{X~jA2
zfU*Tza25`$LK5R7tWc@vB$$ZS{s59#+KIqzLe=8i6$`l_egxG5zu_b1RG&Mq)1Fdq
zZna$D-EeW02$3w8g}(@A-oVNwpda%-Z~R^!4ixv-@#t~q>{q8(Jo(n!SA2-lJME>>
ztwbtjQQj7~$J_N>tTo$MO~so3P98JO8m{?DK0TCU_8L)a0Xy5j*>~r>eHm$WQBx@M
zCXue;R-&+mcy|?(J~$CH$%TclC42^Xfn;0*eIwl<Z+LUjIHe8bLk8&_%o5+sKLRv^
zFA<vjQip5e3GXM=)}pWAQ-);a=MJy0pG07!39$>`*=Ee!<}keJrnVV8cHRpmUCc?(
zUu|=tVRQ;?wF00cE;&dTgz>xR<M7bEZ#2JJA9IqmymsduZVk6o*Pez@3cwF@rp-Tv
ziQj)-O%2D3y01nr9e+908I0}LiqzN!=4{?@Tv~B=KSc=ehMz_8OZll0I>%WGKsD{y
z>X5>cgHScO=60oduF-CiD7Ha|8Rf+VK6U6sV||;re0FLY=04Li$CQv_UAWn$iCF)x
zl(bapMd!;zDh+%V-Cn7sR39zA7LB<_zaTF!=+tn9sozAc$MdA(C3m*WQem@*hSfHF
zM0;x+zJ6L-PwK8y+Hq`nK{x#)SKMvmN{SJP?g+)%cgsyXw2dkB9hF(n?9IIAMS&pj
z^D)8Nn_nlOl^;}*PL4l{0;~v?%z~$;1kS=jMAaIM;M*2Q`M%GLF`o(}#s#leJg|IM
z6jmCkbl(Uxn$sMf_SAF6ZrkK6p@rd-r`*X;(v_wrty#R2^S`)WckgF{WK0tQaTAm@
zh3x-_eCcmhv|xjqAL1xCg%U=hxt=H&grsS<e78{N=8msY!5sl2yGdxA9N|oUvLpa-
z&i9a>og#^wl0Fp23gp;g_5c81?)@(oJ7tTRfiH%Ew+i)8N4>nfvfMyC_4vn;#zy20
z3OF2TNMMLV*9A-pDW}fp5aTITbB*L;)fgBo<Dg9J^Vshn4rbtFlUgv53l~=gjp$#i
z0D$g3PZFblaB7a5e3gUorrN5snMP++Gh{vTScp-VKq%a!9=7hvj-M9+d6+DLjVAq^
zXNPOIEHrN`uY6QRIlo{`m6~}aP*wd@+g4>~m5G}hdiN=QO}@rkojF~WLMF~F93~|`
z6mSbt<BCb2&@{a&P=i=G6}naBkI$$F%8~NMUh+2F^;ewjtZftpEz<A_XjDU?ZpK!n
z`?Bm;H{GS}18!9x67mxJH9*7`kMnpvKW5Mh12!wj%oK0GGILLX2)NeYLvU>h!L&L*
zGp&-zA;RNby(jt>2B#Ucz|iK0A~32=nHytJoXn^`N{(4GRC?D$bfVRIyHdG{lGp5l
z0-+}UBq;`b`E}}cQ$$<-!Gm7xw6Rz_**e$j1>2J%$zIX4;3dl8bMhKenKvKeUW$b4
z34-)rFz(7GRDbei%(?kh(pp+sv}WcE05ESc<Z^QdawlDrRVR6cC~crx)?csq@#J63
zR;9?)p)4J&dWDS$h({V!J7ve7UWL55ud8Pm;4wJteiW<TUpr*#<-NImKxw%1GA7+I
zVKIGfi(E26=K)BFdtlXLaQ1sE?w{d3EghMu(qb{<)++N|1`+`)t&=9@O}ymOV`H2T
zrZwKJHx|pY$w250W|_yW>6hqHG<=$zGXphi>CAi_Cf7BgceD0~$>Qe1(^FAP;gl00
zrZ3%PGhn4!43BM_KWV1R8;z_tvoGhve6!|J(C$wq_IbS_tnGB93B!G>LNd-_^4rj;
z)KKIXS@|B|WwT-b#H|cJjpFzvWj2Vr+b>Y1H#_XlyRrnIih{ClE%7%L)3a}c`g*~Z
z4mDKDxL~B0>2BuNQ*%4te`*F@q8)iN88YsMehsusq!Za!KRDqEq)+%hD06qhy~Zjg
z@-ynGMj+qVkBRcIFU#PZSv_*MbVqtwNRg>7`&hpr*?lj0B)M=4q5WDso1+CMmkVvo
zCMB&432&dvn1Qeup|jO8Pxb;H2sc{iDGD}RO;<L1v;-baa<gZ*vD>a;1Y#XmW5-w%
zRmoniNEL#s;$bOW5&Np<Aj7lEX-=`iF8+7U6UkPu>imrQ`Bfweo1I6%quKMvImR(+
zQ&$#b8kntSL3M*>Za?C?z!Xztha3TL?c&!^C=)DN5nCbamNz}(Jd+zbo^MmJ0;cT9
z91RUBTqQv854l^W<T)*6i}@y@Js(Ac@a=bcAV(Unto^=m3gyPHXI}M$y>7(O@JC(*
zlDc1B1xRRnbO@9#Y+~*2Wy?y}^zVPtI+#@#NLp-ZQ0T^z7HQhYLGdLFh?>~AyI2gy
z07sK9+@FguW-Y`H1iu~3Y4KGceBR>SruflgneWXU0JoIoCVH-71twq*NQz~#p)vwZ
zq)(N#PjJ`)8C;f-s0ue)>abN--MaXX?T_jvF70>e8#pU%xXvKD^B57H0drUS{0f2V
zrZ#GW%V5<vNDs~0jseaxCvh3-jJCk6l<eDcOPL!H$&%G{_YQS|?8CQDh(OUj-Um4Q
zS^#H`{sdxc%(}u*<J``V-vF-xq?F!gF_;gKTRS;%0R3-=K~L?l0sz1X&16Z%9PmB>
zpofnua+1IW^dA<O>t}iO0DxO9{}6+Qkr<yc-7<#gJC-YCcv1$JU4CHw5?{n_<tB}}
zt==@}>fyvdjx@FpWEQ&ffZM<JtuG0MS{%K@rGYGULX75i^m>QT?vbvZi4-W2=gz)6
zY-tHgm21wm<eoaOYLZj(FKN^DHB%DL%X8HufZ-DppvDwOVJ@#2)Pv#6y_b?DAMC{n
zyg&bsalQsK4(Ul8NS3^n;oZD&-1I!x5sQ=9aMrfpVGzP#Qqy5zk$E8O`2VHYT+;SX
zhak4<q2>4NVf$UJPrJzcEbT9@L%hFCt51Aa-gOFhaqXP%2G}aiWPG*-W)J2c<|eMg
zI2dV=$myljKO)gdm(_`W{glAktv@^!ogumr<M|iL?tD;F_0i30ZzU3piaoB2rM|`0
zHxv!^*DUIPyq)2(6|Y-pKv@o_*dNd&*d6Ywhh=rO3`trNLrb14CX@lS>8N?VNR2t%
zT$U43)}%C>otHdx9T2>{;0NQ@nC(0@gT!&EyW28=<G+ml10{5`gGv~5Mc27BK}|8l
zl|`L8>bL_$;a%cg8kKg03*ZMPNRixy$s)cx`C{IrHy1zcvvpT=IO;O6KVsH4XBOw*
z**-5OYeQ|I-HvPz;ope0d!GCqm)Gk@biH?5+$sd~esWxE6Q_X-pyOwWf|@(}fj$)I
z(t9m>Haj1f4V_$We$X3IxY;NXspd1kSrUi7k)@s>h#;UBv_Hl!ZO+Y_aVCR`5Me*I
z0ME^T?PsLPX?p~Y>WZGx?mU^ts3!ha-AB!=c#=V#>H83^Pe9+pBZN5Fk|5t_5(VEc
zM>#MSLbV|*N>jHMENaQt?}oIa@$qf6z}f0n1k{e^&OjfE*>+CG4#30fpKL7gU8?d3
z9z=%KPR?o~%?}JD1YxbSD$<`7WI;!w)i_Pnkba0!N%P4>L6dO~XQi#}Y_X|$r1!tW
z5aDx*07lq|gWB1tI7I^g51FmF%6du~zid)i$CZ19vSvI}4vYwkDnma$xSB!rOI|(8
z_2S6<sVwk5{X}Pyt8Yi?g=oa19bWs+3Q9_$v0-cEn6b!Axvb5_clm*e&#RY<P*0|i
zj`jgA$m<KjmB#++NmUIfnZA#SGb`Kdr?`f*zO9vO9|vNr#*qn^*ei^WL!#3YkEOjZ
z17<5vB|-6XQp~cx;>Q(-N9Y?9=W)s#z*GlOQ`!nfSj0UzQyti&GG(J(FU<owi2<U-
zK}+t-lLn{f?MhNrtP7ewgS=SAwx@Maa8nhkp;)NTg#Lg}yNGJR9QjPk-~+BUxr{MF
zVd13lraT5V|Mp9x%;QC&1}44PC8?C_VcgZD*MpirsZ_TNKYCw2PHC4UTR%VMcEG!}
z>d#iQovgxEhpZ_M3seL8+V+}zPN`4mJNq;V7o*%I22QHT0rPZ3>&#ZlCm5aKL||T5
zcecA$AJvv<A`{wJ{Dp$Zodn|1{>Ygyy7e7deM)lSUs4&he$mDp$RuT;W*n|S_MbvO
z9rDx6cu>3i)Us~|tP1ItVX`eTd)EHO4W?(!Z6lED<Rpsf{%Dr9C!l^^p^pI3MxA0V
z4@WXQcJ>|mb4o)7w6Nj@bn|4@A`RB!%eg={NNm56Dw({370~4)@%$zK6P>biWI-<P
zba4I=Hkd!7xv-W!8~+$g;UmSoIt&76L{jrYH;)*&lIoYQd{ZF>A+P6Y3hBX&Y6n{s
z3E1616Si~y32Po$`#(zK)!y9g71Y^@K7FSES75(gbsV&~u@3y?12^KetMjgpM*iuc
z)V){pmt{2eq#zeGZ-MuLvqKxaxp9^U?zm}K4`%&|3>W1l><U)@fJ{<VDi`Z-3IAHc
z-vDd03Ry2ZA}ov}qm19TtDN`l;~u!#?fJSnh4!u9Im`AHIQQ~Xo?H_9ZWCLF`dYE|
z?gY0A0P^j!26~qV{tN#2AJWV(u}jh*#;XiWHJ6Vb78?=(<M;k1DW2XFf0LB?*+YMm
z)I<J%aoNec{{yk9j&M^Wmws^;)5S9&jJ-!ioOLkXUi@I!^5@EJzY7AtN|+hrd@S`^
z`_lpPl!Yy}3RD;AR~k=E1@|5J+5e=HRNwy84fcUc8bi(3JHXhg&LruS|J1Ep^5&f3
zq~8&4cCW6cg*x?hZ4U-E7__Rw>~C^ktD|9Z>7$x0`n7&=O1V*Vh#5oLh&35$vSf0T
z8!g<rY9#!TDS_Y)1=^1Hn%X~fLD@%rdsq&9GcR1W3L`At5RFeM6ovn|DqGti#Wep}
zZJmcXGQq2|$Z6C}nbT+3(B6?F@Xyl(NRC9UYz~7@PxN8dSld`EN6SL*SH%{EdL^iL
z)HIs^rv0Hmh4hm8Ii&HU!HUbV&eKA_eA@KpQ;L^<nsdMHjW;Jku;uaL{#Eh6hs>B%
z_~M1fuca2AK-vE_)ehSTKL4y8b@=wf<TJm9u1WS<7R*<B((I<P{KZVvpVsYh{k5en
z_L8jk@0Hu&+I{wH-_}{S<0A}gewo_2L@N+91O`u<|I7V~-*&RR#8n9L$kUA-I-dXS
zUiW1uOFpyvZ@d4GKq4lvSZSgED{9kT84x+9{yr2wafcET;j3C7GnhKjil~?*PAh|Y
z=z&J7@Y(9<(D?bK1%LQPBzPvbb#)=J;ql1Ou-}y1eMpwYuN{i(sCw{*I<smY+qEnS
zYRxOv69Xj%^iovyX2Lz0C3UN{$V<N@Jv!`Z)>NNXmt`u=nR~_bM(QS}m+Td<H}Yin
z*xWkWdz@>Mv->@)jsKvrKLHP=dru){hjJ-P=PDFz{;)SIuB=y{@8vr|7Je-q8*c<}
zZM@_<V_q>kuOVcrl8gRG#a>yG0qW!tiJSdhCgi#YKzd*D3u91qJ!J2YOgleNRh~K|
zW=ymDb#>4y1_CW(V7T(PZ{=Uz*Jpcn<urt=5~hLEl<k!Yt$|Q!$Cxk4bKRzi8?~Fd
zd&Z0vGi3`|$EHzKL_R=!{^I-m3sF0?=Y~A%)A$XZQ$K;>kvd@;_mUC1g%CCP(>JOS
z_O|jcL|#e8rfTI9w=!$?l_ojQ&WNo4pn*p}>MPc)(S0mSUa+Ty8WabYC#d?h4OOOh
zTag04V&s$)=8e(0#FnQg-Y9$wi|ERbO(^8on|e)bsB3Y<<c_a=p?A~+cl=Rcz6bOO
zuW(?|s{MtZXYte}%soq+u4kP&Rw=E%7JXSKjV=b@zaTGGMGsIGHv<|?tknnsl17IY
zpk=XFfsK30GiiRUw4<N}dQs1378G0MOC#p@DgQznHPU!n=(t)#M+YH&bq8W`G&0_2
zQ&tIscL7?DD|g%`w^#cQEW==NnEY#J>5%$thytZQSdZM3IHN}(tWcAl{UzgcMn?PZ
zRb9f67BjnkDE@Mp1*T|!MRP<U{N(X}fwb<`8JiD8GlstW|1XmNS9QhbpMQy^;bxq=
bcJ@VGB#)YKVtcrl2e3WwU{!5#?aqGy4XmKA

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/images/intune-primary-domain.png b/windows/keep-secure/images/intune-primary-domain.png
deleted file mode 100644
index 72105fab7c993fe6d2e4342e198c055cac900e3f..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 2718
zcmXw5XH=8f77Y=R8gP(@)X+f`q(j7jKtc^-85|LVLz5CD^b!n3lpcK2>z7ahqLfes
zX@UhEU?8DHx>8gU3@8wa5ah)-@2z|8+57Hw?^)}dAA8-@OBZcK1f>N*AdrZiE#e9Y
z1O~X=p8p6ps}@u?a)H;!!qEZ*YJ4cfaX$(I@mO3!{f^}7AP^FS<OYU&_{ESQE<+#?
zTz2Kk6(m>3U@%<xFUG{g;PLplxHv_}ZX||)!4TZT?|Vfhdq=0-j!yN#aU;z)Ce8P5
zh992bkI%%!W?*6;2E-9C1j3#8M|Tpk0u!>a_i{p$3orx<0fYQif`H+&goK2oq$C1?
zP*_-4Qc^+$hy(&9F~2&c_(=v(`;b(hT|vnsHx*VlQwRhSkyKt@URhCDT~%FH+eWH=
zUeVA|Md_?=>}qXo?e6aG>FFU*=+9pCb@dHW=yVGGkWL}cDHJaB_Vy0E8~D5b@8Q8=
z+7NA&Haa#o_MW>Y=O*cs)6>(lv$GSk3-rUoLppuw;}RF<=jWMUm|vH_?riRCZ*TAJ
z?(XmJb2tawE0ObceB2QV1lhWTf<Ta0zc!DAhJ8F&JQ;?(9(EObJ1o*Y#2Xak?iU!Q
z9q1jVV4$s|4GYkZy$AyFQ|%BIzei28T<0QY5yC*942q;emILBX7oYPh%jckZUQl%7
zw2qkw2{|sX_RTMB*%d**)f-Pa7V~MMRb*zA@mVh(-8S-EMxg>5Yq_cBB-}9rP*byZ
z60fLEO&u9~^M>K)!8Xv<#T9imvRMcI&Yd2s{!{W^;RRadNr5Y6Rnue-7*RG#;qg=3
zrQ4AQYc?w@xAh{gMpRvG6B+knBrmGcLVJ52O`ld=>WR>I&$7%P4Q+E1hJIa3Kb_c-
z$tn<Uh&LiAI}?cU>(UH?>||Q=dh!j~vFro+D$ZIuUFITnu05K`?h0+u!37G$h5D?S
zj6lSnS0{ITIJ-RDT@1F`Npp@~DY5CY91>B++^mK+SD)~Z2K~&5@`ag)A7zbuq%%@S
zN{cLhZ2xY|P%erY0*woz>AGIhxLtW|%S0lds{Izuh_>9mrkgXNqgX^f4+(nB;vEPg
zOR7}f<GIEPdHVKKl9%9~e?DQDG{2s9=&M`BKfF%Lac%<X;5!C%5jQ2bPTi7tO_?Vz
zCMj6;OiFn6t3sr_D?d>hR5s}L3qjH<af0dy!N}=(hfG|Mg*d}S-J5dr`#ZrQH0M&9
zu<0I~7hWc9C5;%+7j^JJwXL`g2x?gKxXNo?DcdM<d-4Y^*T(+R*F61OqYdCC|JVpv
z{;BKx*WnJlA&R$K!pcEP#t%4s%I=hJSGH<j1^9DrY~4I2k+X;!Jd(=sIxM5aqwhs)
z*t2<Gjq%q%5J|cqT9a+>R5w|Pz*4SRvezvIJ2QvN{yiirApA@-^@&L`m8kU_+)g#&
zvTs_dXNr{beOui<qXyj-<r(s&KVCWq+gatc45&z$WbySAd+i=AuAF-D=`oK@ejdW9
zzffb$f~Irgr6`#{-uy#0a9$>S;9mtshzYl<%%FHsjZ@>pJUO-0VdyNcL~z-nj*;`N
zT=ZP9OvC4CotSygP#;LHf0B(g&O<NjtuI-|I5LCPE_=sd=lEk(4Ok(xQ6beq$BC$i
z+i0?SY4J^rDHY|?H~&<(J8N3j{=Tq~>yad-F>CFz53sYtBHGweTkl-bQPc{UHC`v3
zsU;bg2%s-GLS>e1PS>1hGTRauz3dA}s5+ld%2tvnGKIseS1oTTH>moo)VE5NRqq`?
z74m@IpI2(S0AUA+|4CMNnV>JG2%um59lxrn<&B>+gkCla!F4Q&Q4MiMNH@3*`;$&9
zhAoW5%D}}RR~n4!FM&J5(71>jDK>0`2-Ai=KAknDA98G%4ErlG&qh?c!pHc=35Q1L
zn7(cXdcgAivSBoWs@ViDHiW_T$EQNV2mpSCEW_rFJcwm`1r)RZa>zr*yP;Cjo`@Rh
zj{nswGaB=WZy<H0$Giyw3h8x2-3xqOA7-cQp`paFt9gp93>Y8TzMr43d?`FQvX9YJ
znd@4#p8{|$srsw#`lGOKzWmHNW8jI?%&Be9Uij=8T<>S)nb8=QJygo9NfL**mp*;?
z-2ThQTfBQs4laLz;im;q?`L6gV0ENsg->SD1V*&YaOcG1u6BK7-ZwkNGut%)S*Td-
zcA0khx;{;RHGN&{v7SX<uM|AoiDrV%2p$f@sIV(z=H9+fF@`m_MdJZ1!J{oxu8DuB
z6fk+~6%s3*qp5|S)KEC;C$6l`{Fx|!&QYr&&9$Ng2*|+>UCaUeQGxfhhhw^yj>9F=
z0(}i^D;)2CH+~ZW``Bc-_*@en{wGNtjyvOuB;{4jR66o^swfUJ?5N#_-%ebFZu`0u
zi<AsaB=>AH&#`ulTCL?+cBGBE%Qp_gV@5YOuwckOZtGeKs&)w52?=3J#O}o5U9dk6
zU8ahGwsTs^Bca&*#hvTc)Co%`@&EfJ*DingC9bG|Yo#czmmVtPjMly!YOy)RHao*+
zKYl_TlKWNJEbPxi#U3L5$5?Yu9EZa>JDA)L!HqJN%6*zYtGG>}?dCF#h1EU=?60!&
zh4R#QGKgxXj34hj{(@|LZ_hvY3B~sc=}@V$s{S8(oXlg*4kz?H^z59>G-NwXp`(#=
zW-AcV^29APFV5}mUY++FuOh%iZti}Xlv@lbvWgL&;f!a|c9-^jIC^x`si%+j<O_h2
z%Ic@*WGOjqIg2qNKQ^{UvePxp@48Fr7FI1ss+$4-5~YhDt7zP={TvhprOIuJoQr?5
ztopkDK&gxMpslJXO5T-9+dMU00zl6@&^M`}gDL$6aGT$Tb2k+?Aa6Wg4ZF2Os+kHT
zx}QLYEeM_TK?+w0ILQ8Cawf=kvg11sW8Xaf;9aX`g42Lc#qt^dQA!7F!Rh5-9h<u0
zz)<UGLXL<wHK6RD%}na`)5PCTj7jXjV7M@ece;05*OcJt)2nT`j@NU{{so93!)1*~
zUa&J~10HxS2J@RF?iwUgo<MSgJ9s|{fxX)4<?6C)^`g&goy@M^gEHHtnH?YX)*H_U
zps3EVEq4U&)(8}jHbZvv#e69Mh#|lbhzH^UkmKm)syjIC{0mRg1!^ZO)mN`a{YV1P
z##=6w;K1%u6hrghEMGQEU|7!o25;a;NP_bj(RK<QV$Ts&A@In9UR7MCWY<dmd+ec^
zr;->0cEJhFhftt3W3_`*#)Wq$(IYKk>LTed_pO(8v3o=1U9)BchjL1e*>Qe0%RA8b
z?8nWJE&HC+{vY6Tax+Fnd%9+c?Qon3#`~&k?D9~AGwxTl;y&^__gV_k6n-Gr$uV)z
z)X(}{_s+n@r)R%sL=~I>lzzq)seKWHW6G^~!SI=><=5S`vAM#jKDW5%Gv>Lk<>1~e
zsTW8-gEtq&m=Pu2r4kRV*Cu*qD;~|M$xT6b(?aVRr^=Arw@&|S67^4$R{u1)CZ3|r
zt349>@IshkP%6;*&wS341gi%)8N$3cGr84xrE2O)4VpN~4+l2L6FrdZo!ij+WW@dc
Ofb5VL5%rdT-un*{wnCKv


From c3ffd6438eb8868ee3885cb5702fea5ce54fcd8d Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Tue, 7 Jun 2016 13:14:29 -0700
Subject: [PATCH 06/69] Fixed broken image

---
 windows/keep-secure/create-edp-policy-using-intune.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index a2e3cc12d9..cccc07b766 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -242,7 +242,7 @@ This list of managed identity domains, along with the primary domain, make up th
 -   Type the name of your primary domain into the **Primary domain** field. For example, *contoso.com*.<p>
 If you have multiple domains, you must separate them with the "|" character. For example, `contoso.com|fabrikam.com`.
 
-    ![Microsoft Intune: Add the primary internet domain for your enterprise identity](images/intune-primary-domain.png)
+    ![Microsoft Intune: Add the primary internet domain for your enterprise identity](images/intune-corporate-identity.png)
 
 ## Choose where apps can access enterprise data
 After you've added a protection level to your apps, you'll need to decide where those apps can access enterprise data on your network. There are 6 options, including your network domain, cloud domain, proxy server, internal proxy server, IPv4 range, and IPv6 range.

From 7e6603fd988add39edd62d1c0351cf649abfbc8f Mon Sep 17 00:00:00 2001
From: Elizabeth Ross <lizross@microsoft.com>
Date: Tue, 7 Jun 2016 13:19:36 -0700
Subject: [PATCH 07/69] Updated image with new ui

---
 .../images/intune-networklocation.png         | Bin 15879 -> 28128 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/keep-secure/images/intune-networklocation.png b/windows/keep-secure/images/intune-networklocation.png
index 3b1ec39b7c4476b72aca2d1de3b3cc1cf965bec0..058aaec38e5976c29e2c933f2b4342d7689f9365 100644
GIT binary patch
literal 28128
zcmd?RcUV)~w=Rs^y)D~<%2tpn7O>JHgr2P^sEDW_pj3&3PK3}xNmLYM(<~^201=Un
zM5Kn2h?EE<1f_(I5=bDS2qDDu8{GSx^E>C>^W5{t{r>uR9tdl#x#k>mtU1Pf=ljl;
z#H&}VcKojRyNry?j*A!0U6+yhg)JkqVS39Z>6t3?SH9AZ4Y2E0XJsmSl;@-ezj~js
zIU^%enYK-M`#0(F*1H#O!enH2wyytfAVQ1pNKYz+o_7khgF-?hZijfu+`a7^6si^E
z6?)*bmX4ND0041CMkesu#dBxuBi$C77pjyy!!Sn3kBG6f&;y=_)>`9RyU!bXiq3Y9
zB^|J!?>flX(e?!JL8gA=>3c0CkNCKj_Iq#cTz?Hea&3?ArPpmhyElikV5h9pPbKN8
z)H<9<nmS%CW7C};_!fM=`(;2vMxK24xxgG!SLyR2y|OYvIG5ZY5*}22U8cvL?#w9V
zhuLh5dF8O)8yT7B)AyOKOHuMa4=!&ZnXdoy;am%8<N80B|M>s(#LY$&2*!M~G~L#D
z$4D6&G>LaLTW*sZKu@d|GQ+UZuAGHQ@xnlythtjJZ~FPb#Dv@X9qV?HycZydaC$mR
zdZ%4yh~b0_0Wpr^)-}zX8dxkCXSSoY9kfj)XT#>E3Ye>NeFH3a37^@KqSRTte!C7S
zizF;JR=;nXolJ^}v_`J<qt2lhX#JgX10{f}b0`b}0Eiaf%{Hy%XIi*4hLiX6hF{#Q
z;jXwn>$Y_dhq826*Xv2DQU!p}Hvn7)s<-8%23`ce@~RgzSFe5I1SRk{$OKumm9TSb
z+fWhVLir}1Z;Ar1tg7rOT%sl}(p2V;^)=cy0#~t3E0^^4tylNPw`nB{0qM)+$!T8s
z0kRVJcPR0O9(UowvM63Hq#~o}wE#}9v)W&m8=vU0Kh6O$;e<S-<H5ggzL}4LBK-O?
zzkDx@#oy0{-r+b$i+($Us0~@U<G41PpVr{S&lY1he$)JOr`M+=;=~4<PwpZ6*rS7i
zHX%UEJaW5GK5@)xo)R!+9@<!sskH$Q*$xH=-29_#KRUb5e|Kc7(!^ECekIALc_3~7
zEx9D2mm_a0IahbVNXxC>DV7m|@cy@s2*;RY;XG--w_eTgzBohff-oD{HE}Ourso52
zldCxq+S$A{Xh)MlLC348jY}{#1c-^N7)1i0_~Z*96p%YY>ShE5O({IB4EM4LA}gG|
znQrZ=8i$g_G-lG19+8Jh0}5iMyQpkYyK!-UUv4x&GM2&^vkjbh@%ZP!_HD}_D4+8-
z=zgM;r>Og-xsH{x+}|+)P7brtsr;hF_sruDK+L`p&V@p&svvk>yzbnx&&IbY;n{VP
z0C0nziDO998<biuvHkB*D93at?Yl#l+vEZ}EG<5(-t!gBdzjc$`50x}ldxc&nsJ)#
zidzM0Nz_9?Rh=j}0<s=K?+ky-f<s@v-TeaA@{pw$_?3a;6))U7V~gh1Q_4|Lem^|h
zxWMyRH7YFxh)e7o<Ykx8!oXMAhlvR~Yy@JDg!!b?d%N&ACuwE(IEPf<7M=uXM_NpZ
z$`2b<xuVQ50Jd?e!JC#Q<8<{U6i+cxh1o^u$?tAgXk>qL0V78F8V-M=c}E=+-6g{_
zejQH%^CKi`wGog}jiQ3<M5~ttdmy>UtUc2DJw&Gw6{Y}!q8|N^XOCMbvCB@I#J2g;
zD>8%IAgYRk07oj;JtAIw3JSNbiT0(63Wnr!k$DZF%h$vBtG--I)kCt<!ta!cV<d~M
zpKOD2Bd4}<GdyQbHDwAmtHtz+ED=zs_V9YLm7&L>Hm`qX9?gWWf8I-c@ZX+jNAcv{
zV!Xo^P~K(!RH!sVJ*;<|Y;=!dSa(L7$jFo@Op$~GEQ&+K;@Ae6ds`1`gRgVLWn`RW
zrFRZ<lsY&6DkGDgHr8tQ_t_Z~&tKZ=y^@36@BPgx(*9WlL&RM*-p^#W$jBU3!zC0g
zE=W6~`WJwmf%T+skSYA@-*5gci^uw}6-t{a^3LRaHjTg;i@pzs?w9$n`@p}{jffya
z#ACw=WmOC<&2A0iIkFIzL0LZX>(|WxWWvY3s_BiMH$3QRswC47%jXxrmHgem6_RlA
zg?QuH%dEM+Qw%K-qsQGmqSlQ2eHa!P>pesX_i8aTmfPPmKuQ9$+!0zYD6Io98_^%e
zwH488-|kj)(|U3kr3oxrf*Qi`cwgA4@~>ce+{K=Ow2-X}m$&<tF$&PK7-yeJgnAe0
zym^M<6(x{K5enh|1(tc>FEix0mt<D|iJmKWC}#h!P8&mHZO2D9$at9j;Z4UdQE({z
zR+WPiK-X@<C!)}n5S&3Viu0Q!F=#&!HTSu?Q!x*GcPyVas8u+d$RNGe?Hrl4th}+)
zAj13ljmcWP0nNbn7%Qbpw>d9mRX*gY(LBF`;8AbP!#N$!$TJKlF?zyq1&rQ3MAb%Q
z!2H!gii*tXe>Wi=N>91HBNWoFCad^?Z<uN1Z19I>6E863Rd2T@^l;$(y|w{PWA>EO
zprN0|`~?&orp&Z<-k+qA{)qR~n4#rf0sF4Ooo{WKzvPy)9JoI-DbFQf_-gi(h|`N%
zLgjFVa>4`%5_`nWPfO;*ed!n-I+@A4Z@9ttQ2dtxC7s-c6c6y`)Gm^<h4PcAFG!uG
zAbii9(=+PlOy1p|ni9&Rs7&}hz4bH_@KX91kNAITLfu;R-ZN5c1k2K84;zMoMug!I
z!yZk8!bH8j&Yq8trJFYljhyW0&`pgs1T4WmZ~B27c?V>F-R{R-GwB~-AEx6>RCxe&
zo{PQI&_%+|{-cL-Fs-3CA2<IHCxThZF-9^z)2g`*bsJ?qL}lJXVSP!E0}3Z}>%O^o
zPn7Rx6Gupo48FN&r78^FHP^d)&3t5NKg}s0?7y)L9Kiw8d~B9(lbUwT?BTH3mGIe>
zyA@OefIK^7D-BBVnj&=@g_#?$4c1-@HUnheZCMW`vfd7WtZ%Z^J%)ZdQcQ&|Fa#i_
z)1!18%lr}lufbFF{J#WQ7l19VE4{_;--r9=b=Xn9UHbO}WZiKex<35lK2w6Uh0K#e
ze}jLTpy3!fd7y}3DT2{>sKE2a5Kv7&dwsO$Zw&LnaNQi~kKAv7_3R|0bM61<CsK1z
zm>i?Mn{G6J+W{?BH4N6fDeIvcq@6MXs$!mNp6nrA_hQkH3RGL>FUOwBEryi5KSd*z
zJReAWUbIik<Vv<N{Iziy<mE||lbW`s?`nr;4skbBRNc@MiwP>pc&kn`qy<}p8dFKZ
z@34D?;?fT*gb;sG0yjcut%x1a7$u#=Ox_1|{!tPs31tdrUVb0&M}mTF2}E2!1|X);
zj$#Kse1jQY%0EVZVw#Z_zOzr6&aV}CUxy$za)%EA*^kVuFXb<H&!FJ3`A=+4FVe4l
zOo=jSA*l`EN6$?r%;vvS(t+S*A&5R@^Mrgr)-ypO)4thVHcaL1R#MFCfb$;oZpa>p
z+dHLWO)9%S!ee^^HJVGZQtn<Km~*Yq3xu?;YA+g6zZY1%!!hxzHm&0^SHc&r1AiFS
z@kAGeTJ%I_*NYQcw&Q8|Z|9c>eh9Ovr@fw4wFR+i+0zX5Y$z-kHjzUyYnoRcQo6qg
zm{ys&O>H<P3sYXoF{B!3R)OB&U7^&XPBIOgYxsHLZ6&*mg@gN~E{u(u?Z;XGQ)d;g
zGVEx5u)}Ta{@ujOSa?vN1wqpuUrV`bZdUhT=|nTq=BAtlaR>N4_34D#0`F)-Wbzkp
z=;RUR-14xw9s5K*&QVa5!+?nAM_A^kag`U8%#iA7#RwZGVsP*k`!sWYu>cU}zJqF;
z2|$5{t*^oREN9oQBFs;P6A~K2UB1QmX)~B>I@Bi>XvMN@Sz<#FKk6@5xS$batH+2!
z2yb;|m&8tm><DXM8`!ExFK9ejs{kcp*B%{W_K{MI)%bnvSJ)&U1Zl#0Kz0amRuUC!
zw-BImCL|l^m_%1&$h-F`&S{6ejru~3@43bgpkA!`%$``plFTckT|GOMhcknNN&|z&
zm`zWz%4S_`K8>d8X0rwl=c3n|_9yM4lRIouy$_xSADtv6Y_m2eqPw*5?#g`*&{9aB
zB`~x2B>vmXz8g?gR|<4UD<1FBAZ$?hHWWDa#Of~%=y*}J3e$Fq$P>UT<=-XwPO)$t
zV7<`BiW<f{M^kXx7MHWp1jKI{>>=E&DkeZKs{_p>U(9n8G%WipvCmcQ`YRHa8Ush$
z6afU|Le;XIXjctPBS)WI{&?^(0I!vrHA=6~pR@{BJp~a)O^%p>8TqYTHLkp8)_cYA
z1m#g2Yk)kx3kw&Wcc35Fbts{d%clF%(Uq*4x_XWSd{+M@<@3aK&S`eXvr#~>IH|3~
zw?kosh2vsqv3)7+^CiYt9zV^ojmrU;q`veaUnaaP4k`_(tSn?SVdBO!^!7PUtnO!C
z0(~K{v`02a<;Dn)QVJ``Fdy5(-snp5=NIj<mnMQtQNloidW8xVWmhzo86{2j->N!#
z^3|YqxwS4}E~VGyR2E^}@wzr}>6w+|zNHt2RyA}Dy!lRAFZEqo#-!%$@zt16uz`Qz
z(^`!yK|47vIi-XT)jZ%T>^ivobM#g7I{z|OR^@DFa~Ns9?AQTtIqD@UV_VV1rgrVu
zzN4e|kSd_p?JBE>;hUO&@IO9dH=`eSIYMK`gJ$UmFDN$;|6(DU`;jZojyG=p;g>sa
zDL?P>C}f<FkGtnNwN2N9@h2r?+Lu<Z*O*(HGabt$p`u85;dJ6vTe^BsU(bz$ZVG)(
z`o<*TNN@t!gxgTjw#dIU57&2G$U59nG`cpZZHG1KA>|u0W;vtn&veh@28TqD(T6Zs
zq)5*M8x;_Kifyz?oc)wc?AQYHqw1L95vU&cQ6#xHW`y%O`qRr(d%S&O?V^vn<geWH
zyf}Y!;zLY$n5ps0T?`2Ap>m_}Y-5aT>jUrr>}04vm7-31WZB`#z4~er(-si&+%(#2
z&J?!%JagG9x|Uj`Deq4Im`Ww5uq;w(`gh^oymM-b(Xkg&`Sl>EN;p)OJn)6*Z%O~W
zaH!GNtb$aY5~PXCEx{z<3C5PQb#)Lwca5n>oLU~|YA`3e#>>W~^TdAQz%_6`57MEq
zfV@GU8V%PV6sK+Nldb^}5U}>p&OV1zBV)g*G-r|vKUez42Pua4F_Y9m`)rpyeH55j
zWF?1jx__?Sk^P3zbb>WCyE36X!c+awb3Yd=c2eB4d}MQ?9H}wM4%xT3a_j2@Y%sW#
z$U=x;5eLCMUJY$0F?=!1HF2C%AXvk+#+>(mb~A04BL%Kzg1-;9XDBx#8lA$E;Q^8c
z0s@ueXeJwuoq^4!eb&{<Ep|(B733|Cy!Tn~6J~jb_$mAarCKeiJJ(*w&f~oU@47Cy
z+|wCGryc=e_9<C2G%%xKsUh=33RVB4p+jPsU~bLLc(aN2gK-Of%-FyB+wK$oN!VYV
zoVm{SI_hmTOx0>0qZ50dN%f#z>iOH(JL2hnpM?qhnjzDM*#1f2sl?b5;0W!SEQISA
zA3jt;{9xYM{(Sip`|e#zaeXt#F?fN)S~hyf{@ipV<S#~{JAG;>{5WBsqb31cc#lF5
zW9+|u?wx#xkPCYrkmjW>oI=+|eU9H(ee*(dWxN<>J=EWT9}PW@#}DOin_SiB7WVeb
zf}bJYEL=sdK|B~o{QRf7hd#C!flOS+>nT@NT|;+H7O9R7NlqUpMj=97=7=+XA;G7?
zi6MGMpT??*#+C<jRiCT+V{VY3rtaa3GluEs*?Zg5*iQ_GMUzvbZT{YgwBLu})tP!Z
zc1{?r#qx<mHl)Y*c{bDgGKlQGWLIZkj>YK?zOYxy2-IAX6mjy*?odq@8@uf=RV1Y(
zyymCiV(;#KiGYY$GX9y--33;7I5Gh|cgP46AK4=`--4Sn6-BNHj<{3bwK)YM@RNw0
z*B$FJA}hu?!vina&-@9X#QkZyigp^dMm^-b^Yn|1lhrKW(Ls1)b5`dhIVYFV;AV&w
z$od}=g~oCj+6Op%stq;m6m>TCz;^P$YhD7p*9*tUBU?}!W3IR<Y2mwyI?~J#g>6RD
z+>6I^t7T)YRfnUWR;Nsb@>mL5YWjo~0Qx&u5Gu;co*%0=nro=d>4MJVvwqQ|=t~!c
z8oFt>zTZ3fpn@j<;bi=+>b&3fe(aFF11$9b>px67-z%SuoouTRq}#}Ay~;ydALx0@
z0#Y%lOLLTxiFemx^fmb(x6Q)qCVLCqBh0h=XoHL$;X9{?CP)p2<3C1S?0c4nXy_N_
z@>A!d+sl1JVP(rA4mEa|mohp4dqr>QX;zMay&36L>_^6nUz_DglFmXXzlV$MLW3=m
zNv5|*s_%?uV;)7m{l$XK>JE^6Hl2+vTG<*q1A8pk!4L>~ri%uLDy$Y2-x;m43W&a)
zDeV(-(}rzd1b}QMC25{o;2fIuH;HhSB^MPWU8B71vPtW7-FzGYG(ZLw2emx_?_E{k
zGz}{UjJwUZ@vcrT?L`4zM5Ozh+ZrvdWns8Ju^abj>*9->QJ8-57hE;<X$92t;ZSh0
zk>&dmxsE(;h@^qp8+$=((a^*(X+~{?^?pp@jw?s;Q*dT?p8uf;cfU~sTv%lTOuCTk
z4^AQFtEP=26V1MjWWoIfIvkF2{Lts9Iq%Gh$!w)8bmSN$z(!E%ulHM)Zu%X1x0S(Y
z^}cbJewkD6fm7&k_&em=r$^)4EF?qkZNR_XyLcbvo_=wnSJ&c+<wR(@q&;+$3vHnh
zrRxA?qyIa}@NXsbt^u$TqvkR1)&|LuUlP^CX7(buMLkkGtTlG$ZixWf9nvJ;`~1tG
zkE?QBaK#GdQ99D>C~qlJ`<{rKTU8&O+t}iWoWTlT2%Cd1#*2@<xshzAU^b}!u^Bl|
zxn~hlAG>eyg%ynALKdmYy!3hvaf?IAZ`#qn+qCT^4#y?x1Ol{SuXd2%Yfw9ePqX=T
zg+ar?SMKlWFc|z=A;74(TE#R{9U%1atO2fEWBB5Pp%AH2ee4cYrH3Sl7Iw<9@Kjp?
ze*0bJ783UNz^@#}4qYF;L9?}AGkJL3n}b_C>D_q`D^v9ASrfqLy6h0OVE=vM`L4s_
zPP>}KiSHuaNAqu6ll3zrr5wcCwQN)x)MwcyKRWUg?`~^XtikDc2eCE*eTJLj07HEG
zacQTkS(t^A4*Oa_n479gUhHbG9^IL{e|+AxSt}#E^9dp<>~$?~`S)ke#btsBR`B~1
z)+ukHh!ELdkmid-OkeCddP_1vtuLP~-w>wuc(T0ZqCU6Q6`S&Lt%PwFYlW`bZ=K1o
zR~}D0!1^kI&NkLIj1L(l@%;t^+$76kG=|UJYy(I&&@+TOa#aYACB7N_JfCR%vaMgB
z+YiM)B4v-b9L6Ufn?Gby$4A@=uCyPoU6PVG;jbG)W-jG4;%!THyBJ<;7i|2Nwnb%I
zaJQzUoDy~6<ibXSCTP(wCJsei={P7&LekjFLl9HFBei+Pcr|49acj<QO5gY9(bw1{
z-PnSP-DZqDiB4LH!CFlC<c1GlPE+mAK<P?yM}UvN%WRX6iD-R-K3ktSW3H67*}lH=
z$B>QdfcH@)w#QxFk14jE)8=Ie4tdn<kN%<6dJ7d-Q1!B`3KG0s_SI4Or2Ufz16@&m
zWw3By*ua&JU7k#Iqqv+1nPYro2S9&(HjKIXSc%Nrm8cLb)PS&!vhoXaayNeKFIkOT
zjoD&u8Kvzs@4__P*IAS#mv$_-PnbQ7%NRSGtSe&i6cia(K^C*&B|pGjC-o{SmTm^>
z9k!~{^g9gElHg#a-F|l}p27AnblVS4vG-%q(?-=x40lI_scUNZxPDaj%1wr0H6{S%
zOt_4RQayW9D`*eEK;^^$^r&r$rkQMO^u>4nB_K`ez`R^Z5tq8Fndi6YJd9^jEU1qc
z9hr}4#WtSMf^M0wI-dZq3(GOX50&D^PE)eC0>}84y%Tq*3tvHZl~Cd*Qd%dS-l#<Y
z*m9rqf`WEyU3s0GZ5uNPoULf4<ew^|bYi~UJ`C)eJyR?w^Mx{xTSZ%>UX86KUK<b6
zlIEOPuzV=!8Cq)_uiHBoMwQ)dgo*yTM)Y7`XR$i|pjeArzS34%9O5|Ln{j#I#qx!0
zA6L1d%8}(7)}-=i%^(bg2B^Dj256Y2-Z$C?{*rtX(6Shp7rc|x*GeC4n_rOA@5p<<
zmTj?6Fu{woofY;i-$+fptfkLa+!{L^-hh84kYDATMvSjUE-2g>&NlPJM#PqXrd4yM
zj2>4;+ob6$CphgP(zCiX&u2TDYSy|pzYI664NAyie5>jA3YkbHXYevZ%4w-BDQ8Bq
z%#6ky{cP8WM_BYUL12S^%|giX29Il5{&iB07?>fAWm)?8`1a|Dlm(lslfQ;wb~GnM
zMSwp8nYUxm-`^#UTokr>N3&De#k2vAFj7R3dlM7^o(CDeHayN~(H*LkLX>s4b=q*T
zf=XOxaHf)3e7I|rsAE;?Gry@%-X?_`4rdrpid~Uo3vosA1b6C;Gp0MGBxOK(bh$Hl
zNNMqYX;-MT5>fBYrPsmRNvKt|1-o`n5k<|r0;2#*?Zu}0(pbSeUeqv@{j@nfT&mHu
zsX5|xP)f7q7lEE7S9{h-nGh7!6rNlf(4$&OZ8RU84IYVVAbE1LR4_faizU1tMn0<d
zPO0ZEIARMHfP_ub(bgLncGDb^KzcEqjqW}flv424o$*a*7o7*v>TFlzj)waCjm}JM
z{P6lT_uYF^Q)BR;(VSA5as=>HtlXzqgUp2Vr2VSZWU|fVAAO*l$56{=1stU?1s}{;
zdf!7Z-x-MJe{QWw&1lfI#5uX_jB<+^)o~NOdjF$lc7(ZkxYweg5f?2qj8`)inNI2Q
zX^|DL#a6<xBdWH_pyL2oAp^+Y25H7E^oo8Dj|s^}L=stGn$uL64s72{1_l6Hi>$EK
z=j>x4BeN|;ZEdt(Hk4*9xhA}fI^R*iIK`EF;3htfD8}UU6<1I+Ybq*&AZo*AgGx)q
zVb4uzv9CsxaTW8CQ@o_lv~<cf(;JY==u>ztVesRbwTHP?QMn<(r}SP<;Ge*QI=lq~
z;1nW_abg^s!&p^j)@0XJgiQ1ln5&*;cK9#S82o3HWkoFA+aP%7IKMr1!-s>P^j+*;
zqLy4&7vrBaZk?7UGX<64=DQZ#rh|@)H%zhW384x>B<7i2u@#A)W$XvBKA(0_&F@UR
zjN&y&aj8l(&t9eE!2(7gHs>r(L!OuAY8vg7)sKZm)QjT<yWhA{(}p*P$C9%~;M-Q|
zB`M!%EQN4NSg44}+ZD3uEcZn4c;&FXYmae8lx#nH*VKq%UhDyBP<n??Y^I+CR=`E9
z%rB70Y#Kv*B*G8Licv1ay4=J>iegnEV!r_Kvg%uk7rnnH?iF@-j(?N3U<juGz&!H?
z*6CG5PDX(Hz4SLmziCeU#4}DCi@lx(n7{<1&QlVnHNjQjn#!}HUXAn}PrKE}>gKcQ
z^gln5&-iI?y)CJ)UC9U-K%fW}=8$N_T_kZ9w>NYGXLd)hjnT+QOg@xKCY1~tEoky$
zve4z154*@5hb&YAEk1Tj#{Jm(qvc!UJujf9b-iT3PX#Xw1{DP}zsh_qZXvbuhhOR9
zV+Cu!%sXI9xZ>8v#P{O~tZa9?g%S4M>3MS@pLw6!6#h-`UZts!Pj$e;7g*1|u*e1f
zQYv2j?T%E7c>Sh{^xA{|%}HIpW1Du<ItzOBw3L<pwT0x~7``s4zPcbKMfX>u2%&T9
zQqZ5*Jm?!Xy@QDJ)dVNkk9SLt=~C5ki~7S|XRS_2fx(s#h&Telh>%{DN&R&<MAhS0
z3y4@&(uZ7^cZQBSd()vy3pc1irjF!_aT%w~@ovX5wtRRQaZ-GT)7zSMTPmx_e7!Ji
z3_x=DRh?`Z@K^G>{G8r4h=Ri#vy5eRHvN>J*H7?HP;)QlZdTX`QI!f+f*(`@-?mKF
z9q-b-`W=<Rep*(=j6l-5JDYx$n)Zv-SQ(kxG+DPMr&uu^FhGz9i^@PkE5bWn#L`ks
zDStlYCg<t!NmRx?)Mh7{^;SNt1+%^pOC?T9JkXC-t5V7LSggI|HWDg|k&H8C%?02A
ziNH>+Y|)fod&lkL8j4qz33tj3AqgEzlcWN5?Cb#caF?;0s5gh%Vjc0!>z(VoYt*|D
zLGPLO0j9Jy*EDT4duUW2TKUVGMTFL=Cha4VB<UjI<hFW|_-g^PJ5f*OUh4r+1kcv}
zhYLrr6zxq;Qlf#HBo3U-AZ}lU#NO=}sgpMhdeL)mH$Oe}px@R_?ICeTrJeQgGX#jL
zFmDkOGYW*~7)>pW8-Aqf-WW@MA?fB*?0JsvYcob~+(}Kp0Av$xpMr?HH}~9gDJOSD
zK7WY9P@X}bQroU!+n=I%^tZw?_bcftzu=31`JfRD;ltFhVo}bCxR_ZXjw!043KKvg
zBciS7YeK1r%_x&F*1Wh3Z{*j6k@vDL$O?W7e+;-M`1BWTh+FV}X=@%T5Vy;TO~Edt
zY!5mk4n<vmI4_B)If~GUv*g}j_=yTNztJq1Hz`GOD9CQ!#?NU4L1XEXF>Fw@f3=Yy
z!j?8dqoX-BjND5dpDz$H;q6aQNM<LDt7cXfxw0a%Z@v)%4(EwSwcXt7F<zrB-<%Rq
z^3P|;Pl1<?^|5ChL1SY2kYw@40pHTY4#kHoz01FSUWgHDRkZbbtrhLeOS`I_zL{M-
zs)_t14`G{AA-DaFT2=p6*d6vx#zM^2sLLw=Syuy})6M`UdrKg{!%&OL4q~V4b$(7A
zAQu>EN=f3KjjDNWnQ`i1d_UffH|k=6T7ApjiJJ?n6gV(2S++)M9TlU)x<f0=tZg!*
z$$&o0k8eyR3P?8t8N*v<HZ!yxCWTnZ0Q{k3B?0Lq`oPw%B_h`*#m*dY5!Rj%Ik$W#
zI%zct<wydsfo=_>ig$ELX}QgjlAMS}m{q$8ra2X^eeVVu?mt`Jxize5c(&&^K)%h3
z?7l#Y#$0&f_e~wO+k%g%`D+!ZsQ?rV{1InU2mfS7s#}?*?!qczDWB<i?ClFv#`qll
z-0)O8w$kU!X8Q>PtMLq_GE`CIDSjZIrARfJk9r6b;h4{}G7yMhmpplsWynOunV>P_
zp!aH3bqhEh`PwCWMC*DlQ#0p4KPp8`B`PI(3W`BSa}o*5W<7@<<2i4k`j}GYS1Uv{
z|I_oO3$@njB2W6>q)hmk?IOD>hA#W7Qw_>?e|P%Lst!_Clf8+$SLErqnXPg!jh8$R
z^ItY`hD?Je<|>ETvEYn18PGAu;^*D^N`yqE_L9$mcXmdBZOG42{x>DHlNxo+ZAKZ`
zMCvo9w@32z++^?t%0<sf&RQCZdv4+w0Lq~BWRNxWG0V6%eo+sQx8tq0%)QJxEP-Xo
zK~F9dQl=aUH0=h16`0~%2_GX#GLaMz#01UJf+q-F_Fw18!tspUG(=E7@-G-~IAaX%
zSR~yD!qsr!9vO{KRA11h2;sh1!bul=WTiP*D5^snT+3GM{EX=Ah5PnF!7Gox-Yp*_
zMceI0ANT)Ls-$z;+E!CwBj0@v0(>th>8B~Ej7OBZ^=uDgz`#|sO4yg(6R-RlB1PdP
z{QKp>-I+dS<|r#A?Oh`U^oyA1V|PeV6CBfWPcyB-Xa`2Rw-8@N+fmIn|3Vt&)zRLC
zU8g1Y42TNx{ae<o)5*3Mr1Q*ZQs&%beM})g0Vzf*x62}lB~03+$c?eP+?;Cxa*6%A
zihj0m{b%e+bwMpcG`C>nKs0S}M-_1GT4S4S=;3&S{y`GUAVj%q9t|JA;^_y*j?QJ8
zGsFtFP0LQREi8)x$7nVKwJ3O^9I7Vw7^_Z6(eC9_2qJgcy65>{r*vZ~#+zp0ZUv}1
z*sx}u!E$y7D_va|DP5IkD)x{lJr3@|BxH~lh_`@!ix+ejy`KC;;ODD_A^#Gurb+7g
zxk-%!n&J`n%e8es?bMT|olu>R-xeYcG#!z}SeOXtrXGTK5I5wpUiZTxkcpWBargaK
zqr;hN3j4q>Am-lt+N#6oAJIi_%^mm7ZPL2!(pEja{nZn_bEoz{2U8fHhl$=Jbov4F
zN#IQ9SQNvu7Hw6S(i41FRVkj{DQW)_Bx<Tmqj<r948~ilA@|mJ#26mtuA>)^JMxrk
zNs93k*)gojrGpE=c2vV6cwrLu0rwwkl7c8Is%n5BBp~~w$xq&#SLZ6gh-QgdfEygB
zxSd*Rl9uxpu{bJ;(Mz@Dx06ofy7iJ0>c;psO<L3og75oGy`?&GAH+-A2a;m-(_L|%
ztV=k98!fMV;{Leo+%**TX7o}0V)s2=|1WhFpgXEGWs#99(CegYQ!yp|7z?vaGz@<q
zPof`)neEAGQda@5Wf=#%yO*qynhKMlPVOc}Ar%<Lx4}cx8Cen5pKgDSWiSWW!>ZU$
zQW3qc_F_s4IWJdDI*TTMK=D{h#rRMrQe|2s+g#AVu8pu)Lx>-}Y__5}V30KT(#1i#
zD<&gqQqb#MhD?8)|MX`Nk(v}HJ^r$Q>r5CuxVc7v*-A)|PbB|VEn?oh4yZ~>WTf6e
z@pAKY4DDVgU(z{p|2t*2V0%#UAxLKy`gE{~|C7Vis~RML>wS;-2OB~w<v0&2Nz{ue
zHIs`2j)KC=)QkHiA71$?`LAU~W!Wnksijo<%BNtBGP+prSi4hObKhIKRFUv<*TI$X
z{C5!Z?B_#yZhrIO+nbkDUEO7d{IXGm;0iubR$OqBAS@)<$BN0ww?qm-n(KMmrav0)
z@Z{Bm-OWylbMgReB%jHdhM&1yDc+i5KsmcqWWZdAC{0laa*oKAPF<c<OX8PU>*(<w
zx)))W2i=j_H9>-I$W)h+G1M{yNQ8C+Aow&#X$E7?N7@sX$Ka$U`rOS4lA6B4!b%G%
zO{%)f$Pgbn%bGceMgX=Bgm7Nq0Jcelg+7$9RiLGag|1<yBepreLG&HGj)`K<NF~qB
zf2;8_%JLJEAGCoqf~b-yiCR3%dEs1@vRp=SD@IH&Ta~F9BDL0mk@gl+49|m3T;Hd2
zkM_}#@FQtJEGO1}9h4<4g6A(F`L@sCTct4aw{>-1=Ff}LnSGzkPm%qIbf3iExaudI
z<GGSdl^>}8yma@E$F*G~5R$F&;kpZwj#`&e2khjv?7h{HP5S=;%wrRzjmZbN5Y=_K
zIeYXGYO}(IzYmW1MU#YkNv0=d|2h60Agl8W$@HugnO^E2%;Z@+Rve*hOx^%U+jVwJ
z-kyKG^<Rtru?|=>;nM22yg0fJXLWuyef*lVKT@!}TUwv}Ybho^^nr9pTB!J3U<!)x
z7?ogg4`n57>T2Rgsf9BChep=z^ZIY>``M_S0h_yXtt@940kgj$s8T`RUnFG#>;{|t
zid4H>n(23|JL*h^F#5pi96#x9sjTko`E24dd<0W+>e>-TZL-j~n@?Vo&4R%@Z>8Ow
zwDGI$Td)%ul|^q3!fKRV9ImWiY<8%03jvL}3pZUaj32~bP^lA;Kl>(0_ef2{@9CDe
zlNyz<K*jqtAbW$Ds*KGu3UW0~9q1J&@aQQe!gB=y?ar&hH*kn8sS;1Wbeet3PLGWq
z;u1Saqs{f%)kbUFigt`{0zt~WZ<Bie!2p`qwxbHsTS5JCNgl2L@;Q)w;>SuH3S>+k
zMP~9iTLFYjDPK8i<j!v1y|>`4E?ZuQeRqpP5S@{EPV%I5S^he<V(bSx>7?F?#SJ61
z%fLHE47EtHhDz52f3R*XXyhilZ`!1++ag-@HBrF9jkvtQBkp#{3Vv)jNRwSyZ5^3$
zq*xz~<_tJKU$FOky4uvvnZj)~V)CC^0W)014Obph2a;&vjQ*$w+`3|Iu^c#-efvdi
zt&QOzY>ZO|V{<q$R-$uo>UM>?N|rBpwo(?gVjlxUl8y4vo3W8Xyi3mx*NA7(Vk~j@
z2{&~3<wSqC4#rv*%38%4n<oxnL$Sm{jEa85HB=TYGIeUK`i*<@6)E4p%*Ri`t`izH
z&f!hp>>ZDIjhhX5PmSy6vi1^_VXSneGQ4KuSz&L2qg=EmUNYBk{9KcPA0Ece97$R>
zE!J0l8<`5`z3;Di%Z&uu;t_^w3q=iABDFq6##g9EHwy$2E~;HGhl@r}u8(2|3B(*9
zJgihhz!8DCyR-=4Ij?}}4S7)Ucx?D&`+)4{?|*K8hM3yyK(`!j+X=S}&Qgl<DH2rS
z_)4*kgY*-+S&>?``=eK1UE@(}#w{#7>y47SJTH#+)&*%kGnya#lid1YC??l+yIHMU
zvs;gPA?1)h)?#^~X>lnbxZRH%|6CE~>4J9y)zxB(ZOox3K&chjJWfB$gQ$>J(AV_C
zIQ~Y{B3ZSo?F(D`ncld8Cfat?ashrKCqp$NXy@yiU`%7wXW^`QK4+D)`lI^IWX0u$
z{9DV);ew(%O?#wyQ4lnY*0ogDTewi_P^S^xn7gT?lzI;P!beB@MN&`^Y~RJysB9X&
z5`+~T#|Ez~AF)kIo9iB_v}DUMj=aaUafyaY{rYbh#uIGUa&gmuyUa}MFM?3?dZuVG
zCdCvj7Agf*3>wZV<%~I@x0Rm{D#W3)&7sgtPGUnd;o6A#A(T?7Nzhb%rUvFJL@m{|
zF^a^&d^@A5yE+u6lmpXt14MX2@`H~YW)GUdVoZ=@WJ1S_9i|uNT}Ix|XE%zoGW}GW
z8=B&$1e*&DHu<LPhdF9p$DQY#FC|TntAUHo589>1>3&*(m9?)~mk+&J#coh>_8g80
zschvBMTPGOi&k={SX|Jp$#qq#G4P|rM^)t90s?KX39?9vBXH)*JEO=qCu=m%n(Sw_
zocUCcx|@0GuG!;{QNzOW_zvSBN{LbWq31~x!0?4fS6^a?h?_&Q7J>+;;GW6=l(MWV
zcRBJ`$B9w@WtYdRE}fZE%f$%SlZh%srCTQbTh{}glLgm~?Ne${r>nYLx2oIvg%Oth
z>bp*#?91GFo6)QXBytUs{Zcq{W+IcTk&1XFg&;~QAdyb7+DkH0+(UOip^8Cx3@2nf
z+t2NlIz^a`-t2@WG4%cbeHtiX5p|7ch+`L-7q){W$LrigF%u%)@LPAxIOhNO<m6~V
z^J3^cyz+rCD>Paoh)OPTQ<}4)V0x^nRhZHGC`^`FnIP2524vw6DPZpogAbW~Ikwlm
z1LuzZ;V~hVaFZfU7~5QA4+5cKI2Xy<NUx$ItKLjLt*@g`V2P~lqJZ&B;mI3m)+Y!C
zB0VG3hDAVdRP<XA!pu?Re}StsE!f6o=hax`tWOcrwMvFkdb5$N*{*3ztj!}l?&8Ua
z{4n6)V&MtK%(qv9OA`v{a0ASRwZgY*4K~rD1HXd=7xo{>AavPv6oMO-2P#vaA{2_z
zh^3a^V}AbhOCh~9H8v)4;iqp{n=>gOQci`*AMW^FkFuE$=Id+D++FT>nS;;M3o*`_
z`FVQYhOc$QS482`)k~3bLd=YGTFJ03IzQ!nbE6m5#AxTjxB|zN%B~pQgp0AC;E(LZ
znJ4p-1u5Kz)w1J5l;sfv97^<cWhd_fN?gw0y+h<8^(4Fvyi85a+5D7Jg_Z>s8HbyO
zs~p;EOF>URb!FYJOdW+SBkFLorXLj=D;hALNNA#u>SfhDf{)qey$t2<mr@28APUFn
zudz!j5^qImor`kiQ^8bhbrp=3DnC>-TE3vmwguB~!v~ikZb1&@M^lfXFU9H^$K~1s
z8_~XzPiEO6T2Z}+RexPb0cb||y#x#1`3i2x4$v)6KKx;j(BFD7%{|Rbq%*5(s-Cv$
z6yqxINJ{sUe}P-kPy;OH;i|oim)^OFUAQu^>#%<3?#nTapb&qC=jpKUEJ8ZH4AP-A
zLua+Y?yUHaG)nY52e10iNBMz|bV*}xS#ac~YFy}v;LvEJTHYgmp3Nm=C<=Wv0n$v<
z?_*tCvI#T0RDSgaa*>S8#Q1=Ck%6|?A#3RsX!MCWYK3(~=BV|!X(-HZ&Hj1W@8h}b
zOc7))(^Z@54pF18M`1gB)aAOsl3PI41Ev{+j50?3wZb9Em86E#Kg49?dRkCLqmZ^-
z7kpL{^tNAI>P0k<F)Kxo@dFDTi+zEEQm_Nds5mSIJGWIJhzo1q-Z`K)o1RVb%NOib
zw=b`kS5B$zAc5fD=GJF@Wp4m<a-aHX%Vl)yj|JtkJ|>S)AVnz&XZg<eCybF^at6~e
zA4sk0|Au+ium0cg&N`@i5C~w~@#VL!5(Z4+N5tdwfiAJ&%O(G%=z+f^fdT1`l1Z-l
z&RYX~Sr@sQRYI_sS%ytz+AU(h5;EeUgZj^z3rZJlJZxawD*M7gNyjyx+{6R%cNMN4
z`EzA}9lI(!5~kFjXI3cKDF8^fQYVkK791NPl9dmyg$KE;Nxl|UOD5yhVTtkFc|ER_
z1RSZZC6YjoPzf_PGf)`vstxkZ?&CcqA}$hKH6e6RhZlDVS;6~m)2V*HCah&HMo+uV
z`woZy_G!@zHb2>0$gPQGyN;mm;&OGL7?E)rFNY|Z@M_<m{?Y;<@7jvDZ)!0&6b8d|
zYh-2M3J+l`o338A^u9n-cv|v!;`EwLcR9TAXr(7$39Lbm{YXmk1jwbercxyCp9OmR
z^HtrQfn8=j=b2Wtw>zSoBR(i3B$NiJ^(5Ze8HyR-7<s?R|9r5$d9bkhV)9-}eyTon
z%ouovk@0frgexUuPW<tfwW=#<8NZV;3MVZ#X4N8q+TqD-nzGj>{e;Vsy}}Qsqs?QZ
zqdcQv+%fjc2E=vTDMAp+=xxF1VeHNPd2`$Hw4-$xFv{#pe|Mce><!(u158{<n}HQ)
zEJA%2h%Ry>vjRc6*P^w0e6rnA!qF=>nKVN}=*}%EKgnJefX(l~s@aQg_nEyJu(<Of
z^kITU<daa@vuY+$j~^!Zvj6-N|7XaG>{7j}twDyRYc$3};E}}C3@J^sa2!0~JBOR=
z7&1Nm;^Je5j>FOCh_H%IzBOHi40{{?mfUo)`Eu6HIYfNNDX*LoHjc8?O?@8h8*|y+
zpt{f)VOn&3qCae5iuaQDnf)482kx)rvzxH|#|#{L+aWvPfWdLcFaGL^BM}W1Dt$v?
z-Q*Jd;yD4w^yFbPdK>=^7iMej?rPBQ(9t)j&(`vC{XI&xA-ITN6}&nkOAb8gJh)VK
z>bW>;d9D&?mg7Q02*z^H_~h1pA}wjG$6F3$0{L?DLo+JSPP~5?=*_ur_cdip;^Mwv
zEdf7FcpTLmS%TlQ{NUJQ8;i4vwXb_8xP26Tj*hk2{2}nc4lDBcPu8IM0_n`y9jt{k
ztKD@-73&(Ole!FV+zkKYP}8@0Pwy|*T^-xNDvEWvYUpS;3yySVE@EgXv$B74G=I1B
zV0COn*HYBrw8tcsF@na^SbuiX`#QF_Rn{B^x>6T$0~OAQE2GQwj?DCwBF1S|7y{%x
z7t<V%{mo=)eEGZS!zhtBeh?wlzuj$*X%?yf(A!_;25wecHM2CgHfeO<b<2KzB~(r&
zC7>mEW8n9Dou+rV{&H%h#%PZVP2XR=F!;RDtz9kBr`z`87g?62w3|I|iWA)P7jN%N
z3$8fk;I(#N!E-z6&<Pa_{!4ton1RFTp7s^hY{IQCl+4WyK+SO%X64QlXG$8`44W5K
zdpWfa22jwfT3U^n!_|P31v^$moiUd%;engH*q!qW>GQW{%^e9r8)1smAxos0C+`I@
zZT#s0itglKdH!5Pr0Usb1k%DEB+h#0RZ6)pQU?$CmtzCxM%`FJlz!1{^S$1K>#H`8
zafrEcx4v9Yr;R&E7y?q+1#j&&+dh5!AaUHHl_*R692eAMVG=dud}O3y^Yf_3mJ9j(
zW#yp+Y>&FZFUwA=aqv&dH-{5Sm03o8GnMK}m<Xqg3Uo9lqkLn;1Ra$_v#eD!!&=Z%
zyT*j9n2^7S3hQ%WRM5F+jG<U%Ec?4c7~xA#MS)3BM_KoKkXa?~@JjbFeaUB4r{#tj
zy8TF~h03kgD+?|ID}tK+Fi#;)H0DTH%BwZrJPHL7c7Y=&d4_W}YFVRB20;Xhk0|TM
zd$m^Hd~?|%(5>|cqKLcwEc@X)oaK{aU>nnVc*f-RKgP#qZvTM+EMJ!`re|B3y&32I
z$WsB`6K>S!-A(k23N^t-Du>5>8_LS<x9BAnr#y@LU>&4xx%#By2$6rgV(<RPw_1)q
zgne`RjvUqxRE}pa4(flU5n<1=M<0$EpAI}+q%-&}xC}o{sP0FW-u9NxslB)e-Rb&K
z(0C+`=SO>330ZS>##&PHRlxn&;e>`9H!Jnj&qu=orQI*VILDC75#wKA#(w3N!?C&h
zkx?LLo-p8A?c1B6acH_bJ0m|9P$Nc(SJ=9z>uwoTELJ%{COZu|V-c)LLPXd?V|`Gr
z<%Ha>JwKCllyp*izeg@V#n7+%gM3n_Kf2?u-oMtpB4rZtINJb|o%kD92pd50A4!L*
z-~H=S|9?8|{TuD@-*O4k`E>IB|9~_29}yGIcj(&xV`gIp&5IsLZJZ5f+MW@Qor(Bm
zok$^GUJvQZ?Ia4M%C8o=E2s4*w?TCL=d{|`b5QFjZ-}%+3IF(L&c{aF9LJ9=8X5lV
zg?|eggbHYeCRHMOz$y6zZCNP^(yQ@v%@j(CxuG(jP{*!BQ5z!OxtqNMY}@>FYsT8h
z2a4Zw!sH*9PzK*U=PmaCWNb#7q!TlSNNQcV+({BpJUdcQP*S+{9l8lSS8x7Xk;&Qu
zzE@PfdEH?2zIB$SPmld=L5SD=F|M>GM)Q^-s_fKt+UC$YY$$}#TPt1SMo9iugk)62
zg1xJ6Hzi=5`pK93c{70B5~;LtNt@*7?d^RGp#2_H<11+U*>NTL^%67apDa*d{{O2X
zP<%>{E&rUcq2s@UPG{yI;yV1A$$+h@u$3u?5v;$mXy|FqjzE_1<=rLY^kdC#>x1xW
z14{CPAx4Br#3K6N((5s}29i189*{a%Cgo9}Qa`F69VbaXd5hiHTi1Pd#K(>TS@+B(
zAX`nmN-@AlouO|3z<?9bAx(a-LIDyBjIodTdfDP%1DV6pcXkxkEfRplJi6RZ9<8@9
zm%KhE(u3%r?{XOb|GjWDV!jA%Yxkwuk8wYTk4z&hs?0me&Xcn8--o>el|ck@yy3y-
zxK7fEvp$0A5^un|rwh=$CB8Gp*ZjA{YvJ;@+r%x(tdn$~*PEhiX~g1$qYQc~4poL5
z*qOHsF|Q1g(=8KJ<<uazKG9ZOA9p^@BX``l<k3pRRdBQQM84h^p}_o0%<s3pyt*<b
z9oCf_(4{CU?r}+a^qeu<`B7>LDuQ}Xa`2Iqv{SJZd9$O|6To_JQC#6&_A#FiuMFa2
z9ne^hTMwi!!_=v~<t0z<tD_IK?WWPl4mQpNf#+9}o9n)*CO)$)thwGaUAkc<`K}@8
z`}so(5j?;fA99nbyH4&kLRd_vH5UtRgXraER45_wD*h_nS@4Vm<HdA0pucBW&&Z$F
zV>vnXm#GW%gFUW{gRze?Em*!YgFrAH#v3t>xv2s4dOz9_a%Dz!VK1PtlD6eNOghe!
zN+khqY3ni5DvcTG6TuP$30byhI(F$B0;rj<J?0PQ4=aQQhI(3@3`U2@SsmVVp-x^-
ze*05EXqU&F)8M@7{8E{DL*#XB?{{Z&8&Z45vuuvB&m$@tZWq%a$x++YbE~1W^KkxJ
zgSHvISPItUwZ|vOm02guIuKV}ho2Y?zz%U%y&H3JV=%9L_S<OGk(DakdGHh6_#tv+
z>)2dFQu3i<s{Gk4r;7jO(I6MbK|?XWUqYWP`V=|H+<)-KV4JVj>^}KA$2#b}>a7b(
zM-#`Zp~;yk>j0)kxBtC{^gT3~!Aorx<;C=IFTGq*T$}-A_{t~SnTcXnnVL4KHAZe2
zdg47>q2uruSOt;AsP4W-+y##tB|kDC8L`W|%R|83j8RPMtGuy;ac|culCh41ZSHrJ
z&otwAo%K1x!H`)$!D~C37ZLl8_eZ+Hqbq|CPgwMya6WwHl>fc*ttmU~yGT6o^n`ls
zt&PTq1MkFDRzcj*T~|c9m!doMGb6k&aKp4jV~i{wKU=Vs^fi(ncs|O_@isly+!f`f
z6d1Y?#ndYk^P^_i3zR$`w;*FRprwAH+f6y|r@_B+_|nYu+W^u4YxPfnd1GUc>|;j*
zf6po3>KI?_=wQ9wGvMJD(EZ&vHy#d*^JSu&dq@{e0)O1HWAY!{)Mql&4<2&1P7QOO
zb64`!MdFX@I@%C!pPcYuVji}ElNhhnC^b<2OVbsN%1J59N2xM#p!L#H=^x6|dd?vC
z%~f8A5gEA&+R4JEm_`G!w*fmOiGHO+fob5sFCNR%(o22i=DtO}`W2r-=WJPD-F+bo
zUzki%V}4&Le23fRoSmqrp{;kWCVTD$f5AxZgr4p3E2nh-3~W{mjE^V9=y;Zdw_Mm9
zqH$91ea%^u*elG?%H%T!jHyV(&d~C^T5YVqgmBjZMSBoYs%)Te`|KNEg{Szf#+)-k
zb1tH$cUg#&?i-N!Y$v&L*zXS;a4`#!7K^yC(AbEc`Eeg?F*_-_mEue#>^fy~c1w!A
zWVlK7pJYjhDM|)D9z4CC+eS-m%+S);3J*!sBdD2spWgTR_n+%r_<!U)1b2oD{NM5;
za&D0Ozh_P4@*wy0f0Ug#2tcaCRXw&#liD`zW-L$Iq*QMBmsB^NL8z0m*Neb)y<nH|
zrA`2k=_=MozgRJZsP0_PK@23%v9t(EAQ*E$Mo1Nu54!=;GaCoAMO|2+?HuRl%K8iW
zr?gRPw?16{PrAhaGqCdCH6Rr}kVLzTXa6#xjVJ;nJ<fHdn%eUYX(0FpkK3x!eaFl^
zsm2FIbhi#DN%&INuXp?SSt$nEuyZ4nE?X2Qx>*Alg{Hpj69*KHfa<Br>(A-J&y382
zh}~*vS`9gTyC)zZRWf0sv*3WG-JyG%$bK)7qL-_>KcV|^2*Ln;qe>Jvs|-QZNRgYg
ziHqx&OHs`_e2LSogG{Ia<-Pqcv}eb|q%)Eqlz>f+P`20}Ch%&B-MS@kAmcv0yQRG1
zgx8)E25fUk&zQBOq+TjsH!a9#=BP~89S96{-TQH7Z%_A7+#7t1?(bge)M7+RZpK*T
z`ZEsu`CR5Q;ZVb7TuMr$(DG)NVt&9Rsf^}P9(VJlg89QVl_^|Q%XXlKyV8=Bb6AMd
z!_8{%8zEV_ANSiqzoC|}7}|K0acjJZ7nx(EmSv^Au3zQl?^&NDrCN))O2IR_B069B
zuGb)m`a9j}GPC83>*8goiiJ|R*Fy`TOOprP&eG{b=F;OrwLtoj)VGZ8)l76`$Ggpa
zr!axZS0U`}?A_+FDI2679(l8_w~2qy?ry*MHtfI+<bKuY`ATM9f@<l6kPei-ZADYs
z24sIb#YRv_nr1#7F-uepb7`XUIN}y5XnKf>fWW<f?5NeByfsKF+QIRJm}f}84nPY3
z>>r{MI-lQS{aGs3yG$k}fN`5@whquauM8L!M{na>l~%r2J@@D^k(0i5PWyCPwh1MF
zQI)T$_ta%{=wx@s7H*Lqd*voNbZ$~U1<1ag?CQv6;u|o-v&wW7yi=3gE+aMnR*?={
z2Y%gO<-&k_{2YqcbI-p@aXa1u<>H;157Tf1zds~9n$14SHYbvj+IF$TH4i#>{z}7=
zn?AMAazGQLq>swKofWDBu<UJ&pCVuCrA&CHX-Un_H%x5{-rq9fs8j>IoZEkE^L0+f
ze@KV_-n;(@yni!Ax;5=5RQdxVR)G001%<KsL9YYqMjE5*8u0!U+voqaF3iD3>UiW@
z(D>yHpa=c$=rEr6NV0vx0zz-p1x=Li;JMYHkIMe1i@S8^JlmiXBP>*yQ4z7cyC6ra
zbzT4cH*piA*hnptwmHTaX94puBcGH6S2bpVY|oX(h9;D|^!r=>u@WJDt(*|Xj)Ezp
zLj;9xXx?`N&_EFL&7kp<Qo?!?lSO=wlfuxe3g}%B#PvwIAmUz<8AQ4_UixfXe!}Hq
zWhq<sXV)8>t%54W1paV}kklbgx0H|yWAi74{)U;n<-h$@{aA<Xf57WY;lo(AYA<wr
zrYf1UINt1M+l-<@IZKNJUQ*Mx{B7F4-4Mi%H<uMJWB!xF&Ob!CZ#?#VQ=ewd;C*|M
z*WZk!&+fl1Xj%PdB>yei-a41blYTjYuTJdW!{nc5^FORQvjRnMT=<bxdArCQ@TNiB
zQ_gFOB8RIMugS&(GPMDP8k55TVQ}f1s1%Vkhmb16dFg-m&x8Mu`<@%Hx1oACSv(8Y
z#QjFx8@y~l8>tNU)L5FR)^U4paDViqV1ikLjs0J}eS16;>L0&zDxFTcoYN_yNEa$)
zF@_YCQYul2Bv$0s(qf^_&_x^xA(t7J<d%?on5~OT*pPe1RxVr2C5D;Ze$S@9b<X#9
zdHr6m-|P3^UfXlOd_K?fdB30cJR%|3&&$ojiQu-eL{&cc;wG=u_e-GOP>AWxz(C`R
zSybB892K>vXbRRxSdN_WKN+gZG7|HeZ6rrv{p&gWD5F`#yN&z2jPvr5PHyG5vhQB#
zp{R^D_vp{Bz+9PQLu8|UA2qpJbK54=QX2i1@=x=v#`i`(Dl1;j>M!s`rSYTZi!dvl
zJq`s{<gfO<CI$_xWs}8Rv4cGcYoI-)BKjJFZ@mm0%kPe@K<oq+QM>8EBqBVEICkCq
z>b3Lf4(wm-IBcg<=1a7lGOokQxa98TwK49DtBvJNH)_$h%*Z^#vL$JGe0j5#srgB`
zcv9s);oLmE%vevAab^4i5$1*J2tUX*yuw6z+%@Hb#q4%j_(4T@dglF>Nc}D1{xAs4
zl?AY6%hh$0R3a=VxxQnD-7GpZe#2QUL%YVIwF#hx7Kro7+2M?JzR21|ov(a7&;IVz
zqDC_tiidJqeUn_7RAK}2<hYkZb9ln|+=-KV@$Zn#N*K)ML$?S_;_gfazlxEQf(8@>
z3-PoC9?Ai?+3kOi>2h{(t~qKtF_p~9VJZHLHX^c`OesX|?)hA<rGtoCp(keRaGd6W
zTQ4?{4w502s25tm`wN#)vZF~TcO?ZUe}C^3i&*xao{&Mhbkpgjsa=1tmRnm6zs<XM
zZp6=q!LJ?Yti?Kv=c*E*Hg9e;^7hCgnBMp&AB4c8^(06Zhn72Z0#X}yDXGM^1NkC-
zS9{S|mFg&-mt5g**R0^)XR(LV^a3_hvTSWp^4|QR75+Am>3GF^;c2u6IAyG1TE9-X
z<b2eilH4tbuWN5*f@+d-Wr~J9LwLU{W0!NaH#}@sGVoB~SO2QMNfpQrQm{R@BxDEL
zPKrSBmWUbFF*+YU0%TE4Jpn_vg99NZJX}Is;u3H`N}R}22gzPtRGO~zolt8$bF5FJ
zgl7@^#^;WdAt8yi<=^T1=*?x(lMT6WKw%b*RaNaYvsd%Ji63aBjzqO(=6s|c{z$b2
z>M>h7sLZ+1EjWyB5yutCq`1}>zVkx)kT8Rzyel8o9(hjCzu5q=a}b|eV-e%c@yLlj
zKt&th<T&e%H=-{lbnf$lorcuhzM~wf&^swyp+%=4sz0R=`bLxCOOJXmm(Zn#Oln46
z*EHth;t4HV&9MhYzQFwF)y~sTg=G_vty-M0+c<*MC#zb;Nown@X#};g50cI(&8j|&
zxZbAjakr)gF@P40ZW+V#Z#WQ&jGdOTW-P3eJdtcdUW)&$ZI>_5P_ZY#X-x`&eeo^f
z?}|?dC~8>u4<2L9*T6G7bg1X-wJsw)n?vv2-%~;$x|n^b$?&j5CQ&@~M<k>@cD7=b
z|1Lr$;bT(1gV=*%{S5GMWNsIB2T9zy=jARTnmyD*A)mqfyxVxc{e#E+Gb%B_DMfp>
z$8x0fjEi}`hA*<Nvf@v;<ClQiCj*Tv&3t|N;WDbzCq3YG$+#{TI?g{9pQk}U`6H(1
z28&XThUa8Dej)X_a^UNj;TBWHY&AgG4g4Bz2sF5i9g-I2)#qv@MQ}D5$Ef5q2vsjY
z8O6g;28E_ay{i{3EOk`y=)2T&*3_CC^A7(}(*dY0*>sgP9Wm12R6fH^kcw|QUzRJi
ze|&;dlkWTi*Ts3_RhmK6BPHsq7|Z)Oq(|s+iblc>4LjHl+`S7f;z3JXA}>CN=9k~A
za!5K=!53R(TS*=hU&>0<^j^Ne`3^O_8o9W6(Z(T1%D5?&*u3TO@Z=D4)8pJ;iu#Bf
zRQz>dNchdsXXk2jCT@*H^EsWl@j3C_@!qoD)^@NYjd~XQRqwmH#VxYN4KvV<WYhaK
z&hAv}h}A>pnAjUYv@mL&ml|sxT`lShsNXYLQtqu~B}$$wRnv!YuJ>k4Say}N9cxif
zosKCxQHc+Cx5p}!CQr*p?pG!Zy3p#;LMXnA{Q2PbKKbBy9C`xzCVPlqcD*au|91TK
zJ}<G3vs;@wvF6-XN(prM`Kc?`edXOJeY`6<bSrLi$h<*X&cObuzeV|rcXH>k(=|`E
zxT)q%6n4^J(!<O!l}I~6yn;J4pY?3m52#D^=(j6AqY&-OTFM45ufXcZHK&W0oR?fw
zJTk!|A`1maxU5D$zor*m84eHq@7i&Z6FhNSR*P&yH3<io_qu!w3TGOdhf0pUW9@NO
zIP!Ke30t_UMkAl7{S}Yi{>wsdN^R|&nfVv}YS+)#HQOuHtg*0v?&6KN+SRT3omK@B
z{1Uh1Kj)Soe6Igl?9=j8;PlZzEC0zb_=|w)qXF%G5ISd^Yo#Lmax@3xKYXHtAgCwk
zlmPQ34FpMeSjUHf$Qx#6+?QNAKb>i0??2Q<J|nC{3hG9<ffL*uh`1*{Co*t!phN14
z86sLBt=;su)D8)S=~s$i=gs^c^rcJ@W5pNx!I{@hFAUCyyBMyr;xARI4>$wjn#Pzs
z=aoa{FQK&jSy#g}CMqjsdUrv@ak7v`9;3evoGBw+5KfA@b!H+SQiSqd^`>P@Q0F#D
zD6Rn<$R1anZl&m+aKz|2zwFxNx;0Hp&*|e!+$uHQ8;@mCZHfq{yq3@)w16<CqI2}9
z2G5=9N9UxBAh@J;IIb}_1G0CzoFNEj+(dp6k2Z^5xQDMkl+$L7<FSyW^VB@X4KZDy
zkmnFsiV@wHk14oRneYGypR1V+qGI<<VJKcrxT-CCI2G5j#y#84#{|4IHk^)6ilzwU
zNnh`eK#h60_r=RWcvMgwDGuVV*njA^+zVjNAYHQlQR1cNv;ERx;%x11O*Idu(mSJ^
za7)zXQd1}<tyi&dZg(K!xcLSx7y6Tq;+aZ_Y}2g{XVs>heA0!kutpOc?B1Jaep7HA
z*%d`voYN=09j3aNEr~VT>k=;p!sL~X&ezW{Y9?wE8*Q2pCNEYL+Ak+q5aT>fUEf{F
z@fcwWJ_(*<_SRh)J$w<DwwghW@6p)nkR?B{TxE-{O6o;|$^%IBjNSB!yHY*6aNRKj
z(Z_sI(MSwIaHUOAHOM*>?D)ze_IPuZq3<{u%byj}{QS;ESDXa4q%I!cu_e>OrU)Ne
zh%W+Kfk&U?sgoa%YR_DCVKrO3HaAB*hYT@Cu`};Ka_S4swbnuziLtV-af(~kK8%4L
zc|&<s*uAH&)~X*iq!#fWpV|Fn>6&c>r?&Q*2VPm;FUbItG|z=OCkt+!+gY&nlum74
zp6+V{=tOOX*M|A27D7=TS#%z6w8qKXLw2f!bGa`1LgRHT_o|78H?=pryl|k~Lh&NQ
zs6DJMJ~9`zc1et~5sTT=*~U(1y&Jkb>zD;tA%8Wu=~qoPXaF(13sNn-2@#c?L+6sX
zy19QGa`W!l2@M=>&;@(Fj62S#^7CD-#jh||LEg1MC>!9j;vHWfh&(JeJ|_xRKr(e5
zN1L0k&o<@XQ-uaf{F@*IvL+hu5PuF^ufGz>q-}P7iE%bhV*YyF)6>tJFKe!3h#+D|
zGpfS26%5>>Kf;M(m$7yBI7BI?!LX;UZipr~eNa4rn42z$dpw-vt&1!i@FG~~bybKg
zNu?*7$@a@tj8ov5KI6Ki6lm4V<dcGPD2-Nx(O)!XCaY_FtzBGBChJ{ZdJ|&1sPF<X
zTk>GHU#J2G3{LD#MDv!Jw^lEeIOR;_-J!AKggTzuMkx6=4!HTHb_MTmqDD@<EWeJ&
zsjSV6({(eEZK#W&g@^_nRQ*kBZ$t!BN|YDc*(o!Ul=~U)$~3`YJB2gmKJd?tx2qKz
zy5ferg#jS2)lZDBj>bl#bIR8qLBLl3+&q(hT4Aq4yH@<UaaWiD6k=S&YtJ<5D3;h4
z_Z*6#JS@JC0O`7iO^1z|9NXBJVbQY~w669n*<dAW#()ovyWxO8>)K13&&+Wp_;=21
zjA%3MVs({5YZ;`f@!HEh+X7tHkcz*Q&bq>~^_Z%)AB*hyy%(3MX1>Gm0?;Qo&O_JQ
z@~5L3KhK8ujf5kyFEL-==vn9c^|2!ga2B`^(-xNwcRn$*^9U}vGi5M8+j<J0-6>aT
z<k&`pa|zK<gbOecGar?lY%EwCSQD&0gGoCZ*T05|O)<*z=y^hZaXIWN3$Y3AVR;0T
z+mEffsoa_`!kM?1;Roi44?OrIgEY3F0#n{C6cnc_Ytu|-w$`~_Zx^+DhxCW_qZQRf
zzwSDe^_NF1F0lV?9`L@6CAh$J*jTXP@7ZazX)`=pSi8@8w5ooz%zXVBn{heUYuB~~
zkGsn4C1J;>9-us33<tG<&p{-VfQSTqD1+U=y2w!6PkM(#GeVk5(s8saw&6{0@H{<h
zq(6=KltIyxcL;;->I_1p*`0V8o`aOLRZ>qX^So-XC3ECL(K@BAp|oP89O8Mho-+t@
z*B5%HUF=Xu!;E0<pVnSrA-vYb$T#?mH226{HLH3>sar8n$Qfk2Fw3ot;K^tA>rKf!
zoKwLlSM?k9Y=CkY<M)FpH_`+?KK+a|mSg@~3cK6u)KrVs%sv{)Yw}2A0$SvLJjilK
zk0w-X<;vua6TJfe?xg5>%u|4S(4Mh#c!O^Wu+w@{nwLOHis}#!zC^a%`y5NEAbD#}
z*$Q8{m_Z=}rQeQEPI-1KFEhQ9l5EQc*iG59QMkaDd*ML6Gs4t;QD}?L-{Q9IL6*yU
z&OpUp-hLCY{BO&Sf*81J?sBw;l6jI<=t7UxNPCV7mAeUyH|vjv>A5&9PImd|2PlWP
zVGjqeT|Shu|J$whi_VNri0KnHa8U`wMn&9R*QbPjxbKi#GO#q_h)m6LV`Lwu9D|-{
z@^9R2Zhy3FxJ_@+@j{6~ah;=b)#=f)wI<K0<qBptbmESc-b2Ld7E|c`-SYQxs6L1Q
zbF4>@{lje(qEgwgVSC9~MZ#p#7lr6LH7a%|5QaOnU7c4?l_$>~ktj<Bs3O_M^B*EB
z81KdP1cBMv<*GrQX=B<PR+Scr<2G`UeR(VRGLXKCA(4ASOGcz#KsMouTauZL_vW-O
zO*Jm%IkaSMMn#}ed-HnxjT2Evi$9+$?_#Av)`gd^^6+wTU~L6bnex-GLLQbze59JS
zaespnM(Spx(p{MxgYR*n|NUvIRH=N=;IC23za4+h6gwlCkOne@u<L}XICB$^L3syT
zxHMUYN^JE|545SpIAHwk_LN&AXLNID&m6zss-y{4z1;P`Vy**xD3A>ou}9R!<B)R%
zfnlHu2<k*6G>b;%bMpO#zWB^(j0Cln#GlXRi|&nxgnX)m?H&|yX6j^I{525%S%B&y
z#T3X-0q^hN;TmJk{r`pu0|l9Zr2meAM~VP8E(rsh;W01}2$mw61<j(1|BY1|?_~vh
zPFx~mF1dDY$hGCJgmuX)wqIl2xhnqTfGTzvYxaS40*uN0ASZ>IBMp^;sFezj!ax|M
zmz;)@Uyh$MoT+k*F}e|>#@&9dU%$^`dev`r*TheD*ycBoWC8wt`sb{XC)+8FwBAc2
zdpJ2Zp#zU~k!PdD4~kMt>cAxtmWys?o|BSY0s6t1uP1mI?a(#NKC&M7Wh`rNAiy|%
zeD>bk?OZY5bd8+7UddBc+f6m2@p5Kjc7;F6V4RA5T=YDj(}G0Tyl-+TD%~}x=_JPr
zLVNbl8+w;IlpCDfk(g7Or{b%xLWTD=pGpq2$zb~!JiF3$q`8b@CMHJacG)-F?9)7)
zRHR%st>oC?x}R&p*&@vP%dZt(%!l;Qt{N5ccQ^T6-*6T_5z=ckyyHP1mAf-<e^86g
zV=OHH;5UHDSm5sW?yJjI?bUDeb=0;fY<JyU{NbFe$wRAa*jCd*dB$`sB`vmDcQEF0
zy>0(7iWMm}f4gs6NS=B_t(H?<fIT!OGQ~tg$&U;xZ#_BhMtw4_{)Zjw5~@ovag|o;
zFz?vt+72?5xxVdr<6zOaMtlh1s8wYi_H6P_!i-1rf=P+xCt{DxBu#maCUCj_D@`~`
z8WFqE<+m2`)z(&StfZ^_mRg@BK{+J|Jb-HgzaRkyes&9bPQ&Svx%riSv8P*@hyKE^
z^^h5AQHqIcA&k=!SI5N1hvF?EEYqF?4{nM&-ReE{i=BD;MtbWBJI7g0b=g;({LFe^
z1>j>sox7?P&3Dt{l{1yeSz&9M$#jj)H1Y<vcQcOnUJg%8>eUbF>SK<!(@b^-R<3*w
z6wxe`_SCwCBR+a|m%Dd_jg=H4R;lVNn@OP}{<HK%?HN>}ctgYHv}b(lg5;A94xI4g
zpgktcolW~;!KK$8n#I7pEMhPwD7RRh!s`@IAxwQuBXjd4Pz$Zpj>R_};d-Eo(LAk{
z`Q`8bQTwGN(*WX3h2G4l{uzFCwmc2t#^^qe89P(18q{Dj@sX(Z4e=7ETG*oGjRiH^
zi<xiN|NUxL!rzm@j;91!z+aC%hV5+iMf_&o<oIA~eiq}xUWUGJ;D(hRwwe*sPUhK$
z$_ekRa1r~#k)<!`NCCn&?ZrT~w~!d@dEC&B8P?A$%dn{{cCJ8r-1La3pio2TYmRG@
zc7~zy_)0TS{B%H3IndV~OHeRBSs8~>NoVRkHj~p+(X_@esuA*aD<^wQf?Bq=|Aci0
zevJ_-1?!oLJPP??-VH%twEYAAF!^k5yP2eINhdy|#vYTi#D`RC`6EmehOWuM_4C<v
z<@|vgSx)y+!}<Y~&w>PlX{U(r_y~^`aD7In9?GTbuwx1DBQJN`z_b<ug-f{C0>5tG
z_p1HY8NbcdkGxlvA9GN3dF-^?K7&@~nK&143N>(=-AXB_8-@72sQuHiWT3wKgP&as
zDyyqC;&k)b4Te=*CKYuZT(8<JM?MmPmt8PhpVZ+VMyVdr3h&+@*bGdX=}#u@j>RQr
z+36{m4O!O|kS!v9B3lSm#Mu9~b_}kT^y+LC{Ua$^TtIHaN=z~E+wDc*@w60rT^jJK
z^x7Qz><6GJrmBelCpMJ9{{Yw(5>)L!%#Lr*rosS_Yq=U2Os=ro;$M*Gw^vLc<PO50
z5^Fd2fpGPor5v1e5gnCY<t@#AYMQVAvlm!NaKNJrFh*i@Ij*OYr<0TPal4kD-v%mU
zG5AqG`3jJr2%33OUHw$b@wi1VqCs6n3}Na|Db_$i^e1Ssk*7A`{OlIipLPAy!}>J<
z@x;q-SNnZBta~E%U=;9iNGzc4eD^CBjez+<mobEn?!EC4IyrUZwW6DN=o956;e=%t
z&e(hEu+FNty#+e&<)1i<b873?coOQy$Pq#44piuWLY1q4T<;on;;^EtT4W|JlJs7O
zqs?rjUZx6wBK+uN@g#rHYQHf?xlxZ}-1}pa(05(vN;g7xtL+n1yO3}o>MUf%sN>1!
zH3;``P!}UXbzQ1?fK$ez0^9Ma*+B|1Tkq?(r>@NVU&0Ql#nrdfDKPSNCt#7Y5Or>U
zwSN$7m^bY`Bfq=PqTQ65E{;Ca_P88^4c*`c|FkvFPOpgBL?IaV&Dtj70-5_4qOe;5
zp1sciYHWzgfc2_xPTR%w64|+Ed2Rtve0un2Z|9!wVb08Ci_&!u%n)jWp)1oVI@tf^
zE~K@$5RGJp%!gBfJRbC8!{QUhs;6|8dRNB0(Q##-Et?VQpj?>wx}U%eudFq{2}yr7
zlX%~!3^@UWC^&*f#$@Sc2E|G8RxY&=;57yfa;B`im)ZDFoy9w$4CuYu^AFZvlb!fl
z+cLesj^bz1Q}Z4-qUB;Fe*({Z-5ucUaC85DS6J{Tz8O`V#G_Cuv8Db&m~zkisIkQ7
zQ|pQ}EBeOzLUNWmaO58daa8C8@8`8*=fZRvSg%A0;5~JrueY7Cu7F0=zE^C^nlvrZ
zP{Np`>^fTz;%M7ed5qk%y3uu`x^u?<6A8S;miWOn^Eb<%qdTARk@ME<gtxf_#;e~6
zC%}nlzETRzNf$XfjDlr6sbw0%I8o&tYArbG9MyMEWI@#QWbtq~#qDi(sWWr=8#gFp
zFb-O^H%_-IY&xgz&j=HHW0){K3)XLLy8$I?zP32Di{DqdKJ&(i)zuYy2Z<g|QG)4s
z166G3Z{V63Q5JiZ8Tj(Y(TQV?1FzuiVlIZm+UZzd=Z0=~D141vjtQQ!y*9KbXeXyz
z!San*W1l+|@?}H%^(L#Z4{|fVc0Ob}d6x&HocOVrf*rF3)A5O`kA4}cMQvzev5F8*
zsL-CQsU#eiLm;3kYk%Q7KaEhAuPtw5bk2q>Y=TF7I7)SRQ$+CRTbtC3xkFdvye_|A
za%QCYTHa;p96yzk8%Rr_f!A<c>wv{xm$5YXE%WYfpqwXR(?|k~KNt`-WSrz6wffKz
zaEg+eo}7vKJ3sAp$?@bbBy+-1T6pw#=ETCucK2q=z5@rrPIvVslmA^Zo@evJ7NHRo
z!Ey+xsA85<)KS9LlUc`{ip}Y`51xb57?W3KzHR|ZBa#EI&UT96K{-bFail5PQ0ByB
z>j}uY=Kb7@-ZLW|BiWfL;B^2TJ;YD600wyV&V#_ZBg1h7dvcVHyNuIzI)$--f^Ks^
z+sp*-R=W0ZUhW&h^MpTj32+@i6jaT<Ri+kD_W&PJLj8Eq3Tz|z1p==D1g;+lsRnbZ
zgKZWgyC=AxDxfd@XT5=#VDNNdp+*T@VMEdUMjCNn@EebT-=Hf(13wSjwm$piVd^bt
zARqY?YlW^1CHrlYv}A#WD1~DZ0G573LJX`dV=#UgF^Q-7#$}aYrZqq*W)GMdc&&8)
zzIQlYQ{7zgwF1Z;?;xW8)axI_5ee|CAqzx5B+X&_{j*EPk$?#+8J53)8kQ?e!l^`^
z+gd*li{J=&K5GFOA^uc#$(o9N^271LZ!P<mGh|T6Wj_`OXEp&H02=Var@^)KQvB%a
z=TY*$zpP`9u~MD`uFA#^I~DW`Oxy6pt|p4{%&8x~7>wzv8w!JOA1yzu`B(X+h48f^
zIP*Q(1fsZsX+NrxQW|UUJfK}JaoIonMV>sl@?Q!6wXA)S{uV$5qYo)zvZ~&E9PK*Q
zVPn*?A=d^3T~z`Fp8CPhIx!uR>zpV)FdZ{L%e7`X%xOxAqAvLY>PURRP}jm`PRdd^
zceY|-8~cEOdJI6#b7Z9hC3yk8kl>#5cge%$cY|iRGta+)`iCzwFHcG8`hJ&Ppj%V{
z6?f@IIGw-?=UmaP#B`Y7`ZO}?^;G%cwttk)(5F-2w+an?(LN;=M8AU_ca9tb#e@IA
z;H?48{j~izhs99x=~h6xhj&+9q-u8QASZkw`#zRNIUVfsATQpBPOZRrTkp?yoG%rj
z+zcy;Y&Os}xDn7G_TB`lQgdaBzZwf&L1DMI91OxS^g{_Bx3AHZwNqLC0q^JBLm<AS
zC4Rj`G2~3J=O9ay?=bpi2;Q`ofaePZfE5YyrmMcCAd^IRwCf8f(@u$VBhQabkF`&s
zK40#=p{o=oPz|p3fh$n(+)E-|PjZ{8w3k0}l5kzDbx=;EO=Wyd^-|6_dpv_)*d+^J
zXCO|$T(K~MKz8Vf4qzjMx9M?aS=yafSRiaS(%A2gg4C&!pnMOwJ>zqDl_t$&{!zlL
zy1q%>QS+<0HY+5mMl#1uBz>b>HU=$yVK70~illvk{My;eCX5C-^~DD`sgQnK{8s)~
z3RWVu0CbXq!I|#cOn-0X_nDPE$9D&tQNmV{%p^!|sR&G}gyNE~_<zoRU|H`g&qWcc
z*(J)G*DlJixSGoXqxYZE4=j5oCnI5OtcrT@i-e-VSq<WPOV6(ZB|kpUAoCjVGiFw2
zD@X_#`&UUBmq5p3`<=(X+#UveA=NWl66yp-8MH|9@LtC9*By&wB;}YqbCl-YcX+|5
z{PJY+8Ce-g{UOI{q<PVxSCU8hi~i9DchYnR(uy%R5+CiH9(95Jk5sSQ|0qhI>45k@
z-OaC#Ctc_hGxeU%!-chaeyogB(xSJott8<c3@HL&pFf`m;sv+=JhuM!jxDAdFkeCz
z2`vslkY3>Aw}`1oY{`BjP0;witsegA$@UZDJJcx#!utUAWX1zshPvOsjloHIWG{I-
zbdCu7I$xAfIN&yTUpii=m4|0Mc-8T}D4k>ZV|papz*O)C(A3z$S4A&NcSOzMi#(LP
zF9EG@4dfIg-M>`W&TJ%=lmIB!xXIK3>@6^|HBoj9Imb`$l>B(TxxRw**XxCyNr6vc
z!ZXcS&qt(=_yZJy*Ux>a*KVbRk$6;Og>exQt^Tds5r4Qi1i;eMsYKC^hz<M_`L+}~
z)H)UUuYnkj7Ogi0*F-1EXRC#o9g1>b+)fzv@jw7Z!VxO=I`ZG$Uyt~5_ZK;)hBha3
zVBpZgDF0DLs=d-^pfxg;DcnKDLMM#D{zx<D+mJ_`oc=X@8@22%^i-!){2Df$N?sVb
zoj(4#cjW6a0cY3G0X`Qkv<Jh?gr%zdv$Zk_M*m#45}k%sGTR<$%ShMb;hnOQrP~a4
zn-qnVIljqRM!FvVwvv<NO$m{(UV%gW|F)LD?N;f!mVPeAS)db~f%sbi5bXM9yB0lM
zEd9I<?8N_fpSL<o4@V&S2X<Ukk^w3M^CdOpx#Zt^?Dav-GTS!M5AQqPK;8v7e-Rt!
zr4nri%)Wvk;mU=-MtXeg`;U@8$^m9<+YlTey{iDsQicSENan8-3kf8pT>>(6l0-6U
pze{c2|J4`A5es=QUEOCX6qB?<A-y=`m6FoTj+{E2cj(gH{{b7uYkL3y

literal 15879
zcma)j1z1#F*XRI>A|MJ15{im~ARu~RkhVaPL8QCkP(vu)h$0e-(lbK{!jRJ4O2Ztw
zQ(9WO;hw?wyZ`t7|Gm$>JP-TKUT4SJtJmK9_`Q7bl==+Q83Y1BE&c3?0s=w0j6jg|
zpC*MN#axeW!w(W$g{O}Y87(ZcaOH%_L)nK2M0OD6zWzzLPGR#*-4=m3TTT2Yskcrx
zLLkJVq@O%gavE5O9<~~iqLtb>y+?ILk3^zMi~Y@cFUL);{@;%-UD`w&G_z^=i<Z8k
zx2XT~&3Y}fv?Q&hvHj(@FZO5ct_3xMM;Fq>RW?3waKQ5*XreQZA9P(*@bfE3th@w>
zWilgNJb;Kl|3AP_Gr+ku^X&AJ(X^@f**1e>Mardwxiaz1#*EhCs=4u7AWMyNzLv_2
zBR_57Gr(a(pL>+#l|}DJM8I;zUdt$x<D1gqCBm}`<H$loo5(%x(WtZa8@BacC+ibH
zCJ{;k$k+)9im&okkGXx>Tk0lUZh73blVUq=m+BtNYPEAEfgx6vTYMmS$nTLv)tW<I
zF83Mp>2u`HHRhm%rZ<}ckX`t_b*3ac_Xmx@TkP1E3j(&d&l7=Zv8XO8b8;AjnY27L
z+J3$^^{h2s_A|4Mlz<X;ZmcRKNiH_r-PbyoGJGkvdFu7{*Wk0aBE*_D3Yf&_2U2Rn
zc<<aPH(A#XCK+TE(aM;8FnZT9FtV_q-|nmrmO^anvK+fCzP=>m?3CXjLfvfj+n?A-
zfL()cmz`ZJ@U|5oUanIk7WHap{SUAhXs29!L&Vglk+nx7{Hbk*thOYNg$3;hRjGbc
zZgAT6HOKPj;eDRJHPOucczMCZ;c}MDBFg7ttlC%mF^47NSs7p23iVU-)!Bz{`?5&L
zyvD41PxoZZhpm&@3l26Xnm?4yk4&t2G)a4D={lBGtks+;;C+%6VZ>sm^?P?36{UPY
znDEUh38=Pd*gYpdm6{6wQ8xQrzp|Kc3YcfDRGnVC&l5t1&3%$6Js5V`v<vmqeG2qG
z*$`$b%T>gjNp5s{Mc=8Y|8}ppW4{99X*umXc}@y6Tle(rJ_c}jeDg^t92ljhXZ0zJ
zgIw<Rr7b71=G;%Tmz$G+%wm>?VdtXMRq+&Hhfs|TH+=2JJA$^^I!F9D?IWI9-wne_
zyPAp>p<1DZ61U>9W{3UfjaB`#Wm!$iiI4TnoeWl|+M3LzGIA*8eT=E!T-$ESI;YRh
zV=K^&Vqfm2sYi2_3%pmhRZWJBaQ$l(l#??KLZVgMRm+FXe-KUF6NafS`y?f-PHOBH
z4*?5?;bw(t?3R*wwm~?%C<{{owk5Y$!DBe>Rdud4VVp{BS6rKWF*NU}D?qtoPsxfs
zKbw=DmM1(vr8bSRSuj;!V>o~v(*2op8)$o`nDT6OI1?)!Bf0Q2b}U<@U!SeIN_8=(
ze2N-rK8oH^sQpSYx80QTC<1yed0oy-BCt%&(a5$}WoFoCh*Nww)nqsC#>}qPl)LY5
zXJLLZGihr|b1Cr;+wu$`VY9sdx#I8dZg~UBM9O@t7L2Hp181{!7<Kq}s*gUUGAax5
zhYMhR8#wUh>>OJ6iW%7$f@KEG1Pmv~ro@H18;5wG<v(~HmP%(_XOMN>INaT&&f?s?
z_#*vq2L3_^{546JN1~ev^qQ$*4HIv%(yUSGdl|UIyMhKYqU#^ccEfAzw+#IlWMWOX
z<?_|0O7CczF=bQ)_(V<KgGPQ*kD4;(V(7cg>+;ebeT`FdRx)R&<rNYLajHu(2l)hC
z1sn5h)SPZLF=BGEl)e<P37_nYQFcBhCJRMz(+5Po9h8P9@A0}OV;Ta~SJIQgdlZ50
zT`1?Brs_M%nD(!cmqs3|0vh$p$>7h<RLp}Wa>PW6qZV|*+YTKrxe{H_qg7JkDxgR(
z#YepChf>V(+>{E{%%yj2<(^9|Ie23mpZrb<w)4j_7JkmA78FUrXldB73b0Ai?pZG>
zLN}ziS-s*fQ|Y|(9|T<zIp2BOX4hB8rHfo*H0x}L=RRl~?vwUmQtT*iU&za|2I`iT
z%>2bREV*PG1MMl2(p9kuV2AL;6?1TRRlS;~^I{1X-NtKA1*zMyHJ?&0&={#YX7bA_
z0F6_jGSrg(HN*2}{5UQp?7*Ud{&r_~VDW>AFm`>7?$4*fz<!UHCTV0luA=F)EMe@4
zAa?*yDkj0hXdo5+L#|?8J6csHW$fc{Buw0%GQ2XD_9%rR&28&rDu$CjICL9w=~;i?
z+4o&g$4uc3UZ=qwDLzxvTef^tkd4lNnzyzlmdUlPhC^LIalas7znLF{dOJ`qfCnoy
zn6DhL9<^yw2kYrAk@lF^6=DL>tGvIAf-FOpq>)py{U^1!mM)w*Rn4oXZFYtk!9bZ}
zAuC-nvx=#X08_SPVxGjs=lLlx#}u3Kqpfv6Es)YPzX~kRQ|v<BD^LAV+tC8`b(#to
zGx!BlPeWRA-}xCSL;E=_Myx_M^~`^SwyyKn54kYdjGsaYgv`#xw<P8rEF^2MW&0!?
zb`Ct$x+m&x_(>JJZ$EfA+mfs)ZQ0i1rmjD^#Qdoh<V{j*=pACWW7|_3Ik^y<{<?4^
zPrE9ShkDkQbjUE#?0NWhk0dw!B?sDmm#tOH3O&!E_w@_|mGTa0$|O~9<pC$lA_f85
z(DxAsB_gmN^xEPlfjy!*Ingf)kimr)mIyd@pZ^Ci;nsm}<aF!C2uZBCyUWI0_u5RW
z=k}PdNo!2G)5`e9d~d9TCrEU=(@Maw2<LWlLawd5`{D&ctHhDp%I5flr}*K@vcyP*
zv#X2C?nIEp$j}g<1l)cv4Ra{gp##}TV}~gBn-Z2YB~I@M_KpTmDlhNZ*xOGfpxo6x
z4@YMvP1dX?6a-E)!MK)pqqJ!<Q(2wQzgku4n{eKO7R*6jtv8L*n5_-hOufU+E!Cy^
zqqX5$k%+jR)hWsXN(3Uy7dz|IwDYHA`%!kvixGCu8!pqP-30Ue-Kp5h1~*hZIMg~T
z@nZN26Pf{m(32DB<j{^1o^3*5%4F76`j)zDWZliPwRm?EK4tO?`Lvs{sh0=)#TqxP
zag)EffOT1&^mFS^-(fNu#iI+D2ErIt#mq!<KG@1!ALC!}+6=>QN{&|~#YsTF+0lHj
z2R*cfq<bSLTXCZ!`|F)@eY^-nm5w=HTte6X&(J$h5hdngj8);s(EAUe^^g1}_TyhW
zZ)=3wJ!O|I4s!i5mXX+EPO~)S(+ctLg7-TpuWrd?q6fqsS$6}lLRV72b!B`SX1Vfc
z#Bz^k1}qTNR7L-EfLXjrfEL1k3Ng|OX?%Sq0Mr~lA@f6_8vK+>IFICVKi?3X+a>cx
z(7N25v=2@TK%s&s{A_`+it#7M;Z%Jx80_83(;e97KsN=Bv!DjCBJOeXI<~OE`D8*b
z@a?v&2K3Sljt`xR%-KypL}6!F1@Z4cpW4$<$mrmY2h$yz%t3=hKkX`*_oEru^Mm%d
z;h&5GhC1zRnzxooc~!ALc}HsvbOfpe^I&v8$wDklNkUh4N7<({XJCLRD4_V9AbQm)
z7p_!&QwB!Qmf6$7gB?rpakTe8r8t?fm6i3VZ1<qLdxKhH|4(&mj6`px=l1rD=SnTY
z##CVKaJO0)fdIy0KK(fcDC&;>@+8sYjgtAnKvwmmn{W}<m1#vl6`tXK5w^H&_wo@X
z!gfsSOvNR{+3z57Ssp;}F}EcC3LyFQ$9$Rze!G@}v2eSKV9|ie(&PchMh9D$0xs4Z
zVO#4iho|3%+ZQvF(l+Yci~2{b>w7ID5DwMF7yh=_V$p(%?w7}iytM8~W1}uNG_Ug`
z_pFltIR4oj-)YNZGWbmpdCT?<mc*+%4Kq5@?JM&zQ&qd+5fmwA?KvzeERZ|gz!<p|
zpNy%V_={o&$jfW2_ll-5O*vC&w_$EPo3deX!j{3Tr}~?n<AXH$-KXY9rGeM|x^A6}
zoYqKESm93zIE>R~=i9H|??;NK%?FFi6fQIipUoAC`!eQb^lMnHrRAsZp%-738kBIE
zuH0p3HL)xzncv65|03tcP?}UFuSdmXpL^@D?;)an<ttcnLg96w)(1GI6vy>nsv9{P
z8R$S-QwUKAyy7XFb@=$fxgjQTrim{m(mtyq%<|bHU+Ygh%ho0KHM<1!>2X?JDuk~J
zP-!l}_6TH7K;9D-9P#|KD$cawB3Z-57#_@X)mflZtNbW)5kLEW`R(T?3ZgqkQa2*g
zb893E=Ql&yw<(GX^6k3Y7#!<*Se%BQi85<IM(+)$!Tkgunf-iiYFCR#T}tN*sp}qU
zm9R<vtd3>Imr#y~_wAicFqc{{D^1q=Fy!Vy-DHm4tGScCRCZ~>vgZ*spxiyHo?Yu=
zA=h(D*<YVK?Yq#QqVp-7tdHY=tHKtQ<t=vQP{nos7E{VImZUSgc%vK4@&H$vq}<$N
z!AZ&CWeq6O#D19WONYI6;f*&!e{2j`7}!n%`{KeZGSHI)6fH14Q4vcgH0EJbee>s|
z8RXLMAynLq&(1=yi)Oyuvxx53#`x&o>pk9wkLT0HEeyZ}6y`Q_<5{gJr@XKyFbZG6
z9CIn*UEXxAWlsrnsql;M`8I93Q7L+_Le1G_Tk>loOfUFc1{_nsc*}+*Pk8_qbEio2
z>BTxFAWkpt<d1jH75n7$l<AB_pUquW<dQWOFpSO@qYI9o4_0TC=6b4_%G}va2n=KQ
z>~o2JF$}xt#jZeWSxRrtFm~NS|1~42H?x}-U*v(^bo@1mkl{&O7(U@Oe@e&thi<|k
zHLOHSx=@scCR1S#Z^KVsy-xRLZH%xmc25&1_3GuKIe(}S;M}9(MxnNx5jK0P_|=V+
z=|~Yd$CrR%_1*5kg`}dMl%XXiiibk2*PZ6It4dQC^KHyE8{cVHshr_6*NXDk%RiSp
zBS(O}Hu;^6jC>!h>B9BN87oGZI#uq|Ah<KP*gvsNTQ5G^CO-bjgiDs@cj+kX6}_Iu
zgNODe=F?w9{o+A~-lC*^ib(6oqg=<$N=t2fmP5hqFxDLsS<-~(7tHLwN+-+I$&@D8
z2eZFeta~*w{GB3Oy1ovXda<cTX?P&zc6ys^q94B9?}cmUnM4H*_Rms<XWKr1y^}Yr
zbWN5@d8)5oT>Q>f%>9-P&3(~b)8|pHnag7J6{GbtERL_x<On8x;PH?r$yH$-<G2nL
z!oCo50!fBw??;j1ND%P*EJj2Xcw8X9Mx)=`1Bi2%-I6E}OnLyFBI7lFGQZ33&gC?n
z4#N-@CgA}#3Wy0Zu_yco4*?t1<Lvq0e!`>u3wr$XZ{x28NB{?YdVxxO%5nPIyK@}{
zjF)4ZK-=%;0GnZmsh$h~0FT+)-XaibCPrnPp<kJB=Y^$?<SE}=If1yuXmRFdavk{o
zY5lB(`88rI+4vKERQczAKO`cP?DK$z6oKqCKmy*-%i}Jl^f#-(zi>U^0nZ7SbBHWV
zPY&h+^6_!yt6AvPdpO1g*5CeN9kKp%`|KSlBQ<Jyn%<g}AD3<$8Mu6UZ_a}|AAQL=
zGm+NshuwSfQ(nj%MthEn2JIJR7O-i~LPG*V?|(emZj9Ni0Vnqu-og~cdk8*By@PyA
zV*nt$psprx8V{IPNJ9n*>`4KhTrW&6)LTC}-<_0Pvzf9UIixeJR{O!x{9b38rOHSe
zA5Z+KcQ=qakiPulM@9{}&iUR=aVu$h8t-c8=ckaHR#|fSjI06RBd<_u(e*YbQ}XHj
zvbaUWPv)dQ1<=-^SNFz_NfbeiNQ+!@ODQp4i#QL@F7r6~leN65_&MY^q@s^XW`(&-
zc4<j=Do^*)Dt>4>;1O3g<M31Ch(>$}b28W^XlR<0f@WX7snHuMLH3T@LeUy^@b=Bf
z#+)VYs7!ua=qNkRhJQ<&3eiVk%4U@BTW_`9z3N}l&~>?|ApDo9A<(H3XK%@V6gU8B
zSf(sn&0fgoYXg;@-lA5P_)VP=^jWeL!J=XYjN4}%aUIQ7Z0E=2kJo!4aGYh)!@Yio
zf%$50;lWYVmS8d|?#tWjDhIg*%V(HUe}LF}uqLxZ)rjF;Kh?xt9wUInFga0Nd07A!
zNR^Zm7B%2%r|>{LCX2$}`5U)eQK1Qz)Ur;yBRd|$js_EvY~3#}O1hW)h%_6YACff#
z-T<<@Z%ZLRj*U9?b`%|w%nQoPfC7C2^ZP8U9dQAty7~O_)t$%Uio5D^Fh8C&4ai^C
z(mk0j@vZpGC7e12QlsUp2gzlIlLlVKq767r4K3^DKCGV6T_k(EL9XQLx23vrSt-i(
zo+^n5okAZK;vMJ1fId_SNzy0pt{>n&w1g3ShhKb%@ERCEG2!3^meOnJD*Yg;BrMlB
zvqX(sGi-quzx7eUYU>3djwPO`v0v#)#ZDt&@ME3?`VLqjEUf^MEXIG7<J$@40Tej%
zqGOtonUw?9wrR$pyP|{lFX7&FU)Pa>1>}KiCxaaSTuL_M2LdQXg82Gzc4^k4VNFUO
zsP3Z*wPdG2AQqb(kzy~8IBLPK>`2?~hF6bHUrRXaM*xGXzjeLNLQkKC_sTy00KZNn
z*Hno)!5ip7G<v!Y3Zl67?sLOi2!VWj`q~M2SqL1g^4@>z@ALpK=-i{zW;TZon}jz?
z<}PdD8k4`C?S5O6*~lW=r#`A{@A51>!k<MA33*ISW;0t?Fj*dM%<HnmK4V2CWiwWR
zunFnn18}8B?yG$phNm(QCQtQlf^5xlGa0NB>#YnylO+WPKvo@k`cZtYt;g7-U%Cv_
zw$Y7Rk4FeHl&6G6LSzzSMTCXv!!>p`^YU)-UQ3Vem15d9U#a}8aaj9!;EsX#@97je
zRn}4ajTPT`C|?Zd)peF;spLh5`~<I(;xMf@!_M&sK_7DG+D?m9&!MHFY<#72L$g1i
zr3zwfS#&v&7^rJcDVwn)9%(x<HKFQxe|B2I!R~Ikc57|F{L1!T?&id@yC?sj)8h?&
zRC%8uZk{vD&u&C~XQ9r*JXxypuLHGsPTzjf9hJ4^1<{)UFPfF`rv)lH*t0Qhs%Ni#
zHwHLjDubEN65QPMS{t@4?nIw+UP;+0U)h!b6~`;<x5Ri@-Cm>TQk?c*H!K}b5(s_h
zxSkN_P5Ktfi-bP(G_#99$QoFla;DMKs=gU04$`%;mLI-`?h%LUCOe)gE=yxiuk_Q>
z9fehTtp7+X{$9?IL|*N{@H7Jl1-@+74?~9Vd}^8u@Kvsw>?<|$&~H!WHK-qFd3kRp
zQ_ft*V(GDHOtfyOr~Q0*J=k?4G+Byr8WpnNkA3!<(zcJHxqgE(V(<OstfA8y+My=A
zatc~sgURx<J+$?iOJ$R;bjjVR45&Z3=zLrA{Q7KJ)$N1D+0HuNX_7VS3~ctFq_1WV
zcM^7bgWTxLSElk$*xMyTzay6I#!v2WO9jkws0`>-+Bg>!3~}2EF_5|{T9;>KT)Sa_
z6Dm1+4Qi^5yx0(>m)oD|;gM$&FMegHJAG|u?MQqN-P-nN)+oqC_mvTvT%#IX7b!BP
z>A6SREVNE@@VfaNu5om?*_TJ@w0%TGJry(A>0Hb{7i+F}2~u&RFECwd&UtvIgXWfH
zy4!>AH>rJZb=P)ONa0RcaTj)JK48%mH>Drmk0VXP52#Aql{vpY!8~lKlVZ=Lveyth
zwKUi88aQyVzjjNo!ure0EGY6RGQtg$$=hwPRy-8kW4wEF-eiimYE|n~x5{go`6*xM
z^KKtu<FV_VAj_3WAE)JZR<UdKhE}5$Jf3Q9)BSG`+z&6;ewjA{2D2H}q9L^nRAupe
z;y^0z(z$ZaWVVI#CRb_-&lD9Ue!C#^&=3gg3(T%5vU?6L3ep%{X}c88H&}1;^()p=
zI-xY%jXsHTJv+}>LuXn2d$fS$t@H?u62==QW2)Fuc9Zq5qFC3|0k(qI7hC&7gPPEF
z?ro-<#!2ko_2c+(>g`jP#{1kxyRTb}fZ{`9D@%2mPOlv%gtIY`swIl!J@v64o{p3(
zrxDT3W;CV1WrGpx3S%!s!;ZKj29)k~U9(zuDDLn#)yv-ug6^M{FNc&8bjOer9=D%!
z2DnczVct<ysd;jpbrI@h=?USr0I)9@pU=g3euYdc{fBECLv@&^GN>Z)T{<@kye}{b
zF(OkZa~bQa)_c{EZZ}KsX6BVa=?ky(@VuKX1Bc#XW=Nb+?7-@PcI=wbQJrh7=X$mX
zJ4ejO(PW{>zKB1YA<#yOq*Du$*>XXH&bSrsc|X`|TdiIgc-|7nKW%h2%ZK{LJ3@+|
z_T*jTLXDFi#z@6&rfA1oH?QM3wF1NyRb+5?+38;~DRAJV>veRucCz+gS4XfevMN~^
z)5nN$AKvyjTuzD=|I+trJ;px9{g^H!xL3xHG)2d_8`|(P3$vFTOA^L0crJ7u&n9&?
zW2>M6*ZB+XLUZ@#3{_rwesk84YY_~SsYr77exb&ztiqmfq|w-gYFmgb#-}0ySruO?
zfzHWXOqd&6(C5==Fk$9nY2~>{MdpekSDA$aiHh6xhA$5GPi7x9`vx`W9vwym6fgDN
zW?niosLjHNdxI~;d^W%@4fMR0vAvij@2gUBrcaUdcFL*#{gT!*DkQ2KVXtGMzEgPt
z*=jGx&xdB!re49xpUNYz<4!qKR_E1YTSpZb&acueEX!a=vDBNsZk!wQsg0?hjsIdM
zDN>iJhf7b@raIhyPnE=#_o=QRU6CF3^S}T>ZB%p1gOkq{=`L89zx-hOAqK6wFj?5s
zYG2>QHl8UlvR*Fum}saXAS!*}Wg@gKrTARX%ALzxpYv;Y+D7rnM$kiD>~{i4s+y>#
zdzL2JtfNKZ5A(nq8L2Yl#Fe(9ysG6hVKg~em$rwsW1)9$x!MvtSs)E_vQ6a;Rwos!
zPIZ|A9=cVJR|AH?Ck~&?a~-PYgBI0fl`4yFjDrVBC)Pa;+b*Z3{CRDMqY%6M$lL^=
zBeQnQa9oqB-woLs{Wc@G<*6-tXg)LCGm+`&!9(-}_Boh0lYIFs+m$bnt{QW(!))(h
zOKn6x>imoO%M7YluvM-W*5!ji-{dJTNDp}Td6PiEFWF8U%qVDj_PXl6+i};eFCOdb
zZ?EWwhWn`WfD^Fy?c#%X(qiTp539R2DS=s2TZh+sfSC5)I2r77Es3pQubZH~HZq^I
zW!0S7{atdic7ip^`4o->{r=pe1`W!;e)$|6l^jD(Bgq!^h-YR3q_{UOaA<>gAnVr!
zk`ul2ac*#&BfxFpR3Qs9hXzmOvk;>i_$}@YoDK<!1v48X>SvmF&T$&t%)3p$NPE*L
zg!)oA*;~DzHy$H6@A&&&{lIW7?(6C6aUTS(p78#l`GV!k$y4|LJj{t3u!?B5Dorx!
z0S<C1E7KE_1~Oa*$~8A)XE@;#J|r0&E$IPha(MD8unL5+^Mc^$>9_(1R_~81eN;rO
zj~o4u9tcFA5YG8Mq&JUL41-vQ<I`6clG7bFGj+l)8?Q+*h+AK64yZ46y)Exk$1Snd
zk<+jiAGPK>r1uh@w@)5NF+VOp=`Ex2#l$uvB}kS@PMKb{@R4rG+KA6LWbR7gW~5_9
zx^=iTBLeqhWDxcJ-mo{52RCo99>tEIK?Lo+UJ!^-AtA=2S&Re=Anx#<&J}+OT+uI{
zo(fSp#rx6<CfPSQ!th)&Ibz*8iP{CFH{D(h<g`BYHKbRV?Ef|F!+7J{4T&p0gTeMY
z`0Er`8TrdTJZcLkbR33|1iT5Zv1P^tm=stE?wih1FYl&XOOEK2l_5EIQRHof7$+0j
z%31PM<`C<IS<#)-0d&C+O9%T3x<)!{6)+7X$Z9a_F%tN~oZOph>`HLp4ks9eeN1yA
zKu>TKcfy;^<+R{vn>#EA>-4))Q|aJWbt&W`5sjN2Bs_C!rlHMzuE-!MpDvAl7qK{R
z>RTREfD{B+1pRA^N%#-$T(DViHG7)5T0v2(+0_gWney1YqTcBdwrVhc;5w00fEAE}
zs!>L2*ZrI~!(nJ6Ug7*OaU+}2jdsr%EU|ume($I)*&DAJD@$Ca&D7YGkWYKAe0BJ6
zh@20zj!oxJ6wg*iwBMUhZIcqnnGz~5w?MPI=rifKOcP3jNU|^{F`n%jpVE@~Et^4P
zUtM;3<hwMf!dikUph$0TiL|vs;06h%IUgaI*Y_v2s}#fV5E^fR+MQL|GO8H~9!<C&
zZ*t+_CNLaRwjjaTS))O?X$hXwv9O*+etm;QE10>Ua6*D!&~4e-uPfgvm9bK2b|E?h
zP9Nxt<H+ljv@l}$10v}hBSCd~)%iaCazTe0ko*f3YuIy#?{%L$3=~Uh&LU?rmPmE7
zF&Sx+1hY7kqEZLZ5dIQMC-cPR_<@8D{>xSGOTA9*h30a51U1_t2Tu|}INe{!g0wEH
z?gp-394j`4@z(>&FEm%|FO7&DE>ajB17Q8BhLr|^koy3+efjUILe!>z^ogj>I1)JZ
z|EpYmRL7MpMk4&*l&cEFTTY*}5c&@-oMvzR)MWk*2oSxE6uo$?n6#-2x2`p3I-8P`
zA$;`!U09I{peKp90``CJQo+dtajs(0#M6&LrX<&d%g~C*>hQ=~vlGc?so@cK<j#bB
zQ!_hrXH`_rb-pC^4(hfnd=O@Q-l$CUP7`u-^#ctFaRA0XlrsIt6skP-50Y+a9)-!+
z5DNyg7Mg>u*CDls3OF-Y%|JDa=hnYXfiX!Ja9Cv!#deqSt=XOlaExS6A1YYH47i>z
zmXJd`l-L}ap5Q=^q*J`J!8sKQB{2Kew@_sQ@CsnN0(OA$pYqu6dPs*{&?k29qjIoe
zuu&CyZXx_o;E_y8zOlNiMhbtlA)xL2+aL^o9w!fPhQkt`dq}aE*QaD{#~DHw@WiXc
zqPGuqgG=6ZQL5Cdp9*FpY_o$^u*cTxJxm#gCNRbj_;UpJ{x|XyjmJMcf~Ws$<Nh)%
zixK%Yx)9@exK~-pd9;~EbF^S{pXJkK3GwZNr$@W3M=<*cpSQ&Ko4-8`+V>_!l*&bB
zjCyXX618t~hIPOF1PNmAXIaQ*8Pc{@<CA4SLC)jgR4y4}fpYD|0Gj-i0kB-5i@l7{
z(~WfOi0K5Eav0IA;E40GBX|nY$1ok8*H3k}1{^t@^8HW1cCEGJgtaMbX1fnjx0Kac
zjCbhCZUw+hTpaOU93lDDXfz^?gMK|gPrFJSe9gQd=AVPrYIKkiUlsm+$!z=8y@g$}
zaN8R97-)TYQbqOPdh7IROwN*p4hOFA@vmRAaxi*m{PcY0(ZaoegHQda7{`F|r9KqP
zt@Qq<z(?2n$lPtVuE;Am5?(R0T$s|>O!uw&8Sc&eqDkj)&|($++5We}d6|%B85-${
z0m^(jd0k&ic&xEk#N8rqF1`(|dvtlX_bi&7is`UFFlqp`kfPoaaAS$jU_nABIK5|>
z!(2o&kDIJzwF{&#KMR3Q9Evm_^q(}IrdIC}pg$-bZeGtLt9{=2yIianR55(^G=*7}
z-15NC`H_OzT*cQLWgGI15W*JqcO5@0mS6Nd#dhcERAY_vHGl3EW1d_cSiIAyZ23Aq
zBn%|c<W7!0!F>nC6UXhJDxu=!Xuo116=Yqj*P&cyAFXt6pw~Y6ZbGs}vqfpU1<p()
z@Rfr}Mn1;ra9kx_P06!JIiE>BqziQMzR%A4w$9dIJFjVP0{_<Gnj|j8&`KOFIyRKt
zN5xm40KrDXykd7C2-yfJu~Dk!VdBX0{o7_=l$h4qmsd7y@ZTy&N)rN?A4>O5{8?VF
z4-<P(PSaN;^WpogW^nzghB6Z>^JpX=N{ZA;;;>{tqv)b3e0d>F6Fc{NO7eX%#^7_7
zx;0>UH*n$SmCJVBpo@Qhou`!&nmp351B5LZq#L-rZ$pn$ckK2-<E@|BTm6no@{K>k
z-)wFU+-5d?FGWjgN(E+DF-R)hAFKjD&8@aMp+my(GJPnq9=_IB-AF*-7LKF<4V1$o
z<^}P~Y@{uV7C>Et;w6a|YFC)JHL~OHngjWIN@5>>Gko{9MfIZy^)=5GOR^0UJG#>D
z3OEF-;H7TMz8yko+}AV&%=(Q}n`}QpHzGtUAlUF@ne5h{)8R-mJdQCI(Dj%)6`Nu7
zL}e37??VkqmE=%5DLHmvB}*6`N;<kk03PJ`jDQq~-vl=HON~!f4L$4Su+5C4C(F!%
z#qXCw&3eS*#9*uMo|rNyhtp;k45_=<ca8{onHm7I3%2`ZJz(%1mjD_!64$4m|4i#L
zCF}ug-oB4m_>~}*1c|Qg2lTu~H-kFD?l=fhRl&DR1iP(GPWHQQEsMLhuH0ZPgr94+
zj#h4)J&JOpMK5s0N2{9uQr?+7M!kSy41?SVzsTSI5NLB1x%RV>`Cm<r6@JNm-u^$#
z#FnndT8P{g%vFTm7DeZVYKy}LhFvcJxt3Jvx!+MZ>axT<>Uf{!Z2c$JoiuCD^%aS~
zu0_=laC}v}aA;ZSzPAbC1g(dPR=O1Bvj58`!A9;l3VaWn!T)enL_-XFtt`yrTuex3
z?!>9BJ<Bb*)|U5{aAXL(E<#Vy(bXCUm)8U^qaL&x-rbKDakLsPsfB$a8oY9aB{qtM
zH8v)C#02Oy1!A2wtcYReblT060z%?Kvfpp+U#kAJI7aAe_#1gHJjcu~tS209z2Zjt
zpk+HFr$O)0JdOq^89r9;Bea}jnVQ`GQ6=9YDw~I4_o)UaLGn<^7>2|~QX(?<fFCj)
zr<rs00bf%<*}+apMWnksKK7cr)d&d!X&cAY`D$4nUof}+wWaULE59(jF@2H;xj&SJ
z>A!xPk`{JF)2qh#A8XI=l60cC#Y9BJ7Gumb*k8{fi!tScf&l)iGNa;k<vDtuvHkUW
ze7w@6x{I=gnZI>yc-!Y0XPg6POFqWNqg{&8#fq14If1fbPiu_U-~>W09Ade0IPc7m
zjggf3b~akB%fBs(o+)7DWVWx4YCEV9@<D-CC-3ksrd`^Sz3fv3ZH8qFtDVAD)H=O^
z)tzIH+D8a60{l+YI4WX3Og3(Y3n1z4aegxk>$|jQ^btz<63C98`_#;T7ii#tX+;Hx
zNMbmO&8%RpVg;PKL*yn>AD|*9zK}N?_}Y<|=R2awkjAgw1%|f@-{jHeIJi`DAS`+Q
z?XhF62G90`3Ud(0yd#Opk;x2NW1*o5q2*bloEf~>M%nv#*z>dAoeKg0J0>InIB$sL
zmAY1vb?&mC|5diP<Tq|4KDr>`@$Ok1rFK!H-02gfiz&kPBWp21C0h==?1ia&&P9ZE
zrP!dtIftdaNq0Fp$N0Lg{AZ{;)S9uR;^k1(37=IuADhsp0=R^jcd(?v5e`A90CQ5m
z_V(O$vzzcaIGkPm0H<FlM8bQfh-qU0v02}6$k)%xx%buw?g0C6V$Sl<15Uq)HR66M
z4ExUql8o;uZs#rn!F>izo`vy-{uI(7yb|G-NMa~OO!tV{8(jbA@o!+_pu{SyKEw(B
zKJ);Q!?*3-VJ{u0oVB%axyx2_sb-~%^@Sf()+@9%aiIBRiVANn^3}4oCTB~LOc{E3
zMV=b&uLqQ7V<3DEGfs%7N8SbNPzj$yEJAl`$PhLzu+QAqA;8x|h-sq(8u*xk!^<ar
zcv<%9r=GcX!)%h^LE`RgXVPYKo#!BRc=v*W%8QZ^H=hur=L@$id3wXtesj80)bp75
zx_+M>sOz<_V_wKqnysM46=Ddgv_1*~7ya~E_yX;E7rYIX4*Tb>4nG37<5_$8?bmq_
z_gl+64tA#@T>QPDD`N35aS6O=c7AN2Oh<4G-8GxhkHhh?;yse@@u=%``uT_RBjB!o
zK*vdC73uOO_uEc>3;}Nb;g<yKC{zUJ9;NZr=zP9Qi_2vc;pAB{I(bb{fnMm#*#Vn9
z-ZS#?I+5cS56GyHY;P_)obp<0XpXp(sZ(yQJbieumvq!t2dBmT8Avvv?oH?MyStx1
z=CTTiSvIXpYh)sOz|i$%VcD@?pYAvPKH+iT_IybY`PxzbFy(?d3*E4pCFkV;OctZ%
zmFp-!=3;A~s`zTb5@cu70elF>@Q&e*4ht)5rOU<{I2i};AVZ?=2$e(ckkAvM1hs<f
zw_#AIi-PutO3P@SKF{Zz#vzcBy>5z`U|(RSYIF~1R7P_VN8%;8cZ{M?8nmu1^kU}=
zbfHv868FV=)}b{IqT)#?X%Ts{)8H{*az$>x?@fn*CNoY+t7A2=fKgeQ%K?kGWLNt-
z`uET=3v+oO(0uTIc>@|0UE%V5#PXQwg*h;0gkF+*ZN)B5!z}#Nf@SK4*tEh;4x5S0
z>WA8kXS(gs<E-vq*u^%P#aO#vceIWfxm!v(uzE;S!ls-k;?Da&`r1O_BT2ZzNZfTe
zK6h~T{g?RuOI3*SPCQQeTSw&P!_GnN++TG#7T15%iu7uh?`O}dF3oq3J!EbBG3M4$
z@bPy;l>K>E-86x;NH*72csB&Tz2b=MG#Ra$YglNq0KasNKDuO*&1m78+aW^4qvZ{B
zNmGI%rJv<;#wQ2m1dQZB-SGj>{TVokb_qh)iQ9dQe@^pR=DL`>%Vyt&Wf9prnsi?6
zk_4X=-TN2ud}{X&ln}M*9xI1UV`FijUWVJ;PJ5w<ba%Rtle87~2u+9lCbjFOs_$AD
zAU~EK{|8x4S^Y`B<iuxD&+-&k((3DJ`-|cFo273dw?#^2`<+!|B3|^WI0|)H6H^?i
z{ebQ4%YcUDlaC{spj@-=jH@%C-T9vx(;NeCWf=<BHE)niUSwmga=L5u`v>?_(vL6a
zE`z21E?=$KJA;#wKW`17IAb13gQ-Y5p{KLjHk!BU&)l7#8I@a^-&+~OG&9E)=IT~>
zPVJfkx?03kBuf-0{hZRdAml{)8H#TQzk$j|&R@4I_fF^%`o%3(6)&E=`B->B6nd(i
zyJFA}KJVOkwwJGveWM^4N<JB4Ki=`e04T{($YZo`uL;ss{n@0=hv8+AoK{(J-5J?a
zje^oM+TdKs>*OHn2CpJA#AwCRvW}x`Jo5rIqZm&$p$7ENwzLG?MWwSjLdx#`N*O>I
z0F4Ej1B9X!g}j8Jo6+n<3Wb{h(!!zpNo&dLFLx{3_UueKtVYd(3EJF*-(PZi*>RW!
zerdi`&ph{}6eB<#tr(5J%BwEgf#3>Hw-d3J-7|CAUqz{CI%4;S-afNihn^=<5YuJJ
z9?-7!A?1^7vfx+^<?>)MKpV#y?yzc1bG9HILdB3~bOf{?ZGsb=zsfp8>s7>0F5sR!
zs3o?fybD<I?jQ>$VYb9O-4Jp<+~NE+em*Lp-)>6ySdMd`3mD;FukoXy9`ltLt>3kX
z$~bCbNYir2QI=N7%LGe)u9&uV_ptX*OI#|_mFlZypxMBIxc7lL2|_IfHu`HBq1WTh
zN*hr~<{iGrZL}!|t&Lf}%xK5+TkJT$*h!sS55qZaXE~AdT3>P4Iq*5+`nmdB31A?F
zx`Q~9jai){*&*)^tae15N-D%W)Cx?o&#&u}?!Fd!T`J^d?ylB=$wLgkd7BMXB-0ur
zme#$IkkFp?SX3~Zu{7l%X;6JIFnzMa`P+DbNYm~;N#l8&rykjdO_yve^Pu%KJQyM_
zy+}g){@MHTm%U>KbP|in9TS4VFBDh$t@1FU<mJsacL(!4<+>5wW@oHFpUJ!wRvt)0
zLUfR2_Bd$~*~e#X%>)wu6d}Kz_{r)ipX>JOdV_zniTfjJTD})u;cZA+hGpYQ+{~lG
zQa2gzcJ-msPvKNY8|PBr-6%n}P?ypmCm2HSS2yG%*(Ua$eo<E{)6P&iDbS9jqcD)x
z3Jzd4xIc?3%N*f<cLNF3ELf?Kqa<PXO+;YfJF@d4ZDb#6?t#vE@1@_|x17aVa=wty
z7N_zliocCt%RVSPY+aywY4^588;zD7EE%>;U9{tC-)+}&WayNQlE$6a?+Cj2TQA+J
zr0aaQWXAw1<N~^95XJfaC+EUAz8HGqKRYpc>EiKpgch&|5)OlE-t%|8NA7QaPWF;X
z8vt|2_*1_0A)<b)Q&gBKO`s`pDepI53KcZI=w$9AWT|S*I1M6!d`{v9BqB-%$N0(p
zT~}CvZ!q_*%OB$*D(`klrt^Z|)8YIlu*)!^Gl9mzC>oz!Ke_P45$_+3Pe200!i{ny
zL2`zv&AC6ouF%{;0x}w(B3ro3fAL#<=Lwr@=xNO@ICkHj7<61(EosQau@3M4s-D+9
zY*NkCI_MB>fsBxB_0Mt@t0afp#VFk`Ih1r>_}B&EMKvvOuh`ZUtG=L;j{@cPe`~zh
zxnN@j9LnFY#M)QJX^WmLtLVJY(%ECJfNRgbaVkC_$ty%98qH-`AaXJgLTD-BitT46
zmaBYbe!M-kwKQC6Ki`vY(c4mgBo;Kfa1v4U0BN{1bTfjujf{{fzzp_LMLi}eE~OE`
zIxNoq_XTAE23MGMyxpzWkF@pGI!kmZ+<l<cC87(0y-E(GRS)}hqQ(yrP6<*KAMbz@
z!ABpo&hF*>-GH$?+MVa{9Ip+4JvHDdc6cy)xDk5<b%7cBK$Zk<XQ46H`sjeQ48A#A
zYjHlaHTK{n?8(`u7=n&WkDOjwokT=RY)%Y#z&9_vpajufh!vjPE3q%|pe-g1a+_c;
zX4y0bVm(ISZ~!5b&A1l_?_457R=>5z{5MFot{5@y3^xEaAG_j_YxZdJO%p(3durJq
z*_kh^jMHA~$`{f36J<b*{VwzNMY<GHl2%=@tn)B!?E$SmH|y&n*UDqXJf0$RqgT6>
z^VbNawi0UL5IUHEUyZ~MuQYAnuF5!W-wle_fO^)*HE8+BjU8zyb9yO=2D!%jEkDS8
z2%>Lw*!`2u=vAl><HCHr-tAI}k7)3j8JqY;pUR58+uxx#_B;&64=k}yWFL8lzEG@`
zwA}Z)Z=0D0{pRv!W-EOr|3inb?zbK~nb{=euD#%^X2qqcQ+D<qmC8=fEIG*LtPZ^A
zFbx8piMmhd^BH6>Tc`f~+>qF5RQcIgvFuK%#>!ZltK~Q=t>+z|E&eC>gk(N`*}CrO
z7|iND$yxq`hNCK;xRPVC5A94U8UyYQ6w=ol>LVw2MX&k)3h{-+xwI2ggf*V>L@wpD
zgG!ei!lPqqe$i9?NKUlN|HdcdW65xt_SIOpfXkP<$QJd`=87DRvJYr^?(z%EiE>S|
z<u%ryS93+Tnk6lP9o}qidX$XMD+6Owh(`MLT@PEzT)RHmPL!DMWc{}li4zAyxd%3+
z-0k3k@1~aJdt0LT6dyFoc|*x>ON2Rm?3NV0TUNN{Z!t7lh`zGKH#=xq1M-(%H9j=C
z7fqVj@%2tP`0*lXf1y*eqUK&!b);7C`ULhK&E<kf40_zeXXcys!^}(z`C{ld?K3;d
zPD^~A9$mSycua>YQ$NZqoKm^+d+nB;!F-6|(bx%C&iiN<F$09*qe5H3QcES0OYbvz
zWv-t)Z=P^Y=+`{~q{0c(_V94t&t9n~H)vm<UpUu<zumJ<U*>I9_ChEmJE)bgeMe%#
zX?&)gBQ)XD&8S;z4q!)SCB;MARlZ#9ktB{-iTlEb+aae|-L~7MET(I5<mTWH-O<84
z@OiJ|&)9-Ouw(7EZ7W2`#3VWr_*H>K$`75n0_Nl@U4#HZO%34OJL_+MpbHg=KLvZ(
zE$~PCTTNm3{@O2zs#ujCLexyL3ly69E8RZP%o*yExa}D~d8zXEuH;5jy9V5%3$>p<
zNs@a`%P!GO61s8ZINybGxrkm;PRh^Z=lPCtj=dPO9joyny==UoC5&C5S}X(e=dmXA
z6-=#g+thSn__Gk+SYCe7k>rk;Ud{aF+!=LcVAe8gHl&`+<~98Gfo3ITkq)pz$1rqK
zbf%?W$dM#MPOpYTnkH|f)GMMJwUaLAR`GX)$`1ZgLr3fHwm@T=_}*yB&|^B*kZ|Jz
z-e0@DdD}ITjwDG8wH+ZQ8++c(9D2_)*90nr;<^RsJWSIVyHLu@{T4^`f1;ChMab0D
zfid3#>_bRNY<DaSTTB<hP!x3=k)iT0u(6y@Dx+6H7iv51JNOb%))hTeh7fs);7^*x
z#qSt4COk;*yuHmJK-LzHrI5($4#dg>%EQZ^DgeSV<(LG?i~@>bVvU*n7>xRD<n~HF
z+`=3`7gRYS?y|c&IT%YIpqqO=59eA7J<}KkzJc&pd2k;xFJe0>2)?445!cB|Re@z%
zcl}!*Pz8otCZlyc+nP)MLNv61+QH%U-sKJdPNe!_Tt8>jwwLslUCG;rmB7Jz^Qjr@
z3p7hxIpgrP=fXehLGbNOR|O#VwrnRa#mf0n-soIRflLzaqPBujQ=ZeRL<x7Cbd8a^
zL#Sv`=)=ELSRD+ZVlL-j_rtta5+(t5^fE`69dh@7L|d(Jj!ARP=#Befnkblw_`d`S
zwSbjj0rTlwq6vdMXV^U-s0ht=%+`g7O_|t^24YDbK>RLNpv%Fn#h~3V{Hg%H3_Z>x
z;5=pbTuvwIyB{loH<qh1GEB<@yH@~{0g;TE9~D#-$0?Lk7AYWCXqC%4ls=ePbOgvs
zB2tcN^$>z@Wx)g^M|2Tc0Ds;HV*+1cg}?nHL%=J5@9iGHfEx&q5sSC*cOArnNbJAu
zjxmSZy(C`p?Fuv`4)(vB{nHk{_xb=9YM4d;DqaHcuj4NN^n;}d=Gg;c0e>2BT)@a2
z&-C@bFoMy7$08QTnE$Id?%0-r-J#0(y}iBt=g*&Czw|skbs=~U4@+?>+U7UKsjoJd
z{C#iCfHqd-UaqgK>azcf0RJ(}f6f075->W)YyG=mDdH0TFWA5QkF`I5{-4YKyLKuf
z;i$GM!JnQGfxv{t>eC6VEqg8#jw=tLNDKyEvmpq=T!G6TB`B)ptU}VK&SXXau&{@x
zxeEX=so+u(W&(Us){*2J2=^{#d<lRc9wsRGw{t;&NTPnl8Ot3mcrk$(n1~Axpu9Og
zuJXUNWX8(Qci6kcQQ-090T31eA{D^t`>CMYMfjW0Ius1B`sH??iMq9$3Vt2AXaK$Y
z_G>R?Y)5_NNAB8Kt<wcofaPPSV>f|XcZOXD^>-u@4PfkCB#U}$9Row{`McjSpYKhy
zw-sY>6)g-Cxs$_}J{`|R=px8Y?gU>^Hms=;{CW3vvm%~aK+!#VqWN-bPYr`m)Jf)#
zQeiaotuNhdg1H-K=v&ia{LJgn92V0HqGI}=Jra^JDhVh`bNr!j@4FA2Ej?N~oy;ms
zx8$OvQ=&euO31F>65YuY`HOrCMgf|fA+MX*R`nF<d;-1GN*~I*kc)TPTZP(qyYF=F
zJz1HA$qtiK%M9z8XcoN&e?aS^itWIKch~~3IX?)9KSqF{T}8P}nz8Q@f-U}D>J>ui
zymPy<2%Oe6^IyEja`x|ZJJgF8;rLVNQW}Q2qQ$J{LWF-^a|;x@L>jYiws_XyFR2bU
z%IMdWO`BC8!n7v9M3*A6SP>SkV<yAM5aou*aiZo57!nz5PEO<?@uEHa#PnbM%XB=f
zP(<lDmZ6m6SFqk6OA4&cbp+zza7pATvHaT^ZimtV5N)>v9_JF}t>8@xBQ}*0(RWFp
zda;)ZfsVwEAuY%eOEq|lY0j;7M}$q%_%&&G({K?F2Zuyc<|UE|N0^(ttXocdZZ229
SXv5o&2x-X|Pck0qdH*jZVNrkp


From f6029a63881718708c5349204ce303bda0a6a11f Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 8 Jun 2016 09:35:56 -0700
Subject: [PATCH 08/69] Updating images for new EDP content

---
 .../images/intune-data-recovery.png           | Bin 1886 -> 3150 bytes
 .../keep-secure/images/intune-edpsettings.png | Bin 4303 -> 0 bytes
 .../images/intune-network-detection-boxes.png | Bin 0 -> 4448 bytes
 .../images/intune-optional-settings.png       | Bin 0 -> 36815 bytes
 4 files changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 windows/keep-secure/images/intune-edpsettings.png
 create mode 100644 windows/keep-secure/images/intune-network-detection-boxes.png
 create mode 100644 windows/keep-secure/images/intune-optional-settings.png

diff --git a/windows/keep-secure/images/intune-data-recovery.png b/windows/keep-secure/images/intune-data-recovery.png
index 0913c7a22b79d8834409b8e8aad309ba7cc9d7a7..32d72821109649dfb349e2174e7cfee754e987b1 100644
GIT binary patch
literal 3150
zcmeHJX*k>28c(&Vwl>s0v=yz6Y7DiMq0=G}T2)$2QB15wBBCfotR<8*lp1P@Wt6EP
zsI9iBini7=i7l~ID<zb%Z<YJce7n!RALiTra^L5F{_pv{%kO=kbI$XelW1*)5EoGp
z0f9i`7Ur;<Admn9n7bW0$p5>D$pPv>z)ge+sG?7C4giPl8DBRBfvQNNdoF??&_R&3
zr7aw=U$}4q1cHO$XaE2T4hI1<7z_r?5C{Yuu%ppvK>e+8I2<02kBp2|zTN^y6VYg*
zOVA_t5Q4|U1kZ<w_d<d1u~*n*ukd7VJkbaL1Rar#jv!$oi8x$=Z&a#p^iynfnqN$M
z03j1iq~Z!_L^Qkrha(cvR3e&IfQycfj*pKg5{X$^Svfg5<UBHwNR9oiBq94{avp`0
zUy)Ws%_y$UDyg9oiTUJwDwSARSonL<?<Frv3MlpYl!l_p*Dt6|B~{IJb#*N*Ep2UW
zL@J}UwX=Z6Z0_u)GI$IskwK+0X$1@h6#z6E?L*gxp7%X{-F-9~bD(#C$)pVq3^Iq9
zfDDbWM;IexV`D59i^k+InVezPG?TN&;PE(28jr!4nVebUFnK)2)YR16>>QWFotv8n
zgv;e}*48*{`)eEyFg8~=H#Rl^w6+h(+Sb<A?(Qy+#{<^?|MEXv0lL=uAW&WyXKo(=
z0v+w(j{{wPrS5=HE)Z@Pc+1Z-Fxch32MFiljSbYmdIX-*(a_W|z-UKUfj~!UEMUgA
zA<m1>6C;n`mWo3-BnL&8-ZqB8SXVVM=bCo0on~U+!lbPWqaaDwctQP*n|+o~>keLz
z4RY?^jCId2Txxx|lx<j<Zkce%9t?rH*P0)*hYp$|lh#rgkW2pvx}`D}F_1dgieuR3
z6n;0)@O$urY6qmua5NB;_~&-SWEt6cYd!6^4W6XXO_zcBiO+{9*n8Slm(7C{&rPs#
zdUeb^=89hyeK1(+m4998^?FY?-t3&OQPSlqZH=+fcd=vVmTLSvnzpf%ckU2>TDoS*
zH7<+%dAu{))gALDG%cViEC5+QV3P4`jGDsv@8UU%Upxlp(f3mz#zJharoql+_L|>`
zs!IC(-?~1peo~G<D$Y&_P^V}J?WxKs@QNwU70Zs}o6zJ|UPO3!E03(7c{p=#<o@eX
zTW_`((hb%0B~1&XOW&d2c9&=&_Ghf>nx{tfK2IbHb6*8F2hl>=_8%-HbM4=Z)>enY
zE8A|{eeXk4hCJ69oXMnEZ%ubyAC{wGcb7{2>x+$9&q&B3xld`*N@+chznap^Q)q`}
zROSejjm_LIcG`u$h!9u$xQ>wjVMDKK{HFVZ62UDMMphl-artyp@~CyIBW8v5mQHc%
za%>P(A8HJPo5AXFcY>!@8aKr5W_=MkwDi<FB7|20EedL1-C8`(0@2kdbc?!+-FqKB
zHjc7U;7Svfki_1Rn)W=`dkO{FHNsEKjIM~0S2a=~@fW==Enr8|*|P_wyCizjGvb}9
z3#ixpACZ|8Fw9Zh^0l3X@V%>wmIqlFjQmOLn<%}Nm$nY##We;AasAC+?eY}lu88rU
z!n=?E=zQS(>C^d&PX<;h$QrNw%`2}Goj$vTm6rMHi7Ks1in>sTvvvG-Tz4exO1bR@
zWYOMo7w|Q3|5x#mpL6C_V#-fhi2j-_Pr%oCEH>Ov{@R3(@?_0_mF+_nq!Y%KGB=xF
zYLC<Xjj(cq5T!20bCPrmsbu|!bS=wAQcgzU6L-7k0&c#TLus3h2KcMTtLq6hYzp8v
z9KNsa13PSrJoZKnS5^RXlbN{@q<<AD8uB_*Kyg_DO4%?~HGU`)7pog9RPBwv>^F4x
zp1rB}UuD+1_}5v2VN#%gA=%?GV7=qoh_dp~F;=K7d;Z;5al0E?1+T`6LMF;R<JRKO
zL)!3D@&hOKslPVNe1k1jY*?OsYx1KTu8FCwEh}_MxQn!;`J#hnmbTznH7t8v4RZ09
z0jpom>Pvd#WE&YhorYc0)Uk^~cJ;`B&-(saF>wqJc9n8R;Eei7n}}(g;syB+HFD@y
zkr161Ro2DrXRb&|8BUIG*;qchbV#+;-idzRx3>IBGkC>Brop(Z<p6h35{ZC&+Okf#
zz{m{eI|ll34AISIqoLe<8wu=;%%$$~Z<d;4h>rf?7jr7X1d4_$1fJKVn}i*!ZDeG4
zrZVuAbt8(jJEyQgW9li&`sSLM9f!5Gs<(ZjYXy#?O2b9;T{Ag*3ax50DetZGieV!Q
z`MDFKtaHdyqPc31Mh!Qj7FBAuk67xp5+&YSNonDc<H_Sa(^Xos1E#BS$i}{mZ29s7
zw@?E<ccZCiFjQ!m&e4%)$?uv(_9oc#Ect!Y>m5RGJGMY=`c#4TNi|QH?eI5(jlZxV
zf%QNoKRHp#E_&n-jbZk7&T>M@+z%e7y9Bp!%BS^KSLr+3-u`mu<uI1uSy9X8oWBwe
z{(!B&$Vw;H2wH6?j3%Ykd?A2+E)Tu6??d}Z_6x=|yqztnPgIIuUL==2@2`|S_bxHb
zwk<iDlo3Vs&YP~-9_;m8@X!C~{8Kq6Pr}AiS8w~9ryFv5;m{ze?Le5_!uOlqv0mIH
zCqh_onS5u(p!#dmg`=6hyGcV{&xC#3eTzP;Hyt@6Mj{KDOB`2omCii|Ii~q8(gCLM
zV4NV}#Mwio7&wY0_C}Nqe{5TTS|smBKDj-nEFvi55)^6>eqe>?UW~6Hgo_1KJ4cAt
zh@stsY+i|26J?at<+p>A(A_Kja~G(#Bo8a*d%vE}9ar|=lB%)~i6S$nTm}z)=aYJ(
z+TnLZF=MiM{WZ9Ddhw(w>uT9#!&)`~2D6p1#f-BMhXe;4<Zbz@osdJKHlj}m4bPA#
zlTgY&?N#9V!TBPI^DwBs!Y8By{&Y-SsUX4xU^s@Lf@`O633t8M3y#PX$|#EXtCvTp
z^8Njffc(o!?IwT5l<<p@AM>eh@k`w><7d6+vz~?6B{(d@_ym1?f(0>vU_yeQrNj><
z{T=#|AG*kIVB`eQKns*#V4UATJ>QQ)^Yb(K`50k-13&Wp$Kv=6gliSXl^&2id5mx8
zr3%HBij(kQfCLJIrvB%(_p%&YA)M-%An{*(zzs>d?a;!#0dq>s^`CBxlY4giZcF`W
zbGXI^9d=sQ6-IYmpP1b{8L5%uI!&K#oc-3eq4N{j$JyCVe-hJI*^r62uWaV7s1DXQ
zBDGOQm$yGlCxrV9uU}fV-r=e~P}{k>%rZ&-pzpK(zO4t9AXYQCx<t;M#J4^i^wGIm
z`)olP^+%jsmcJd5^h;UxJuC8L(08E>4*SO$qZ$)PBUt4^h67Poh`la-WcXySwjGK*
z+C6l(s+OBHYa|Q#YtszIukXn9aag<zeLiZJjuNb<Mm_F5^G?kkx^If~UWY0_71e?O
vXNB<ZM~4q>d~3l$uz&PiK-Gf1Q$2VBw@}Yb6{{cv{AZU1+zM7<f{OVUmP~co

delta 1751
zcmY+Fdo+~$8po$BJ13X5Wp_}WW}{3LgUBr=m#LVEwxp0`OC4DmZTH4_OOg)5VT!GB
znQ@ufG?*hc8Q#GPp_tN)8u8|mVMbnR+(vumyxME+v(B@g-}8Nbzt4L9_^#)V-=M*`
zj?w+oJ}0!d@7j(+p|rhDditSITOp(m(@;aIW0s3J&j@X`Mg26<ACEj(Sy`b_coaSg
zx%?@3Jl@aG4<8j3g-6P!#>B+rr4axwHL8OdL#0yh6tXkvHQA+{Tt*$Of?H74P{e-1
zrBa!kW(KFFqP~^I<+1<MM&$~dz;0%TsI7Z|D^v-&R8a>Lk&ev}iA0-c`0ZGSNFowR
zM&3_|ByyojB@uPVB_fqdI5#InLMD?*<Z_8zDc>oPD8DswB@%L#O6C6{J(cFI<_xHV
zUY>6LN#glOL(!vFT0Kop!^)jf4~-1Ll#kPSLGmp)RdvD;m!JR8G*XunB2GgKp5>YS
z)R@ZpXT@L<u`H0@Cl8EBp=Xn5eQQUG{!a`cQ`*vXoBzqM>LV}xI(;lI1j8@BUK;CM
z10(|D4zGWR++{g$i8Tx{EYif@jroJYYM$Xu;xw_$n4Q@}hGkPcVm-QQs4zo$j^v@r
zGBSYR9C-QI-<o?0^_M-CO1d6@anXuQ0rr5SK~?B&_dMV|7Jf#us`TX#?-SpnVjqw@
znHM5i;s$}l<z{m6a@G+MFZ8W`WA0~w8u})_XVF1t*7n7Z71ob|U-2_F-en!7ro`i&
zY02q!h76UyoS;kg%OF4@na%xE=Ku1Y%yiOs6lr#TZ;~cXaMTVnh|@5NwwbfAGkHXL
zlnsswF;6(bTitKFtq}HWc(W9{4PKSkhLW$CsvUXQw5mH_yG`+nCS?As*){;!6=1e6
z{9~|B<V;kb@8R&t1;fE-xRymjkao%SYLZx*$`>Tb)Q(p^{awkk+bUiVs<(wbsW~Ir
zIFPgKru|C(o4)(@7WJ1F0BkhN2-mnl^ZN4O?~SgzpypJt^3Xm{!L{VN9)dtZ;Gk>I
z1_$?hUo&^Mj`h_r?j9)Lp(h41LoazLG;$rfKk1m|O&nwCl<4mB9Cr*lr8aJJ%%eXs
z&&BSXwCo;ZA}PN&MUyd^=5f2KD|yF>!^ER#2u<)dsCUy0L&s?uNh{5A)G^ufiA%~#
zVhIdZmXLyMC}w{9CPKQKR~#qFF4F~kJI93-ED!j|BNlVRfgr{(5HxEJ4VQWhE!JAf
z1ODOtk)5*o^cJD4cjP1{CHIbwkuA9XU7y413@M8^^!eq1xfMb%Ow<g>k?93ha&f2D
z^Rh0M9s025MJZ1qlm+-+Ht2FaRnp?9mGZh5u27^a!HDXM*8-H3isMqff6J3{NOit%
z?!LiXAQvyTk2qci)@WM_G;h?o_F0G=i_-;CTAKUO!2uTYQFH;neZJ1iJ}~+GB<A;?
z)zX34X((Z#kzM`c_KwAEdTVj_Z)s#k=;d*H+uf%E_S-U^zgDTv6c03>-cj!3p6*eK
zF>7Q#SdqVc`C|Xv;zLWt#z5P3a%wzKG=f=Ayh&lJcg3^=JBiTV>BIezW7bCni6rON
zQ7FSzhJCR?eqC}<V)Hp6ZuRGP{-I+}=bcGA$iUCPHS_m8Wx-z^)^o6*yQY5`X`v?y
zO~yJ4tri(-SSFwU0&9Z9QXqw5T5<TAKKs0KMJcb@05THV%HI1!9`M3>2uP}%-7VKv
zd`Gzh0&Wn4B&RIM=!M_+jKUEVzSGw&VS7MJ8F}=1=4BoSw$L-luWbPBPi3DxGN2f@
zvNnEqKt>*WmU+3I1KT06sR2BPz<>e8MO$m*z(X=}CjyxqI2nQK4WNXWeR8H>QEF#x
zTx205_aKnPfg=$(*8l=+gt8Edj20oIT?j4bz&8-O)ByG(u%}<K7a29QkZruWou}K|
zIotq3xKxd>qw62OP!`u+86<)IrXPE8V*J52^fznAA;q6*>IqSY<LbjHv7s9mt7|GK
zl-OLP5%Ya`wTernb-=<o!qoxcPmi6X3C?GQmaZLSTnj-)^N)27kxnI<^OB46qwRbO
zM$HzmXIld?^`!E>eEL<11-tUhRQx*}F22C&?3b@CV|8eD1*vPL1k{p;e4@<T`hdcF
z^HtH7kb?fa7j87JJ~$|&-HiA9RCRZ4-20EIE3Kln3r(`n2yeKYR9?$>Zr^RT+PZXw
z;)N3rX+9_b@4szU!3+|mVly`#Qe<@U=r^a|Hs=QYwZsYZM#hHBKJd;>dUb<#DDpL-
NyzoArb?%qa{tFQ;ssaE2

diff --git a/windows/keep-secure/images/intune-edpsettings.png b/windows/keep-secure/images/intune-edpsettings.png
deleted file mode 100644
index 882bf0d46bcc72bf2cc83212967a0136f25d6412..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 4303
zcmY*c2UJtb)&>+2DJn&zNwcDW)EE&VVn8fdK#53EDG@^rgpSgYk`O>ZLMRde5rNRV
zh>8hHQ9^=1Xp#US1f_<A_Q!kw`|f+Q);aU-J^RerYxY{-H#`1@rMcK1xjlS*d}0=t
zF5cqf6M*wDZubt}8z{D8CvW2Sy=8uZue?Wr!83M3LDxWhe3i)}8xI6|Yt=WdT7!9h
zZEbB`U0q{iV?I8xv5E1y+o$#6azGztJ}{UM4C6)cCLS~a8S@Mf2xNNElxJJoT)uPX
z4j2rx^|=9t!C*WD1G~Ao@t~KNm%qP%;8R3kU|?`?aA;^~SXkJTCr?zawSr+t7z`O0
zm~b0)7J@Q<kZl%%_HloGGqA=1hC~J?U|~o+5(Z8P3`8Pf*n~iy5!>#b-W?hq9v%@9
z5g8H58?mvmaj|hoBod8Ar=+B0WMpJzWnr=~SS&UtCnq;27m36tVDU&i9?wJAg#5hx
zf`S4Z4p)dPEGjB0E-Ef9EiEf6tEi}`s;a84uCA-AYi(^s;>lP%0XLY?@D*Q4&#Iy4
zv@Mk22?RW00#Dv1;IU*pl1#>b_+36hz;BcB@87@w{Q2`2!k4bjuAZ+w-QC?iJw4yL
zzx93VqmU>A0|P(EKZb^es8s6c=qO=gf-td7-rk-Zo7|otY;Tjt$H(b(`qb1EV~W9?
zW-=IziEZAPSXfwKFR@ovR#sP6*=+XO+8T$$;c~g_>+2gE8@vcbu_8NO*@V3>-Sy?;
z6aV<<;U{>#cIG(``hg*SR$i`t0T19VeBKY-JpD91UHp{wG*4>+-F2T>@`58QE`qEB
zhgdm@dHwy;1S{7tz3_Ijdedy=3kv(FKhAm|bNF(ts=zMCBd;W0rrQqL-Z@Zaec&yH
zlNQoDIZEwv3UD>hReC@6>tkG&g{Nna5j)#=zT0_v7yr&~i2ZKN%W#FAG-YKWkcqee
zeBa-&OeNs)!Z|x(WFoZ_+!quUW`9YCOMdD;=(6M{Oazsw)YIBDB`+55u8;act-r1a
z*lwFsY!0Owibfj5*|En{RoN`7V~0~$Dg|lz1}V+=KPadjbLMoWEwX&9!W|9|-fB;~
zQhY}H>z1*^>tl_|JCV@}g7s$4nTPE9y`gpRj53^pn)#$L3i)Ydu|VMoKM};VRLXd~
zoFUyvFAPq7|4k$BMqe-*_d!ZNNH-z@D}q#{Q>kPSyJ@iUwfCxW{b9!1aB&ZFqKGCO
zcu+3r6!iGn+hfW%fv+&6xOU=qa}yzCg2F<7vO-EtXy^_aYDxY9Yn=I8TW=3s=1iUe
z+OWg)Oztsk=5--^Sta1$by8f~bc909_vLmf2|spWS*89_Tj-e*FU{W?XqSMriz$<v
z+XW2M-b?!;n@H=nV<WZ^`Gd*>#-h>rZYlwbJC8u90<o^K)Dm!LuVDB2$_x9@QGXr$
zZX)mCBmaf}slmVH;0NyJdC^h4BK-q-@jOTb{k_Xy&_w*tPXF`yH)LVyuhts&V5ae=
zS2NK*D1=>pp7mtfa7~^&?X~qg(`##UdhA!*4|RCleACK-;%vh=hA7eFm?O(xFZ!H)
zS&56<d!P%i43Ck`((m}59C<x62#NJ{To=c2qsBSj3e5!gqH*r#upD!#Rc83&e7pIf
zas(;l&G4$hrtBxCN_|u9K~j{<ne*^1?OL@E%PX~dEnRij3JzJCfyyhSKceNw9!NSC
zrKtrV#>T`v_Zm5Gtuwc_YoAfe&5aP2O80Z-=N=Dj((0s@1G-fJmxqs<&;NL-pGX}l
z&8v&2PUfD4IzGr@fi%_os4AJeKz(Hw>Kx^q>$=KbiGWNFp&kJY&pPK-c+$m+uDXwE
zdCLwRu(HKVWwnAlll6zA3Pf?^P?hFdOfz9F-AOO!MZoQR#LmVR7a`Ki!I67NqmA=2
z!~JsFXMSotzGHI=)lrqCq3X0}Nd5ElY7*s^FQi7fw(n3`lH|!e$DuE~Y-x2?`YZHt
z!>iZ7vmPhD_WX4OVflroV2ydJ@A~chYE^^k)NH3u{B&o-O?Hbu@{L4@dfi>Q=_O9z
zG|Un@>Mq%M>>Q#;(KQFA3dMA=9?*2=4OQC@=1r}DPljC{C{J>e0uFhH+vi|#socei
ztEMY*T^mkrAz7KUT~;?O&UZG`sR>B<s84WGz-E;^($J+^Sj#{{Pt+hT@h+uT#9cNA
z^s^y|@UqjozR9C-tnYZaQ+DO)%X5&PhhUFx`{%d=S-U<_^xu7?NjV%$nCYw0vi>M9
z0I&yxFW(cXx-;zB@^<PjO#qqy(?aXZ%@N_-Z;IlLY%Pr8A@53X)Xd)6cq%FPtc=U?
zfXa9~3_fjVqcs*YHTbKpY|hS&CS2WX=MYR*hs!!brGSy2Tm%*m*Fvns$+Ck^Uw_aK
zCs+Vwbj)pO{k3wkS!MmXBt%fgqZyxKzg=Go^9J!pq`b8gZps;(8o}Q02lxwLzUL(=
zMV5|^PKv|U+|KrDcfR2+e=d%3q6N}>`!M&Gpuvf+wfhz#{91q|eGl(e-?S8{57tR+
z4nx?a8qGZ1(^%V{&*@%9hkUl0?t{L)B1Zdk(n7LPXRtB#(9BXkz}EY`R@4n#j~S7E
z;DiwzF`V~dejlxc_}VK3ohV`a1sF9_==k{aB08~yNHqf*1uD`S5*%o$W=r-vl5R>k
zXA>J2AX6V4kP0Df2bCII2=itm3D}^_Bc??p&B{G+=;&j~Mz#?`^J#k%)dVGb+Larh
zeyp+(6&p%BZvQ+6QNyW8YmQ2_PY0lvNa-{Q;2lZW@ySd(bsZ=oK7AHBq8)G8A_KG}
z%s;2xH?r$mlz@GwV{5o_A0J4<t_EG(%V3->(JS6KRSb_O*Xoz1d~L}7=((*gH{4&+
zeSi7@H<gacGkds_VzopxPEjq+U7lNI)&bkN9D}9<)P1-tNU=fKkEQQ%wf-CVO<{R?
zHolGTHW*Q&zBPGbvaWjAM>X&VLsE9T5mH)Ci`-Nck6Vww7@kMbRT}v|Z#uZql4pS*
z&IO^9OPpQX<E|8)lmagK=R)^CM(LlSf7H!P40^4R(P{Q354v9`Y&T1GlVR#GCaac2
zx7J(kXPCbCnl=UaL)EB<$-XagFH{NZtHG^Glz&ll)pCYsmfOvHFi?Mu<M7$ep?TMl
z^r4TYw|+^9(Te=jXupN>Lg$uWj0%q~ysv~!ZULZaFJEp4rva}0SaThQ1b7TLbONgH
zwcCjQVr_qbjitaQMYJMVu^>-9&ClkVZ%7?0zhh)}ifs!#RCi>W-uU_#0f$p}aap3#
zC;|9+xR=uAY)1vka>-a(h$cr=%&AM!5&$X>n9P^D$;TfTqG5=wXFSxBc|O1}&kU!A
zS1N?LIL45)CE}%tVkRi>D~XJQ@r)g4`R5R;Ctqq_#UZ+Ir?Zm+*6YzIl`s5_h@!o>
zALR;_&Itcj?FQVNPG-yfba)RDCzct8jSG3xUvlr0WLIZ%?#&aH`H5wK4BZC0Jv;90
z_o8DGj$>@2qP-@bPPEJG4YVEurR-0<7_qBwqp=(OUb9<s4T^t$0V2hn*yF@Y@$?sd
z;G@q@jSOL4ax2OJ7J+^`j1PW|_S^cj-aVS~f63JUUKRe5od40Lzh&zGwQ1Rk;`}uL
z8BI;E4`5eVH>~IU8eh(<IcoRH`!G#>1i{p>1Tcf&<`|;vB*h%P^ewz%ysx)jxh%f6
z(9u<)C%0%Cba$yMjOpvTa7k=jI)VTjc&4M@*4(~W?s8@Uc+5TlahP@}lr~`tXf1B?
z@WS~rr7>}S0kU=NR$~&cK2oh?ajJll&lh?O-Fi9e-99j^*DW<YKRE5EgLm*@n!nL(
zi7%Ir=?Aq*&V2KkyoY9H>KTsIPysZoc&G%-eZzn~S>)^Y%;$Zs=TukVdsbDTp?72V
zmw_r03B6_ChVAZTJ`E_<>@64RC>E&_--x_d+gephA^3Z_)i*@mRd#zu*#QvOIYbJ6
zbl0Uie3NP<=gv5_FiR2KN^e&8?mQ{xJQ2jrJ9kx|sJ>EZ)Ah}|5$_>U3Uzq}>k)x3
zo(#6Ozd$TR9&J9tjEZJuNY54uXW0v$CC6f}^CXJ%e6Go?IhLz|NVHf==EfThxeu8?
zDImpez*dSXX)j;+ci4|Su)kj0y|jyEvVf|KyFT$Bxl#N_ZseutYeJD~vs~#I^mzVn
zo2e~97ff2LolZh`<sOUCG6}A*W%B?C)cRFWL`JnB6al+5+?txg=%+d~NYJq-niRlC
z3(4hZA^39dT1dNAhIh(<0=!a5S1&Z{Lfu(Xcbnd^g2%H*VcJ!5;ZQ&u*(`|D{=Db8
zOFaBZb1Vn>CMasJYMV>Uk4gRE7Z;vrz-Z5us!nwy;$%Vxw=NpqXjNk|%sqPni0A8z
zjg*v-A*<;EQM%@;GGRcItt)$prRiMCukHECyQxc(qr!Z#skLAiY)B%e?G}sQ8mg5_
zdQ7W&b+tfM!@cv_Q^{=AYtjZ1C)rQ$n@XD3*s*k0d}_K1ty&*OSFP{AVN~iLs`&2p
zK6aj;g+80vzyu7Yc6Q*XF_7R=<gItFYqUpPA7(=Ad3l#r?YH6F4mkyjX~mzT&G1!y
zjHct~r7Ew^QpBZxL2Opsz7UNjOMDr+l)|k~Lo9R4Is<gIkGnJNAwXaeUHY?znEQPB
zjSLP|yi3_8x#|=gV?3!dPa%>!8g}S{OCzu{?}AfArmhJ(q>Vtz^#&7wzA6;?X^&{E
z{F>NmHmKmB5^(x=)&7laVr4+A`0gWrtBT@3s&Y=W(d;4e#BYEk>_nEzwKM6MB1R35
z)?u{cceAAiq7(|r2?QnE)D0U^Gn53f(*q;PdF!4zSl>Dm9AB%M@pkLOin%1P$_w(4
zp4>-kdcjHYT(SU?jt-lx9H#ISEqI5Z@s;KNDhm=un>iv$xdle)1g0~^do}7j=S@~n
zO>eX+Ed#jtY202IYYl{0f2Tt1oFVNLmc0^(O}Z+nDz6`TKUb*!c~b#*>aq)gtbZxp
zQb|uS%ON13G7z2CkgD^RjmD8mNURx1U5`gE>ju`a|4>d~hfZb1K{TX$l@s`WIU+6i
zfRrubj*Qb%r)PDdrNd)g*16)DA%^K(>>*dXnR?iZv6k4*(2K=;&%>=bEpxUvXf-}f
zrcFtwNKLgnIt(edTZz}$M>{9>p6C2vXtzqXOh!0)P(OGuQ61OKBsm_Rn){sG-qc4{
zD2xto#|*qv8{=<e3N-e2bTX$!w06s_34U6BM~TbN5d70g@i&S^D^0|?BB{$|JK_J_
z%l{DNH(s9;CT1UFB94)TZz#L*)A9$8Q1pt6#jXTJ9{u6mGTav9Crac|Kf3h7lJ#A1
zZ?iO`NNGQ3!NHU&@(ga`Ir4UT3!<VGbq)HXG{Cb_iO1Gu$qGiYIY$=H4=rE($y|RY
z#0&dF`zGT(ca%hV33wiaFWR)Yjc=*%C4xw%o(Tf~l@#UxJW%~0M&qB>?_WM2*+&F@
cySnnU4?1tHJtLOOYgqX#z?K)wFWis(KWNc}-2eap

diff --git a/windows/keep-secure/images/intune-network-detection-boxes.png b/windows/keep-secure/images/intune-network-detection-boxes.png
new file mode 100644
index 0000000000000000000000000000000000000000..256b586c70217f7636d29252c7ab6d46ebb76f63
GIT binary patch
literal 4448
zcmaKwc{E$y*T<u15mN_4YlseLpDOiec!;5>8Xu|yQ8R6|W+G-$W2zdVs#RjD*3g)O
ziW*|3s%DYYTog&n#1IKD{jJ}6*Za?V*1G51ea<>(-F@%f=kwhs?vANGAI~`+006*e
zXmIN;0KkSlya#g~KdcXUTB(N(8|<#W4xpq*oN{PzxM=^Y4FKTKK&B(-q0Q}WU<CsJ
z_*;%Hwhpg?M~9uFetJ;9dtOic0vvrG1H2uddHTtFKK7HkA%9(7)m;f;3IGW98{X2s
zA85CfVeNHBU$|rUuRTX*wfzMFtMl{gZwyYxv0rZfsw%Qp8O?W+Uo4L6r-HWmg*SEC
zL>W09cd1L~9m;Sh5APqxlnH(wSv7tv+WiM+y{{BCk~fkQp44EeLth`HxLjWflQz0_
zR6hPLH{*_!;?l8BYB3Vz(0;1n3q7=X|FJB!d*IT8p-@=8S_eh)c69|WKlG72^!Tr8
z3r4g3ZjJ%EIyyGl(c9bGW7E>pD=e4(JM_*TVLm!Ky7gIWVbCI-LMf{WT?(M@4yjOE
z-?@l&7E-*3M4FO+r4(1>>Wv`g4o)p#8Kbtf?M$6&ilVOOv`}}}W~h5B4Wz7(cdJV|
zM~%#o#I-?}TD5K!eAQ5#lKtr6GjKSn7)V?vmD*b(`6ce=%a|3$YuVlJ0(McCnYQp>
zlOjVdvYPkw6U5Dxl%lqO<>a?e7iKFF^$lBP)wSgh<;JZaT*;~Wf<*g!|5)|aL%s3A
z5S$c}t`0s<)c-CS+n;38@R|~54pv+9bAmq()<L~8C1dOJdsaN(i%JB!`h0I*uNJw}
zvxRy!g56p#a>Ih2c7w}p=k2{xsf`irzk?^oA1-{#+qDd6*k@q(&%o&omPE$EaI)|2
zz+=|4co0-~7d+L<4NFsyn^gF22IXW48yZzrRq;@xoSlBith~HwJkw?cyLsc$wsO=Q
zQb<Q^r`2<5N<ws&FGi^dDYWf&haan*M{%TAx|P_oHi?tJT9CvqS4ojA6oqh&e9jeH
zMz1uB8#|V}v~Zqv&YPJ$$bdUiGDm*?yh4p;2zr{B)OFrlOZ+!u+gr7$Mw=h2nbhKX
z`B^YjW9iF?@xL={u&qTadYe`Q7r*rDAxFJ+ik2qvAQpUi(+^s|-lND;!&etoRRz3M
z%h8M$JDof+8^mUQp%_ODt3#%938mD6t}#C!XoA7uPxJmHN+fve!3?=Q0+tl0MgHdr
zhz>*ko$x8-sS@MGwqeIY0Vpe8D6XP#xy(2H0%NBAz0Dh^m2^%q#yn#n5W`-YF&XQv
z?s@E~Zjar%&m#_Iblogd*0(0ghC{VyKI!z3$U;H<wPsqf)4((L3D4G@=k#f}xGz=`
z1*EplpYwAaZo%j^-mo=A;9_^{>vfT0>s3DIU$j^zAWQ;L#<fJV0gf$aAsF0q*m$qF
zsy0+{r~Q?t>f=+E0h?WCHibZ1Z+zEV8W4A6%`z)<k(+Lf?*u@^Qv9;qXH@r6WEbPK
z!VuEi*~#RCVg!fqW$82VaWBuRn22`)Gk8Y*z??IT*N8FRv`7Y}9)GnmX0CYA0hnLj
zN$5bOg~Dh2&R6JB83TJ`V_XdV6~%-X%O}*lJu9-CV<tPb%9H0&%MjK=JZ|#Uyt9nV
zz*a2IWecznZmLqsMxFN~?w)O=0_Tm|gqLmxvW8K`6_C~;{RQM;=ZMh{%!FBGXYbiz
z@$u47C!fzFr?$s;0MrwRerAcqx?2w^F}7PsaA#6I?`s-(1qMIW&K))gi$JMwkN>T#
zoEQE+5@ht%%%VcYg}Ad*Eurzzo}Cc5>daD8!WT%YPskYzr!v>Rana9@rHZ~a0Sfa;
z_n&(hXXvW_mgnX6r(;-Q-Y5|lp1+_&$Tr&iZR>?F#ILDpZ?@=oc9AO)@h{OpcU(N~
z6jZ!WRM1?!@d<|1$h^wEq==jHp(~I0%M9f$Wz+aoe*qz7xb}lLo|*Qia<Q6dgEQ6(
zUCv^3&T4zO^M*gnq%Oxs%HBteQe4s09ZyI4Q}%~5jWz?b0x$}Ck3sQ4cjl!v?ds=w
z-16n~d{7XUdTd|2n|b`R8K1eYUdJS_Ye-n=GaZTk?#voU(d`b+p;9Fn&~>-zc0_sW
zpHSg7t7HRS&T0*Ghu)F2%jPEtsy_L(`$6BjIVP&=Chim%m@pd8X#!iT+HBU&Xy+%z
z?*DeWdCLco?qkQkQF^JegWRYB^t_k~x_52;4l;@qjaOU==Ny#Sn|DBzt6wm8&r!hV
z$P0{>*5HC_RekEh2-C^~)-LQ{?lA*FF2I$n$T?XFXv>Si4v#hPqt!L4hNWmnO=>%M
zd2>Tl#~LLurjofQb7S}1^#Eu;>3MQ;vj1ixg0K33FZoA$#fB>aUO(k~;y+;@jB|+G
z1q<Eu%rS4?omRH(KK`3A5H`^N%yG^CFR0}mZ68Gzl>G1n84Z-T0XVX`HT)baQ2@=u
zV->X}9_f3Y_tome*KnF_#1N4CNgkmXe1Ba>6(x>aBXf@K*|rOh299njt$o|e8uVC?
z+ORP{ZGqp2nF``{*wvp5a;L2eG9G9Rlas3;mtMu4ooBvq7Oz4o2ZcCgq?joSL$fwh
zuF|z9t4qaSYM@n6YdBpooe;kXH<%EEbSV!Cd_u6{ovCVE`9bRa*g)-|7IL%pBirsE
z_;&E@D-@Dg#YS6kiarFtq9K3x?}|-tBx5R7G}*-M#YuzgC?1}@Xg$O2(6#p$0;X4L
zb$-x$J){cI`{t7(l4QFH0iI#ubg`Cs7^_dFMt^^mb7^EvlhW7?fHP9bUp>^Hm0-}0
z?nV*fQ|&bFjk!4)NST6NE-F-g1Ui0|GwgPthC_qeLHeung-+JV`li{S>HL)nnvJBl
zW_ivaxoDhi?c7YzR7<4j$Sx*a^TvMK=<g9sDl{LKdC@i?F9E~9DdM5ru$b8UU<y<`
zeq8ZW5G!;xez4d1g@<(Fy;B$<Ep@TLwfvW3%n6f*hMEa~cg*1*n;E|3!K$e)e>heh
zhP?IZF#&32J9uz~j5;|IH({gZF4>&@S~GFPbf*QC7#R+iJ-CvJJD>;9FTP1DUz?2!
zrc9mKGJ1N^7s{s;6#)IM`G7lvLiaH~B9!H12I<5wtdu}BunXJ>gD*4Df6!efHp`!C
zC;4d9KUl4Z<4_a0^m>ND@dQE%VsA+$glIZjc8Wt=)ZvMX3vq5Pubzss#(NeTzmxxo
z^}m2jk>YB8t|P#k-ypoGDb!DjTpqN*uZ$*$TO4T-+W*laT*dlFqJtxce#jkL!d5LK
zlqv?F?y5k|4sGJ8RC?21`oYn(wEF!9o5M)%Fw1)IM}R18R>q%pAyio&jy6jT((e7u
z_@e_p29c*(UyyC%DMTmA#AhS!FU1<6AG7!t+Ibbg=*oV9PbOO5-s+;?cWTsqvEOOA
zeQ>`_d{JmKdmulhSNs>dWsGuPCI2d0BPeXMUta5&M}TB4v3KLd-r?%5)6qe#9nI^k
z56tKXeJhOoM{aJ|Y|VdU+By294UA_v=pg2Jh>YDv3(wCk)TiY#BaQJ4_m;XvdR{G-
zm*$wV>Zan#14ElhfYO4=&S}F<gX02>NrkN6$>Sd5@Bk<(-1lLFyxjOb2n3>+aR=0l
zii=}kknEpSE%1fHb@R<ELbYS6&K_)iAGX!!$CmsGj{PjTmHGtUcYv@kJ7Daw(yds1
zgO2p?kd95-*mU{G$i#p3fZB6rVb>dXH+MK_<yYh<z2D2u5mWl^uL}#WXy9v2y=L19
zuHq1~xBRJ<6Ji~Uxd`UUT=fybzX_b$Pzf=ymbbXnlef>0t*&qOOwIMTOS|a8zG55+
zTNTf#*RGQia1>WM@j4@bWBoxlc9h9l#1y2X*hD_m$vEe6yS37;Z!0#aN@%lwrVbHr
zXN-$y9^}!d5CFd_^Q@Y*Rs#9<P}?c^2XvE-d%aq<!VNSjsT0`7zo|M3^K%P%q|%eW
zG3+<qs#UjB#lQqy*e1Pz>4c+pW;>Jp{lcMpwU8n^&CvS|6EzhD%F1}4Jk6}`&-+u1
zX<~m7BPjgZ@U!84^|vEsmoJ;=VXZ!vC{Sc2GI$cA7!(Z!@BFMoXqUyz{U~xTU)lZO
zGvkMg@*uyPn4i1drxlF$nf>TA@1X?CE*4U*>a2P#)n4TFxx28bZbSWnj}z__!cZyI
zvlxBNRsVN@g-W~%JxX*&RPtW*oFVB&f0n27rIGb7NqC4}>cJe{!3nT&-7iE?VN&IL
zkjz^$I$OD%6MlMG;SQ_-lps5a;rm%v7P$5`(av2#|My1jQh~J!LVgqFxA!%5Us6;|
zY_P$kN#N6%EcR!5g==W&Si-Wvdc&J#eyoT9qR8H5PM8?gk<Qt9E?G<R?0>`?zm!bW
zF;BkY)=Qd_#xd=CH5b~C`EVHa-fW9u*z`L_AglU9$Ty*iYcUZ(!br4n=t;4%Z@blv
z!q(&z=z*`I_f+Hs16gX*?y=PHv{!uQ_BB0Z<o>#NVyg1#fSR87`El;NZb(w<8aOw7
zFRyK(oq19{PtxL|v}S&eM<GEd$sYX0+&SRo8%gnWEOIt&8m8NWQy9K!D;GpC@UsS+
zO(;a6eV*$6YiFQR0bU;*NM3SCK0ZH)h_LO;TXJC7Sf_;Wm136<^9{9iUIA=BPJmAP
zF&6m{QD&Ykr}$qdJ@3<jn&Mp|sq7+bcP+i6uW;C3dTLA%T+p~GSKaP2W+&&H7LQj2
z?fg?ZNd7g_*I>gduHF-xAQyU`NEW0&j^|&}4POi6FMsE%`V7{7n`%^pJAM~&qUNHl
z<PVU!eQgfERw=$)aJ$%m+`N?UmaFV_<dfvPGuj03ZtzqX?l{%yJsR8c!%(&B{o*E)
zRwScv2YYKVKVN0kYQje|6Y>;Wk^8+qma-BtMtc6W<t5=b27{^0-HY<IG73Nv_f<?3
z$1xd}8(13WJBZXD(K!vEcC(*qDZOHzS3Qlp&sCRgVrf*hV!UmrZ~K9J!nD&&SYi+j
zw59>}aL>y?5qc%8C$L&VD28;lodcdI5fTLb<o<#&0MA1$`fR0%24~#pxb^JnxPE$t
z7~3F9xjzIX;tbi%AbBu2JWe~vc3BN%zRtc@h9-e+okQ6qdtaM=Nh*iv8JQ&qPbp6A
zuO0@gpTw;CY2#vcmi)}ks(#j-vRJK-bxV+e7g!)3Ok@Yq7TWw>%pS{k&-;~qovG?G
zdq;B6AR|h|=5nsEZv%zHA*-2)dPRu+*u$Vo*xtm<1!*N?fq(*mgg6{$)N8J6dESN7
z95$01aUYvk!&qUqH{<q7!aXnQhh4l_eKvCGH>;q}fj6s{uA9CfxjREgB4)w{nnWIp
zpN8O3vYs56A@x6>HD&h5bMS0BS~moT;t&ahYvFgKK)3tshRl1cc5QRhDY_8Fw~qDR
zIxNkhIYgjDyGY?&#TM~shvGu{gkehZ=#46_A4+6!3Z?xuP$#iC<>H)h{(+P8vhUt`
zo3f1Mewcl98x5N9@p#&>PCLGR@|2dyjt;Fb6wZK~x-Ob2dN<VUGu^ysq_z~|bo&zI
z(qGp$+P+iM_RX3+UrF7Nu213$w>WpOI+V%)9gDufPS1+mZrCqDMBlxqoT+ZEAi-?3
z<JOU6#t}xd7}1UwnbCukdw22Q1a#|_uA{9P)Y=V3WAHK&f36egMJVmbIOtChK7{u1
zjEKO*;=@E-YEk-6-v7U>{pKir*j*{9`UmdA7mtt~*%$nW>Vgl^|39ejBU4@+6@!q+
cSqv?WWXz-e)F*Eb4?qBhdZxEZbQ~i82OKm1N&o-=

literal 0
HcmV?d00001

diff --git a/windows/keep-secure/images/intune-optional-settings.png b/windows/keep-secure/images/intune-optional-settings.png
new file mode 100644
index 0000000000000000000000000000000000000000..6a935cc4ee12eecf657fa0f73d85449f68b28540
GIT binary patch
literal 36815
zcmeFZ30RZYx<6{S-B`DvZLP{6uv-<h4#*f8vs<dDOd>)A0#SxA1i}y^LP*k<id6_y
zQJIN~fDB1Q2s5Fm5E%kWNCF`cG!hJ95JHGaNOC{0?b+v?eeZwY=l;)g_kNzgkJGpO
z*80{vzw7tD%WG#mTy*}T|CbFLHt3u>`Q6zK8#Xp=*znQtCtASBr@#E<4gB#D>a5GR
z8^{B@MZm+y;orD_vtdJR_LkL)e+Hg6$DQ;;ZP>8&>DsT4=&=t&fkEBG<L48-W8sNO
z7ZbuZ#9fR;CLTeCCH~dw$k8LV(Uv%m4I8rmcIvxt&Rq_gQ^nNm<)Hb5t-pL6Pm?<@
z9ea88*S~!F*OQ<AO*VA;!qY*+&z2Y4ZGvG2M-R}u(d3--TJedLulD#x<lj2x=J5Fr
z<4(neK<}a(q2_xJpD_#hwtV(keS}H*p=(7hHyrjJe|hVRQx8mg_Y~fFelO@4S_~Vn
z#<1q8)d)yOQNcWa+j|rx2*H_Xy(F~_#QP5RU!%Yjm#%#J?I&OU1pF4*qhNwn%)g{%
z{5JCT`Yx?q>;LrSPcJ+^`C~l7^rz0_ALe{nzx~PNS8KC@_qdxc#(nnNVsk$oZTjt%
zpDul?3;petZ|(1qba@@A^M$$iDfh-8b%16}b4mW}+IH54K(%HS55vek!LqVG7)BkC
zTWb6J-sT!@ka1xr@hXih>t1)mON}^O&CgwEQ<n7Mr}vpPuY%Ow{H9e2$2d6Q_bpKC
zZ<{umDLYnS;aakA%~S`C=Q1(r^q#MNzr<e+z$5M`vliZO)jsmumhatZSo&B-QBgZ=
zEGxW-C)qFsSo6C1&a2y_gsg9Vr?-RKyB!+qadp4`c0=OCs$>%boxGrVS?pXbdWBJk
z)KySgq#G|9l3<jU6CJ3nRabN0tP}C#7!}wK{M^;kA$j+0@APCoxqnGkj!y8VJw)Kt
z;B=L1;yzs-&${Dg|7#m<<UIB(x$Lw$JmUT;T9b%&e*x3K6eKpH9R9G~7q>|yaOYfz
zuaAWO9X3UzdH-u-=3C)8P%j<Bv@^d_=;w^`#xbO)Ci*+0P+6)-Qhq}s)*@1u*YH}_
zb3giUENz;(g({m!!Fu;;ivFw#>B8Ay`p4NVbi@|Rbp=QaLnIL=Jz_7@qa$pREsL#>
zFtL79r{?o?$oZt&f`!im4`?Ob=V=^zbcg((4#bWNs8>FyMayGqDPAinrLO%ov&db1
zUYpGF%}eUnO3Lx<Y9t-(n`Hk*Gkt2}m#s?MK-uM(-;{<N9i!Te95%fPE??d}|4YT?
z30(#)A)mK@u;aR|&*eRi?L8iEIFFAGoD;cYI^@A<z1*VBnd}{U1<xlh<p){11X;uc
z(oarApXYm|`5a6_+8&>7izq3od`x*#z%%k>+e1=<4(H@$F<*i$nldnU{kKT0Nwz;v
zbHtg8S2w2<!WWDwZ?V&SRG_W*e0aGy53L)&uD4$xOo@|s3U>EoB~w6K=e35Bzf6O=
z;GtuZx9K43y%}_mVf1!h60Il!q-gf9-)U)Gng8=Zg>rXJYRr7SOQ6<(_FY!=YM2%R
zzM7K1X)f|H(a`ftX8bhD&<c$=dYL@9Qa4YWM<?Q%Rp#DP%5){q`6cGdo20N&^%z$u
z&YKO4KG_;&dpir%eyPWnYsYLS;I`i9Me`=ZPhh?X+{3RJ3|hCsdkJ%s#7;tNL~dm8
z(Wuh1{Qh#2FEMomd5>zoW!`Fy4|<wPecZiIcTc!S*;}~7jPcY?hDX&Z)gKofbgAYX
zyu`%cVV9+4hPaltMe?yS8lxA8I?xVhgY`oe9gq5jh~#j-=`}^c<1U;WEj6qoJzh)z
zhn!tD%22p8_n@=sF}LLTxp#~{xDYLb*fUO<=fhex_ae5XkH0PSy4D|(yZLSSr?0K2
zkTeL<jA_;;3Tl95NRMySol*o|ExIv>DM@x0az@T32BQ3-%*2`tj_jnD4-S{$CyG37
z4H!rlEL@y3nQt6*`(QaVcw#MV)#-f0uH+q=jkEYq{w(dm)yv|(Y>ehrz7~H*F<$py
zBo}+-$BoNc78WrCyOL)oZM`poc!&3C9calnvV&C>#h=nSZCrYTY{{*@0`=Vf=}MvS
zPJU%jK^E)b)1xj*YX5^%wrNI&brEXrX>kSzZULWnSVHtv+b$Ss_FNq0x@V}$5nIna
z9%xo%=W2-C%DYsVI1?uCU3=bida?bwgYhpfUbSq(#&X*qcfT}vP_vUkwCcD<Ae>6H
z477uJh^>x@CYH^cu<qaABBO)d?hr$+_0QJ3RgEEtFsl<eVvv4X>v#Kvk;Mz!BjdqK
z7?7Ka-Ulme9+G4OpMnzOP5q$=32G>$W8DG1IJ$05E;A`Z0V^MaY%cWODrm|tH;EAC
zJoiuDe$?8ehY$mN+5(o#j)V@?vSZ@BpWc<T!+#c@ro<z&qa7vGX?LHA*+WKk(Vjys
z?H)Swb~5<-*W1vPX3gb3!rRy9843<Ojw$1X(tPj@>mNQ7WH0}i;}+cGj%H7ir_xg_
zPDJg!UnsgMZyDw^9pYDaNdYp$I2Uk&*b`OR$@_gmZSG5BxRXL{4~0>tLPjGyvXa`I
zv_SJY{ML&z;EBhoEOq$VWy^fwoh-3+u`|XZneqU<u<nr~in*QOH2atLPl<ddCcD#*
zoE?}w?_~XXv#oM~Q}+3uVQW~Z|9v$UWowNUOZ^R`qEZmQ0OU01*rQi=iiRCX_O^aD
z**%@Rus}E`Ql{jy;c*-5j(Oo0(kr9eo<AzMkJu$$DC|3hr3N8Noj!ci5r_f2vt{MS
zW|%JUN3RP{kMAFhJ!6VRfogIJXO`jThvMsa%O-q-^!&<GOJ^r)mWwFP44uo{1Qs_K
z94F253#S?=I76=^7$d1uS%?CAy(Dw=eP8DIv&+wvcZ8+pbMG(V5{zCdBYx?;?awKX
z*2EA*K@o@hR!n{PvTLM$`ur917Gxlx16Krp2Irie508D^I4Aye3NFy%9BMg|Lt9j@
zEB-xcWQdmRiNG^R&DX@5W|T~*pJ%JVW?=Q`U?5GnX{$e7C;3PF-2AI2C56l$_mqU~
zh0l?1+IJ%B!$C9?f^DGlg}tkJqVw&-zK4|f#p}WVE2IQ>!*6zGfqJ<V+~E-zvTXhd
zd_zF*?C}<x{QBdP9FUK*Ho03`Ug7nKR@8ZWXVze5t=p?0hLtAy5%s$noTpHR%u6RU
zUM^W2ObLaTLR;DFCzvlo(m&{}f@+=?5QQwu#?9X7)5tXRZHIU7B4l537u$R*@aA}*
zsef9a&wIZa^ueksY~XR4UYPt~mzM0cCS?T(?S=R{G!Le##-mr3FO6)6Chm(c?l;y-
z0^i2>X0HchHi_Zbsp4}aA43EekV!BG<jSVhu9ee6Z0-3coHx6y8%(EOLCD(!D>Wg1
zgM~~?#hUzeEfNq;8CW*qmqx-jsq}dClFKtoJrF2XPSHp^ChGM!p<2hdxu%5<o#Wue
z<(+E+h-l^Jbsmq%U-fRq9>wbNR5vtzeMcMD)o5({|NiXi%m2t`ia-4)mXFdVtJ8i@
zvI0e~Hy`mYRFC16v6deJsqKah%TuG_L=tVe%*+S2`g+%<Q*`wdOubKQ7s*o>y8edl
zk8U$WjhwiR4e3y@y59uHz2yGXxt1+&`2Ne9sJMNEA3BdC08-cAPXE61c<Dd!@Tne;
zf|FL~=Jv?wllQ5AN!zkM-TC~=#}N36u||M*ux$4-);{82eH6&yfgeYI3e%D;sK+}3
z+E=H{C^$t0zC{|!k#+w4^yhle{E=LM9M(3~i)}s~%dQ>gR5KKH6k4$?dSnKW<?}mP
z-wsR$Vdki;4rP*tY=>Eimj19U^{(RGRWKC$W{+{@eCq<OdsRWxh1UCCj9cf{g->pD
zN@2$b{>z@9J9Zxa?C+QUlh!VR$M4_y-}~_7q4s<=POUhqk(#O>w!BI=@K2e%c9-Aq
zK*~$OK%EaFl62;GRW%MTjH8TIPnOaBE`!CD$jg2CqH2-YVB)NC@$?pBN6sqrkY383
zqU1guRzAwOm}ZBoFKH~Y1!30(t9-U!dma<pPHPcPYeGWe_&^%Wsz$1Qtyy`WW?U1?
zizOK)scvKVX`YOr*g#z#Vdk`X)AT@FSmk1LU56HjJxz@^PXBRTO-5iRBp=Jxa%c4G
zXV+#JvQ+LAv1+0yZ_MkHv{tXc&$MJ)j7jd?0ASbfstzv$c$~Khy!P4o*gIibAd9zl
zS3gfPAfh@{9|KzOz3Sp#Eg6$#&2giZtX3g_{JSFAu@WnZF-}x{)$_3#4lVydHXfwv
zR;nK=2muw;J73P(m6y~FSW8S`gc3*V?n&f1$d8@3BbnY$!r=7`oIaEVvA*{~TyLL7
zluVwm$eDpPGT=);ar8XJ2%*o3M!tEzY4^l%a2%-WVCUq3``EM4<3@<!UZE!K4bKIv
zuWv!H7DEiih9?!A9Ln)lwKsE@{;$FVl3>0qD(x-j7hF5YF}r?(KDi?AjYAmo{7X^l
zcD}NGFNn`sNl_G+Mhr^s%#?1y*y;7jA{R{8G=4Xz)TXJ~w8`Q=!SD9V=<&GI+tc*(
z1wwSE`H&LXioOT9ygL2XPItzGOs|12Qp^xqeFnVYRYrek_vH2G{pGd>^g&i8)1S$E
z#7OY==J^ZsG*-z8nV|X@XT1w2#)_R!+jWPMMDhpe3CJMFxmrbWNC;A;fNM|}oWfhW
zQBqoc_}ba|djWh{D=GNIF5<%mZDe=EC4F8A{W)&{)@s@T2tR683uIk?Lw?;IHug(b
zdCbcfTg{tnnR@vh^{~(p$4EyI<htVciAF!=kMg-Xh)M@JZR^2^ws5lucUX5DnHlj0
zJb#Pg%KRcdo`_gh{49fhMXPZ#PtGaG>0syqYC;&B^vLuWn|>fPo!P@xg+ll2X>RFc
zFo*;BWX!jrapA(msxP%Tk7}d2!d2c#P(y={4w7SQ6Jn-2+hrRr)>ixpAmrC$y6v5}
z^>ggoU&Xv(gh_5C1=Ufkrge~-5R-DYf;X_8cQ~?NtFbSWLGT>7(7^B=iynv+>R#(C
z&K$FO<V>7QS=DXEzWZ*vC_q!LO}-a0#xYovRriw}7vo;yfVrS>VgDx{sl(6C9bR@-
z&xVIUQCd;^(h6bWm2ye#4Pm-26z^fXM|4eD^Kz1ny?JC*%=|^}Z@IS0ZZln|l^uaS
zdBog$;=FsmS1V;^VzNNK1b^A@o7+iX-_ZY?0o|bW_|pd7Y8h&*X`fc3D)-#Ap0>)(
z(va)y`26;4;SuYm`^`3;MuRf(7HJAk@xgzVew>zZqM}wGnt%V!=F=y29^^xrE*+od
zlTHmNo+p--TVM|tP_5{0LRTGfUVa$!33p3BKT&(CG^L^wO)ng>WnzC;JeWSTYU{80
zQVUYg_FM45c<$mf#;w6E8{%d!#JzlL<(sxed3+hHvo>^rw>I=s=N0o$9jDgZ%J=bU
zAA&;zBfqhpILzhr$@MLOfB5zGpFeoa5gQ4Z-$$%nd%Ni-;Mrep{yi}K`tS0fOYKw<
z0%9K`o9?kmjaQ|2O5T^A;u|1IM%gm~!+_mV6$F{e>%4Q{mEWUi=IZ8oZ&o2j-#5Qk
z=J@{H`LTK<{JS((VXX4PdFQDolWVHG;nz=(HX%OMN^1Y(nY=%(nsNyI?k;wRJbje&
zeHij^_z4N%{+#;cl*5I3F*J1z#YtSvK--J?sfPZN2D<BXEyW$t=0|34^gL8BHwqyk
z$^`8cCt?H{yYu%L9@nME8zs_X)ctd9Liex`UlNSe{gX-hxfAu3o|;+Y*rBne?WOi&
z@tbK^;-sR0J*#mbN0p)G3jc`J2NyPzEx%V&LAS4amquW{Eu%c+=BWL(pa&$|aQqF{
zcWkrRII*;~)}UFwT2RVSeyx3EjmQn!AEk|PCT)b5Xgm4a(prQ52)*`^ak<#z$v<~W
zL(b!xJ7Z*Z1?}CF-G4CSL`+=R)<VigPeK`}UL<~gXrRNx0o3EHL++}hnDT|no}WFJ
zX2yd0+DxW0<Carkzp-C;*C1Gviq@!PkcFl>Lly(XhmI%A+?namw`6VH=5VI{-IFcM
zAo}2Q;^ckou#-M-x&%XR5tCc13}V}AQ&eJD$Ii$a%zSf2OQL8fapxKp-zSu$F7?a|
zS9-IGlX!l`nrHHvgM+DME$^4RW?p4GLfe&r3uF(XQy^9?Are=df{r#tBywHSFtYI^
z2w2KBuBOST{J{3rT|q;xeEeKrRgS6Wr5P8P{3)wlHep{J=2&EJSF?3%b~&Y?@8zp+
z(3caDiYVP(1BO1PTepVK-Tryy)mz>bzZyqB`otl@yUFjYi!a4QjGKBC9h*SJzk;@>
zr$w>6nd-MK=f|$#vSw36?U$io@51}y>FNbJccDPAT3ol4Ek)I35f|@aM10D=Wx3zT
z)?HO;qk~P^*`KK<MxQLSyTj7%%ZB}NoEe3VJYWCPIOPrI3VP|;c26r$gt2P5lvPFv
z{EM{G6IYd7Wv`W!0k{Arz{EmiOQoWxv80BK70aaT9!OC%&19$y$hIHL!@S)jU!E)6
zYO4I6H^C6TzB*!ud<O?{q_zVCdyetFcsXG&oJORN&U3;@Aag|XXMRs?grA(hyp0lR
z2oFtkpFO)jm)1BWu8-AfG=o=Jv8%u`h>?L>1rgx0KbcDs7l@{VyAVw=X=7~*H;Ij1
zC|!7BJxnxmP{ku(#4CRZnnp9xo{vO)Y6j+*ym@iDbw*ARB>CCqNZu__1*?V+Df{>d
zeTP|sT}H8b++6i@6(My#Cp-0V@=YZv7K=z(UR+Cr0YahJviIS!n$E98o9CRjIi52#
zG`w=w9cy(-F9YPO__P*A4m5^~!z@9U?Q-ENwg*b>oRpALj}@?XX?`Gy?~QP&H)eZG
zj+Gc(WsE0^THbzs{-A<4iDA|rtPyadv{h{Zt*~gJjL7d>o}PR+dDre?m^WFFq^i~B
zl`YuM#mEPh{!VxYMSI;9K3*+*Y4SFO7(J6jnyAh(=YmaJ)G6BrDc*5l?~@&};S|5s
z=H@eoMuPBXSlKva9LpI$yyxI?ElA4rXp#-yM0RY=DM!L|=Bx2ydd6N!ih5N(Gdo&$
z@0>wsTyE+Hcc({DEMxr~P2I?R^)}`ejUX@e7bR?>d7BG3i}8|oVHh>IMA}x|vnii-
z9a*(=U=+LGhAMBeslmP#L2q%IZJO`KVzfbni4)FA<T|veMBzB(bZgwIK?cXY-Mb(g
zCg&GJN<~fwbBz#K?sS1|#m+f_b*y5dU^mBc@P~lu<}I{Xp<~f30!4FW^JwJ!c*{c*
z58YlgbAv#juz5w5O(8|xU4=d(LCa+>N@4V4@YiJvupTqZMlC6^17?C!n9n-2bjzk&
zqYe9BG|!~7vsg{IxdysU4^<`>)%ltyXM4a*1zii0l|e$VMk1uIL{G_xY_LJ86D>=H
zq0`kWyU{fHV5GwGWe^5)7?*vRKOvA~&RI=66gOHU#k}beD)c)6*A5HKNrpXmPp!{0
z0^56PTCQ1k1o$f{xl(QgHq~i-p=WVX>cQ`Om0~EOJ}yI(Tg$0z|5wV(E!)cBhmQ*y
z_z>H~tv2Z^r!{H#20Y2pgTHZ(*u@Uohgd)ruMWyzFI*F~^)#t@({AjYcfPYoXM}KY
z9+=&v$V<>_e!}vu(;_jw@&-dBFjifbmdM(|f7e`^KF`2u+4A_!WbAA$y-L=hQ2{bu
z`M6PaFIWAilGU3<_;>HOsmkxHJ|XU2z`gXq+m4xqX<iM(7jskV$Z@Ne9Bdo-S3}Y?
z8=`_{HqPEv<bdTlEBeE+b{*K~3{GxM<GgrqoXu8zS}=e7yz9H^Tz;Ldp}q1QvRE7%
zGgr{zG3PjZ%qHei|BtBC2oc8hP$8Y2V<eUxJdO<jg$5#4P&Q^`>EU|*SG!9h?a1s4
z(^K@!mC#G-!%GVX@wk;bULv#EO=+b%3=?FF{L=>L#162>TjAM51|8Orp~1m+?P7ka
zdPUicHOc@Jv9c#bB8AEi*)@a8CNm!p(TD}u<MN#uRQFYN9aZE&jb$qeUL*(5nol58
zN!31mHRdh8?meo^QR+#~i#Ov<(=)Ps#zL*2-9(~vJQdP7IFG#%40a8wlf+NIXxZtG
zQ>Q$piFi12B-p;cV{k~dlVn?f${U_r4KMqXKOmG=y1)0%C|7zhu_CHD-jPOh9Hllm
zcE3h9%KR|%r%1~@)!+~0Yyu|;rfiwQg}agEZyap`LbSl;!3Gn9V|G{d2_4bUL4%2R
z=|ZzxrwP&Xo9B0dWnDAwu_?^uw}Ow>azLzgQ-$Uo3y>_!_)WHYmh^yoCe1#4DPux&
z(;fV1)$FwDN1|paXmyHGkl->sz;KEX!mLl{_s^vxu;2eIPnDok<RSL?xCn-IAoE*X
zkSqA;vp3ER{P(PgOkZ$P5NR8$-~nY|a4<$tuH+Gfh=s+~jq&l>;nc(!Yst33Ec4u=
z98<*$=>q9y@=yp<c0K%JNtQJTk;u90B~1NFh#5bDcqEk@d^W|Db1@cS7hyRvAMa`u
z8i9&50#|@(3;IKn{5j9Zrh$Trc=5=x|Dk)>;v89>arL#a=};;Su|wS+0wy-g^365P
zempP?kyGUAt|%$d809Uy51JV@5(xJsQQePa1GA1+ofFPGD=@)Sd4b7$iTfann9aIn
z55YUR2}|1W25=5V*<Sk&S8&hqaY!I<k#=%XOo$MYvty-^-7-P5cxL4omM9ktsT$0O
z(1`w3dHBh}4k{lxZionk@{6u;Z^j287R91qo9<Or@WRs-r8#!nds%69v-ReVia<`J
zZ#60^208Zw=^NW(2uHd9IM~3hdk`VWi(cgo-e0114BKVz)3#`;FmL*VT2IlEag3X5
zPg+oRnFZAtCBM0Griz4&Gkp(xC)(r-oc-Tnt<x3x_hJ+Z%IAlF!EJEQS~S*{$agAt
zzH)lt|7OV==XtjN2=;p`guBzB0E9a|30t^rZ&Fc*mz%8FK-TFP=EQzYV?=c}kGV%o
z=NV4lx;cMQG4XZ2siO^+a(SmvbRNY)&p%D2j78`)I594Y{dj5GTa;Yd9fhquNR?kl
zQ)6>VAbjgL0~PtDCH$3I#Htmt*d^ugofou$9_45@%N)t4UXO^qC2qM`q~RT!2Mo_|
zb<~Z|l!%*08qF@@)Oaf{#?&#k(0+U)OtN79Y7pcIh(y0sZcJo~U+f0{erR6w21@0>
zlpkp$!rvaVciFY8jX$LFj1+qCH*FELBFealB$2Y;ICnk?k@?fA+{LZCR?M`s2~48<
z@8W>M?=^(-)QH%Sg<Y*q`mXUx$6VSb3+qOcSDf1=7$zs%PgdBLYu2wQU%=dR3hc1l
z87Hx#w@9t0k=y$fa?~8{1ok=hxNUfxbjOtad{fBZxlVg0$(^ry+MJZLbu4dB#~r7s
zUuq@2+I5+rnaWe&A4cGFhEy3z>MiZ^7Y||6vARRs?vf4KdZ2UYF4)B_k=T>TCWr`z
zU-rS(t3l3=CtA#MI63C0W541mc}9EMuR+sS;Fq?NY{xJT%_dC$N2cmDJ9{|Yw(J2W
zkJk7dAF!%c<cVEEkw3~CwII;PY+L?DoK3#Xz942gjii`x?qUTy@C1?o>r*O`2_g*D
zyP0Y%=a-Uf;i76*RUf^|hW4}saNwKg#5^3Blh%qV8D7PFC9C66or*ONe6w?R3zW%;
znWO{be;5}VVSu2KH@D+8)(dErt#HNqBwwOd6{uI=AaYQT;<=m#ERLaW7MI4a>Mz@k
zgEZXduuY6<{+2%et^*=<W84Cj&GldC6eW);3fhxu$F_B3&p8(V(mD~i@boyBbKznP
zay$c3%;9pVj3?aOtT7rHi|5!N9`fmPSPFicx)QwDGFZ{e*(uvc^Z1q%hQsB=3lR@t
zt<q4+ZGO%HS}bOuXE({QaQ+IO!X3;7^Ld=oJ?~x1KlM*rc{w>FHa1o)jm|W7qz1$W
zVx=q=s6)>12$XE(SmCLd139oE6cv1OtmB2W1&unRNuUab3V&E}?|E$|yd_L4(?cx%
zaAV@aTeMvX!w?tuCc>$nca=<c+F$V)mF-l-RSLTigd4&fPMx_*{&pjR2APx0J7Z#n
zS4}YNs%C_3V9tP9((ECAvPaC2qZ>b9yMmEpR7itx`{~h&Lw<GRyYrR=M}}~NgNtC0
zK3J8%BnhLS>yYAUHf;Oc+!Nb<6lKkqjzr!>B7xYgzKnM>=5mq~0#OS$dc<-l$vScN
zil&(jI~_tD9i*RY?t6nr4yh#6TXO5XB4<SjTP#1{Gnmln6s3cMwwmAq)vBtIg>1?-
zIgW~ty_S3!3v=Nh7pXmi3#TYky9u!ie>UbU@3wEBsG~6j;nM<`X^2eiC|DBVJb$Jn
zsaHdU3$+Spl(&_AgI^MkB#Li#l!&7z_PBP(%>7`<OzVk9^7Pv|T=8lCMz!Mv&htIG
zex=MLsrb7T(sIcu*kBgPn%Kd3f+1OFcdTT9LmFs_(Rjv#l|dM2)$*H9NZ%+U;-tCX
zs^(1xe732(HdSRiC?|pxQ!q@7<R=?by-9<K_ZbXL^2VP}f!}=8;EJ-m!`u6(S?$Vu
z8=JmOetpffD!^m>tfNBY5|GYzg@w@M!otFijl!n&Jl9xf9yRF5$%CqbUqG&NzEtrW
zFbnOCAI^E-f1!P34X_!BJlgcg*+Kp$hgIoaQDwi-RA;BTCSkxF(2JrB)>C6lQ;Mv0
zV%(wGFs*sV8o)DG`r+iSYpG~?tS;NC>hez6Us}-;K2Q`1oVmA{wH=*9uYN#JegoS7
zUp=&cF48nEHmKRdZ}`9V-NSc~7CNqOT0562x2yv#yc;i8C0Ziztr8c_!<5?2xy>Jr
z{)!LiebR0>w<$053km<7y~A71whtIg;h%u)!Bl(x*dx=&E>}0PZs4u#v5yf^tc1Pv
zXE3jlR7UbWPxq)es)?9mL+jBUC{l*BXg3JIww_%3^wF(k-87{^<HVUYY<7PQ>1zV^
zsSc`rp|j!%F2>QPU7j9LO@FHIe_WUM*<@x#Nt1$dpzr;F``ncopr*;XCaMonsP&+F
zXDulcljT~&6qm*RcQ)lI!Ewxr?&+*7csJ<J>pP8`N(j^C0q}T=B&IR8|4i?s)4ONO
zXh)7tyRdT-d0LkzpclGYJ`_gIor+NQL~govZO)>J&|F_pgWMV$XWfC1s^LES9#K4x
z7#f)Lc)hYcaE*WwNAf3W%3qbp*pe#RLPG$?De$m&-=r2L<YF9XpZ0uw4vx_nW20kP
z>Z<v?szj@?#}sxTsIarx91H@jVb>dGKY{$T1`e5?SX$f!KHn~H*fy}V;@{1o1@Tfo
z$B5?$wm~Z_!4=acX?%`<RIp0?fbAfsQfvn$xR^r4bt!ps8m8@e#F0F9{%0he;DH)=
ze%@)zTLkj~Jt*jorll6tL=qr|DEk{}e{r;Kvg<Ak=9}#^G+z5SdH0FfxUuqvn6G^#
z-PGh5VPe#=@bbrkYB~w1uUa;q^-LSH=t4418A-Qm$u6HF{-SSj<@6Zjmb)HtBskc{
zRJCpEj9_EhL943^yY!&1IFk~_<@xtrl>MFvL(gLK^(qbINGYgE#JQ;wH^_@4R;+A}
z<~CD~4H74N>lGAJnPn5aJ|Ie1l9@~X480|7i})^|8Md~$k$oqC6h_P3IvcLbiH&2L
zD-C!@wj;FiDEnnVH7R|_0gLvGQaS{#qtW9RhqXX9S=*Tho$buCP#d{zHr`{Y`$ioJ
zF+rF*yIfGy3ODmn_L#)Bu5e(-fup?re?VJDqtXg7udCWh(mk{vspWsgw1~B5htKrh
z^@vK|SfCG$4K=NGv|Z7h^HPe)3#Qhdh>C8`aOC$d-F~m<Jb9=yZ{e<u6jpaSn70T2
z0pk4w3v~>dSZQdy_u1w(5*4W92GIJ#CzD2Ic~y(QQrE`zZ~S0Vi$7NCZ-cItz`nOw
z1A_iPymS-f10XcpO{+>#yUHo1yA6%bo%##=<8}MKtF3)RzxZeq-8Hw<(ZQj{ef}Fm
z24E3Dixlwbzv->{ri*dexdWz6o365&OSx~1jNDPzI@{yOcJZ&Dx#{w&?68VNG|LBa
z_$^I2U%2u-ZQYaoLC53%$?H$k<dECbT1iVg;Fi>NJgQtJ%a6q?$5>JhjBnAn_SXs)
z@&i^FR>PP~@&55e%g19C*_|;Z!yX})O&0a)9`Z4V2z+reELkm|t_ILHvUwu~GcGP4
zow~4Ijq5!Rm{!)NM;3rNm*sYnUP5kf%O1EGhgn)?dO|443`A9Is=$ERpYYp<F2r3-
zyZ}%~(}KLM?%hPaHg&MK@S}B)aYjpP*NIJl)*mo$VnA+td)uqFlzZ&Ok6GOMgTO7N
z8v*0HP}RMWvj)em@iKF(_WXYq-BCM$yIabm9O4cG?`-J(b@IvEU;m55KP>e8+`Yw5
z*4|N|x^$r`)LsP$WdD-?wm=nrYS}Z-P2<ZE#^M;OI+Q@_j%(`TGtQdwx3jUtz^7nR
z!amLR!++@G?Tc{;W^&x+W1xq&3Vq(r=2b<H9&b2vhN`MN=r@F#bC4a}@;kcv>iW^9
zl$PXk_O#NcY2}QBEBer4{!j(;z;DZazY}m#jt+UcFP{IkcbN;pWM^?bzg2N?+r-@d
z=L7wB`{$Mso$f?#sL6?1DeGeFPZg@v@wOz%cb6`?*&E}I`-QMn!IFuf5M~&czl;LQ
zP$Z5%eK1VRA0|O6>N6i1Ywk`wZ5~~j-buzde-Pz{3!eaPBgT6K$K~oC4QK1u*<&5e
z^H1^r3;=Wy1Q9~?o{_hb5@pe@m+5vFhF3z*3QwTsQ4$2A>#O9sX^YY*LGRmwe57Vn
z*rRVk$!Tu<<aaFlXi8ck?(k@b@9gQrIi}tm+*dQ&0e#v+_cu@8TU-3(j=a`c<aqdY
zxg42he_W8KSKJ+QeELjI8_*5Id#2!In6PCr1D%7l`~HBoZy4};ws#G`$&WA0cYm7S
zHmuv&5AD+?^CznYqmj7_VQ~n!iDmIqrg_KPu(-5ECe7Wrae8dS@0ARoKtRxW^=!Ep
z+?y$H(XIsLOte)la69hLMoBml>1ObWfyt_D(2!mBwVt9(md%X!V~HoQ62c#zY6t6^
zwAqWPzxc;)ybO3<6_2(Hwc-@kT<)z?BA5kBcOvqz+O^!|d<VSWE$05nC!i({p^}=s
zE!Tk8GNkKjU(Rw7z@skBH@K+Lu(UBFzGk2Iob?rxzZZy2(<5wx#`|L7A2QN~<}n=@
z;}eh@sQ(z_Iaa84%)T+3vora9Pam&a#vgG0n!f*5-Tz<?zg07UMx6Eo-$Vrd$XJq6
z@a+mNhjwZ7Tt`Wl*OBYYqTIpb(xMUoRUbG{%FboEN>?R=Ny7Ud9?+tpvH|E9)$W4*
zyI9J%S9S%x?LS`YZ|u?xtzl0yQ}lD+8t~trsCEw_if0Ph%wxUBrJrLZg?w#bLRS=a
zRvd&yl_}VbG*-Si03sHINv*OHyxPCxt5+JI9_yW&xs$CpA+^fw_Coq$ecIo@&bYXH
z>h#RcYH9qr?1aGhTLx!g6*Jj$N7rXn4_MbD<Bv2lTC!2n{f(lOTVhQA$@+MJ!Va8h
zY{$1^plpK~*7`Kf;AA@G;Mxw_YJ$GjYb5_c!^!TN_3_<P3AO%2PjMvlD?Mv|dF>!t
z>MoAlJ#|0jTIiGe03868$`%M8S{eGFB>^j5TdAbm>qu4Z$#m1}rBE_b{xJ5OCkmKy
zhXuKftS>#*dwck>uUPQVXsYG)e$WG&2g`U2paxjcw-^yI{u+ubL>o`fcp;h6{Tx}|
zjR?VqP&RHv{pi`G*3DPq^{<*$=br8+t!;9holZB+KaBqe&rhCUG)B&%0<nMqT$&#S
zeU<-cKfs?FHk~%l0ztmkt0Y7DE&j%4)fMr#GG_MOe0A;h{@m&Srx^nl6ADZTllqhy
z%mH)up)**DV^uEA<YT=$l@xC&{gUq5iuZk{_5B-<<&MF}>CGv(#u6QSrH=5u++!ai
zSEEbJ2J@yLLf^Nnf3<I>>}LGhCb{dv%?|DVFz$6^SG81LU(&trrk5l}UkQcqfroV-
znj8Xn_(ip}mV%KoZl69;b&%6YX4Cs-eiOlEKm`9qIYcMyfjOtfgQ-qgGhXC_SqaWF
z;&ZB6!}S#-Sk39|!vj+dezJJ7(UeVKb^<nA@0!il4|({Um%-n(k$=^rt!aXE@o`FJ
zC~s|(HiS~>xrIG?b?f8txB38;aUxa3Uke>hE$nvUut31WIuAEzy#70tzIkJ&S4vu6
z>4OOLN&t2?w@j7Nyc`*2@wWneVLmM{vtI9qoNWYbsT5Gv>!rM36m~xN=&S21`lHGB
z&>5)a7&f-3+NIf@QwrsWoVZU|tKF^@Zd{D9^(h)9zoYj3>#htRtbqTlgu5X)Ze!0o
z^we+mxlh2poe@l3XPR+O-iPs0=n-GBB+`-Ky0=s~X0_5xrU4HCon|-O&VS+3yx&(G
z0+Y=Y9=x4-4nmF%Tr>L*mfQ30JAehO!^Tp=Oym(lDetkOYKU+Nm~*oQV9ah-DHO7M
zDt(w!sR*&pTwC#F6-tK`P}CPwH!pxX_QtdrO(~2lKabhHmH@5vOggQ;d&;sLbg;xy
zZH+LqwKGqyY+*uBQ5%2m)Y<!#v$lDsAYZfFnE{X^*IDIjjKS^=StrT~;OBYLV1?A`
z$c@Z`Smwxdi=zBD_hE6-3otBzuh{YGSn@fGvw_Vt^x8_EYmUlw@6+vobAvRd4uh&H
zngONko2fnx;sSI2S=SQPPD@H&l;JfpSlb*3*}B>dqAe~}7J3HKR4Zd<c%X49xmKNt
zF}H({=Ivp2ub*Ox+VkN~lKd+5-)f?m-s5OaAd3K+INz?8QeYWYY)2W7>CjAyJy&ko
zP>H|xuPsT^S<P%XSos>L(x%G6?bF~uC*Z8jf|STl|Ho;YW6wv+A-E~X5&S%gh;T#p
z6#X49(zZE`)F<(=Nm6f$s&)ngQ;xIx@UQl@FRM7T8oT7B&<fo0Z7_5kIO;QYD|!=7
z|97wAio#DXtQPO`EViSbX*?gZW^71>spbu_?K05hbQ)D={fF%;r!}j@j`vHs9jjed
z6t+wzHA{W9CAULj-y!K5#H%G+q)z|c5%tqGa<FE)kH2WhUwo~3Z>$Nq7lgk6q5@4r
z{K6@gVnpHZL^A99-AS#u!W3swIN%n<YVM<n9l(A{X4dqi(3aX5>An^lin3$ein9Sv
z5XEfan&IVrj6vs=Hb`Py?qK_yeP)p>!<^O!Qn4<EwC;niqic|FP*N+vD#yTc&is&}
zwMc^A>hGdYxxa2_McG80LL^k(RXyTa=oBC9JzT9+)utx4`DbV*x2Z2&B9yjJosN){
z#~|4W&SIjxKRjrd$#ns%BG4j4?zh;P9Aee-IfzN)U|uBhH!lugBkiK{!YX2_xMzmj
zh=auzr*`$ssFe!~!w1Pue&eYU24nZibi5<=Bk0j4JkSQnO^tXyoVSeMPMTMqur(uQ
z%-HsPT)qetFgZ1@V()<^FMd4`Z9n+fcrvc<aHCcCaFFb_8?-<i5*HR)A8Ub2iFur&
zkD1D{{=;4IfN<UQ4?;vgU6;qu=Mfc^#1t=$fF4wsub<O72e?tdeb=iGGA7x?{9I|W
z%u^!*lVBcEG$6PP(8U(ip!GOrYrM_6iMyqp?<%}mpKFK5sQN7jtvJq{;ROA$AeWG-
zgq_9}ol<4+kP*W15<d~>T=aAACB#-OKneyWbTfwui+VHF4W)scXKE}DEo-mFYtmtm
z`Ch_z2AkFkJQhvqw6m*qjhYKLmVa8gch#sWD=X{U%5o=tdl%IfYeXD=Itf?N({p|%
zml{+(uT-#uKXC2Sa&xUDrIw7ZQR4aipRxA-p~O!o@0>CLD2Hkz0ats6<%-^?4-Mqt
zR|eIi8I_-9DpICql+kgF*-?4ltZJ@9)mT`2KgG)TNcdvBF0}Zn-U!ed*M75;!%Zyl
z9VEmmUR-rbl#}fjT4o6~U+6(av-x!lVh>eNYF^3%Qm6HH2-7r#XI$8~FjW9JXm378
zGCc?hA1u)+D*!cNJMI_hL#IL$mcM|&PuD(xz2gKXjc0f|O3yL*I8ik*>&7=;fwiIZ
zuLlf6OjeB5Pw~g9MaNjt9;a&EN|)HDjn(h2h8sKG?DkQa;+IUr=~02br>;|4W~%(=
z8gb&rpy5>~Suce4SY)<+KPoCYAZ<#@Wj_pAO|ceEJIQRZWe?F41u(j1enE{yjN5IS
zY7gZNb0O*O@HmyNe-QmWdcW@xLubi>g?-MmoT^2}J8oWYnJV#!`ttbjd3WW5LRvjV
zyCk$$n+*04ygm55!3LbpzFVZZ{y5lB;>edcl5jTJ15cN3t~j4?w?^#K>v~8GMV)7K
zduG3c_KJ%RRjBHkQ-cKg2c(>ns+fty-BY1Y5{qEj#;$1l3E(^eBUCySc-Kl*+cdAh
zR-6E9gQu^T9Un-1gSyWOG^P0EY&e=wT0oel5VLY_48`A(&`(y4Efzp(_5AE7*vMr3
z+}!H0CukUFWFG|oI<PQ5l;tj3)DLKWTf~B;yMWs7aCYMyScln!mhM{Gb;e}5Br3-4
zgqX#RIm9Sye{o)s{M;~>{*YQk9At;p3SSmoSIHmH^Q?$jwVVmv_ieYbDyU=0l}JQA
zht@$TGmtNDE+B*f5fgAa_AZ)Guc6eI2Ac*#b%A0=)&$EotT?ayrCVgDg3g2|6JnCR
zRkiIe2D2LDRVnqCs`ER22C`$|{R2I3DEUOw_B*|!Ep4k#>Sa&Oa)tt0uNG|&>cUZ0
zZ6kIY@Jl`pV6aIojz2WE4fxUDUMBg~`WJG#huTC<+&zRyiNbd%kCtsnu|5xDl*((e
z!4q^7)s?dfMSN5!O7Y$W9HbJ)s)e)fBl`D)eorh|lN0am5f9w#uU20Q#Y&IejGCDI
zI`?ehllwpyr~A%o%1q0}I?B<$rWxmRA#abd`cr2%_GQ)>mL79FAt<c$L4+K_{D>$Y
zbtAbII-Lotx&;YLCOvhl4kl2}TWpL%TlN=>xjhWFyk!?us|S;E;(JH)ykLyV^N(#A
z!%;>sP|vf--7xQHEeN_#S<%o}GI`0d%pC#OZa4P{6b~W5xq8sz*p!+qrhAiN1?Og$
zg^oUFY35)hlJ4gY`b^)_qKQ4oE^7<!*vcp~51Ux#a;@%I<qkL}ciGUoNqBa_qII@n
zznSELQ$x0$$52skHBx*wsQjeZa!-T`Xp&cR2!8Gon=H3Hl1nXNENl%7u2!8nC|{(S
z6?m(nwKK2->@p7g+}ts0fv4o_hURm1;^-5MEH6G$*-S)q=bVF7*Tx(gKZZC&xJa)?
zYC+`7y48_5!%~BQLVmY5-msz&Qry8<2(!kJ;%AGb{vq=C!*^~B)i%KU{Ay5-3c82=
zsqpb%53;#6<+SV8G}7^qQKz@MmQ9!16jj+-90%N1@EyfS%b|vNm3gmNcZx*pVMo-?
zk%Gq52iS}Ho{0Ja!)kwj4#I$=5JMC9P};g0JnTJe?Yo1iI}2Z(J>>mb=dSQwNF^Li
zwHr`;?TgQ#X6<Ju@1M6QQS5#^at<FoD1=0p`-TKWOO&QXI3wd~qGHTE$R;=H`fbbY
zmGWD4)&b*v3j)3pgQw&Vauc(es#AlW692<?V9PxCepVGlF{;0#nkp4v7MHdaS3GEM
zJdfs|j>I!4j;s_CMKO|cXjfM`&_gA9tp2ug__?rT61RwgMPqgB^exu{L4~^5xPbk6
zB!E)+7Xk^dzQw)YivFZn;Zrc?V5Lw8`CW`QMx_U}Y=s|dRrupsEJ!V=7XDpnNdL1n
zP9X>vYolz_#7adAQo(q18h&&KrtV;JU8Jp)l`K9cg?I?hV22^}%giYB)T(?+o1A%P
z!F05V?P7rnPxpOHJz(Q3qMtcp(F9*|)2BxT!TS>^Vf~4Ls*#q9FKoFf{n}%-@SW(u
zM5ijhf#C56Q5}aCrhUYmBau!WJ1q;~!6bl*kwFFlC=oTYASeJ)8-+V!XeM~LIIN&?
zA*8|VeUV$i=?~)3ZGo1C2o)o-3T{G0?9K-TWNYVV$>?8)hdiW26$~!5z%9aeig(9o
zOCew}qPG7!?CQYSlKNPoryz2xICq7LW!qMnpu$wCHPXmK;|?=;c%(x<Y3(Kfp~t(%
z+`2)5h@K<(j}I%XU2QtFuXaCfUiL>kmbWK{R2Q_fn{2Y$8)}C^#Z2RaPapV-8_--`
zeQ!A#Ef!7?i9%N1okqdog))>Iou&34XPX`X<k(aYfR%D*Dy=FAWyy){HNJQ!#(=xB
z6hStKuRh4GRg6cgYD&gDEo0c66;CnMT=kyqADw=@HvenFy_Th_09b6vtwyOU4NwQ&
zons>++lS@xJH|$C0Jy~H`Rljqs1;%xW|`w7l@|}4ncLlnv&m&gOji^Ix)MU@`Tc*Z
zG6|_J%A(5Bx`DQopvr7UC8vNs&?#Kf;s}S#Z-UJX#hiN;J$9xHif_n)igr#*bdW(`
zFj1oX%CN9gwL=@3rAP{n@OOP+4utC%u4$T>IH^|b0qr~`lmcf%)}CyK&re&&#zExQ
zAG1(e9GP@T=X&P#EG9(jwq+W^WCQ`xCg=N-PT7*~^-Xe*-O1RCsxW9S>h!5WdCj_$
zvaQqgJOMv7;ZP2A0Eq<_O(`+fr{wOsP}XVz8fh2Q?IozB7G#MnnryE2aAKm{!>wpj
z)-=Fh5ex}?dUzu#q0fEIo1(0*3U3b6LqkS&)w;!vQ9w`VlvTw51o5aS^A1Jx#BB9R
zhDCh}i7LiY)bKB?;RBQ0)ER`Jilswk!)@CefFO{AjE-?SU<jea9O6TS&$G<^JOC-r
zPzjZ7*-XLk%n5(x{pR7XD++Oha5}=V7bDtD#b1v(WJdJv7=FRU_zK>)J+O_5W>HU6
zORbyyI~1bJ)zuxweM@khRe3@~I98jict{!Oaz#}lQD3v;Ee`t=gT^Kf-bsZ?U)rV4
z5^@c5PAg00F)Erb;9<JY))WbuZK9DtEsh%zR8wh1BgCNO>fTZ6@cT<eJ?tu?=a{SI
z?OySDF=9HjmfXyU#Ln%GCIj#{HY{4RmZCB2YA6FwCjtPysA!jk$XljXX(v}c_7m6B
z^qmEM#`v~u_h!oeX>Bs?{_0wD*rik}_$`BLHXf>0D=X5zAzk2djLlqiXS={M7KnP{
zx<RJ^7X0WfAna{bU4NY5n|ol0aC1;h?XR9vuboT?o2j+SKkQ9*t_}&kFiSP8yWYt%
zugb+89}PZW-J~9&mHW{1BU$mim9SyRV_WLhzChrPPTk1f?bFlsg0@cTd6QGt`RzrW
zEL(1#op1ct1OY;X(6el3>!!?2KTc*}j8pBl>&`BXw|0T0ArR+k3c7PbhnKnjr^II%
z-7n$`Jh6$A`__IWwI8Cp-l?~5xH3CP++Ny@uF0J4P(U<Q=0Dq{FBP~_tSO8T!0#w3
z1aHNC@a18bT1BKGAS9{Jgd*xtpNQHsW0OAMX-k4|zM~G;EBvG4Viv+q_dhzJ3aw9d
z$J~vV`jdhVQgHgN5*IB_l-&vJK9%D~QRvcY+n6KmZ0;8UYf9x)$7#9NfNJ2_-06O)
z=-(Zsqfk%{tBbn0N%q?eE6iDZ?K~K840^~~EEvQMM(Om5blX?x2sbgMb~q}gckH}A
zgcNFf3c<8}NXeqMA(vH%oNl)HP9<RY-qF*Q*8YqvAK)iKr8;k6!Sx(}K4yNM8Bg^n
z^hP5{lzf}M!jI0?Sj$_MdPUUYj$lil1}!PGrF5h_CrDZau@;{jP(09L08tI3+S^5g
zrMTsG-nL4gBTcnMA1SU5o~k#yl$p=~@&zIWQI`8sLPu;{H5aKPwvosjyMbT>S5jce
z?@{g4B{KYPK6N2JjTDb+c()%0j(A6UBiq*t^mV1b$(Ge#>j;f%AMV)V%=G_i{bCu@
zNe?Q}iM{MBy=O)w;go%iQZ@?$3uJ*{#Vx{3<d+;!MctvZ22XG6ko8=#mrqtz!_j&>
z@R_&l%ljrz>-Q=8PJSIu+RKE8oVMG<3e!JSVSX#;3qT^-_pBe92!7A){cES9Nkd6k
zP7))ta%QHwZK~g)@X*3OR0YufX@`FL+MQ%bG58CMF+9`lk!)Da!GVW4OO;mTlrkWu
z^*`rchDSiGn`}xRs2;UEDBNB>n%oPG0^iZ&C8id4u)i!VFQDGkzF%DE4|JZLF)n=C
z?G;3SzU=35^M>2>tzmw)StQ=-l3hB<^LlqBo*h6R0q#LJ;j|4A*x{(HjLMO|nX@fd
z{acqTjBwG6GFu-@RMg{;&<C@QQA5XUa%XmqDM(0(X!kIsZ?cM97y-@}`UHW7{j(Wm
zoQ6%k$)mgNf|Pg7=Nx>1#KtxKB&Z$dVOi_jI6`5N?+MQmc`ZJc%qdihA18S_i=zfS
z5px>tWCOROWxZ^=G=Fo6O?Q>Z3$$J4bvwXSqH-vSUEV?(XWyBxP>6IbJ#Wqt*?>_y
z)q}6IIR2-Av&J-4i%~pKp=P_(QX&bybpqx{=0n4f=~>yyp|)NOfI`<T)(}bU!;|GE
zM{f(4Fj0~RoFN4_-ehVRf*4x8!!hTA@R<oXid8Nc0u%*_HjN$KB7dgs9F*lbG%-VE
z%^mDDDde*+#H0|SjaV@nQaQ~g-Pn}iE_HO1BoBbM*Bj07>GvWJ-{=PJk5D54Bn+>j
zXsD6WL}?N@o}BW|%;^mF&8Tc;$V|gU6q?rC_H5w4>xSL>1|fW_+!3a+V;qk!kSqac
zN{-tF2modG&0udkbxLnuo4w9bT=r`}XK^VIfG!Ky&|cY%4|t&h0Eqzrk;rB?WhXKZ
z)*Y6VbJ+hF%NKVKmb^=m)0&Iie!-=OuA~OtthMwO@7u$={htaG7H$Aan1Jqc!Iq{J
zxC-_+*3haFOAWic$PbWfg%1F_-%%Kv-alN9o@%coWc^W{7<Wa0nEH|b8HP@0gC+Tc
zZI@?+-nnZ%`iGsxWfb#{MMCVb>NNJG#@40$H@sI5s`B&mDlF-KGqDD|tTn+nHUk$B
zFx86mjw*0s_z8|T0AZ82Yc;xAz}Gk-7VOUj(EC(>PeD=W<gDg#U)%xH{~N#;QHx}U
zDX<fq+^M5YG5-wA8_hiqfC5&`HqL)Wct7BRW2;`(n&lErqI}hK0HVmKIO2q@O?e-(
z4YH6j-C7VE_?)K*8EQKC$APV9@-M2eGg88{WtO5c_C*!<S2q~7Qs=K)pkK6MYtZip
z5hMRz#D44J{~_Y<ETU-tsnFE(({TVW1{7cgO`$cP?Kz2_Qn1%n`VH;Y_5_e?=r{mN
zJuDFdsM_Ib%Gcu&F7dYxRt5kX=H=Ln?(#yO#1>b98-QXIP`V=7abC1^HS=u5P6Mn`
zUX@faaU3>^^TIFQDq+u5&d)XSCsy;v6qZL;{g)n_|1Le69#5m@YcOb_N#6v(JHSv!
z0QW{@n89c@;6h*QN*ys~>44PC>))va0T3m4VDr5$?{5~VAM`CudbX!&t;Vnp!%n#T
zH$D8k=b_w&fF)PQ0!q0K#BblZR%HZ0R8G4>c>2Fvo5TOw+FY8yl%lKDBU{&3te=58
zi+4^ZjMc28orPqVW*R;710V<VOszcpSJ$a>u@`y4e9z1ElELP*R>yz&TF4(|)(;&s
z$ZYNg^7tgTBdi+l$w^?-HLVR!9{aYB?D(y)_HR`c{PoXi2SdJ2`&trdOQobv9W2EA
zPbJ}|li*k^B0jg1I-<B3r*!={sK?f6$y#aR)&hJ6BO!(4pashM*Yv6XK>zcsn?U1<
z%nSgE<ui3(cvpA?s_z*q?%nCc&Qw+u;8Lm(o|jl0?fEsq3`AM<0{wQ};mN42;#e)e
zWW8_2r6WQg%|m32K2V(hw<`Ph>qGT?_0CZFs&T&RHE?ass;`<7wT7_w*AyJ^iB5;8
zLcjCDEcKYyX>p7xoJL+k-xN^ansRqfKSS!$<sJK1ZxgWBAv^lqz9CKSO8NF6vnr(j
z-OMQxsJgfCOIADpc@ZZHYD}CTvgyBdYW$nj=eMu7nLJ`n7Q|b7x1LHv)b9Ov^?zkr
z5L@bvMF#fxr~y<p2UN<Bg~#m>SCUj^z7{`#7q^374u4Ti1sX)@f0us$|DT)v13z+X
zWU}C8J>`po6dK&uePULqO}>S5_v=2t?jv;545t6ZQ<upfJEasR^oxq$i>sG@?_m13
zvWx%Ie)WIaul}vuuRgf<e?K(_`ZQuOV`E=i8TF(Vd_-OAV*D3w$-80Mbad;{rVQ-=
zc*otLpZ=E}cWWZQ5J%V1N~)#&kN2Ei`G0O_{q3B!O?w`=9d%^of4+tC(|@Xk@`p}C
zkS?!_wvM;`Pl7Q!pZp^*=D!8}qfG*>wAK;MdLQ!tWKZn3|6EV(wN6Jnhlg1MfqAs5
z=Czv~amTP96>j)f+TzRYyk{?Z-=%bH5pVie+SiRvQf)=k+8vfnS6!GjZ3|v&|ApC!
zt1i=r0u0?y%GC$5Wf2p&4iiYdtDJ9*<?h+`FJ!3MX91`*e%m&We&Ph%Huln7&-@ce
zf$Wwdy`n{}5C;fX=76g>_1u3Y=aL<q7O+QPhd&+QGoAH+wRh%GO<!prx7up0wzOj_
zNCa9H(W)S8WX-53E<jX71cX?lfJ6ckBajeMi%J!cA}ULO6cLa$B71;DL_?7!VuZ++
z08t_d0Wl<jY`ixpww-on`kwclIh}LnA5MOp++XhRZom6H&;5R$PyFG*F4AirrutP^
zcNdq`j!_wXv@tA&<d+=X;4}KKKTQ19KR-;oxw;qmeZ%!E3EWT81L1sbFM45;T~Lrm
zj-uk)P`+-R7mucSe)4A;6<D3V=A@qJ0^wHC;MOp`V}GVsT~Xt}Whwibk>4T2iOM7F
zWxhaQ_NVIT3!-y>q6#gDwgob}|L#=&R(SI#-Kl_`Wq{q)X^RDcv+<!nsXPL#XsgYt
z)!4MyAq)Ns%zpbk4e-ny1okw6mj4uy2Y8C?|3-=azax*o+3fx&Mv4C13YTANm42bA
z)F`(#g5i0afxz-V_~MS1-HcM)sgiLK^}NckgFwlH!M5ak7nu9EAJnpY^;gOLB__^z
zKwSRo;<vO6!dMNz0BrvXsS^xHA)Bt2pb{BWuq+kqO*VG%fA8DUSI?8+hw@xA3dZVq
z?E+2o9}zLUq4Qy$$ssM`=%Ao~92cfxKnuj=8D%*XwBqCkvswv@>OUw2VtF!tx*!+;
z1mnI7BQ1KveI4JtVJ_;8GC4s>Ku#?PpyoUH8o})*9L43*4mixqN8XdOk1T(lmzGCO
z0XXe9>V6I8k>vt)hfQ}SbyftcXdIjA%Sml)NbTh1Lbw&Q`Gj*EYjK`L*PL0BRvwhD
zy)bOqsh$A=su{#t_DZHMG<jc?=D<RUtI3MztI4M_pGOJ3xoP?u>S~LIlX}wN<C4E4
z0I7|8x+Unzu5UtOq8s|(Cs|bk-XsDm^9iepo0VZ?_;b6JsT%V4%S9TAq9QQlH}Z=f
z+)}i=o_=~j|4SiOe#XP^9&DsOWbF2=W!dTA=WqybOo;cu;`Q2=b+lTF!iFAfwHKWC
zbBReZh15tsgsB?__h+OQ`JZ*}rwi-O)EN-X7{`5Ex^aM9p>S{@LokW2>xFeYwcFd|
zdp(hC0hEh^v@l7KRXt1a#XVaIYMZJvpA5=^XwYV?n;nEWk@it9MY<(vLb0N+xq2EG
zr{1=npxR=2*P5WrHlT3CnKI`DfR6a~ghtw`L1<mnQaL9c_chRH|5W2d;=0bRV<C|3
zNhv%1U5^K((FFc}`D-md%3qOsZTK{D%T-=u#DS}l=75U0T!<U;0jdC1@!nm@R77q2
zUS1C0GT#t?nCIeyD~a;yNQp|fULZv`*BmY?O;GB$zT)2=99~#+so$$&EuF4U*S=4w
zvQBPQY|_Kf)Xh{sWF=?W?qa{YUE!b5jU0S$)oT+X8X=s=$_obonGay>hxoL^^&>99
zzwBW^U>t!(V!<Owv>!VXrH2j#eF3b!s=CiUHQOfcaXgy@Ge6L#BjycHFUD*)wOs5p
zwtMJWNratWkyqN47xA&LE*ko<&Nt(p)XA-y4E=C7$X7Fy4Vp;Qr&}U;H?FLpxGn9i
z?W+lJ5%6WGa}T~$h$sC#UP|^w3lsLrHrZ2lZ|V=Oufzyx%kNYA5u{0*;^?glWfmIQ
z{g1O0V{j}~C2>M;1jj-j#%dQj=|`-&7FY;t$auh6dTU`Ta(Im;G=Db<lGZ%6Xwfp>
zkm5`mZ+HClCWz7C$9t){i(~zEJ)6G8Sm%Sp`9`Hby*<r4#dWmtt8+CyH6F@8wvIBP
zl#op4M?;FcDah}96IcVow43SX)$+@)^}_m0?RCKzz5&qm*(`uE{4I~G6JU<(q)=6U
z;z^nPZ5NN;eJ@jLPEPQcJjU@`@XyP{ThfdYFLl_ZwdR-}Sp9<82w6Y##ft#_RL0Ab
z(o>ufo3$p|O%u6$N?}l#YoM#7C&Ao*inA$mul=DXTmzWDSza+ywl|?eXdF$V87Mi=
zm!ivpqxvP8@UE+4RleTz^4!MdvX<dp+|_EY@{{8`5CB63s%$k&=+RJ(DjsSPrcX(F
z5wzl}5}I5fAaRv`c_q{5P-(=gx8ine|8n(LV!yRVkNx1xS+^-|L!*H?^aD}NT1Iw|
zG*lcux+Mv^VR`J+J5v)zs_!u5tGXr~zKGsY=hl?hNmzXL+B8C%K3}YB?t?7Pbe9_2
zXw&uAXO{WNeRnkl4UeA;2@+W`vT9vNdZ<#Dv?B9*G%g4gOBqqh%gKinvR(41ljbX+
zh=f7%Vj$>$w(;#!-HG@}QcK?AVLzp9aNFVaC>}qOOcYhLE$c}?{%vqL&%_EIcNDuS
zJ2kCi!-cw&7lU2_RP4d3bZQQ6l9f=o6r8zd6cHP}h&S{>YslwR$C@puX$>{2bM^$9
zAysn%ZFcQHm*ohzdw4w{1jC=-`=Z&1T;!Tz<K7?9l+ig2PY+fP<;TJiMf&Pzjh(ez
z$=Go7reQ$n{qc<uxMN`cJ#`jkgD}{Rjj+p^smb{@gh>NmGW;E|%io7G{Tli5hIcIs
zZ#Wpgs6<of9b-k?xifsg3;bu^HO&~+5O@CJmnQBl(5jni52J}++j1tZ6gUDQT)nc1
zsBALPBxJbIVDG!xop%nU$y2b8k!tR5Jkw29b-w^-M~Lo-=|>&~Gt)5o0iU{cDyD#`
z9wi=1u$MYYMqm-;^5;e{AN$uo85JfFl!=0@7zbZfgOh&UMh&YMr44G<oLZoHy#bu?
zNMYI%e!;RuF)Zyni{ETVPP{xhIwMDzRe|&j4Kwn6n2jJ60!RtKGei~qW&4Ikp~|=j
z<Z<}r!zUZNoq(S<Nw+P~@QXboxY+`bAT0iqgm%wLo0MVc^zQKyR$gIY2{mvlct3H=
zo%H|a2Ci<Fgv<EwkYnn}%Jzsda1KM8_M|Q^QqjvTDWR+7H);srqeJo8clefBbk)S&
z)`QK}?c^ti0Ntjso8_Hk|H3`4skneoCeo;5RG}_LL1ovY(|mwFAJq6AFsH@L%@8P9
zTLl%+y7jo87Q{|>cQ{OSMv}&^%asEWwrShOMek5DAo&Ae(mWk-&3vkV&_^p!ON%P}
z^lxf%ATVTy0`+K_c_GEjyF|Fy<axs^=KGHghu@5uQJv&Gk>-#qAg2F<QgasQe|lhm
z>7$(rqA!}kG5RSuvrl|W%^qFzXTC72&W-;?I+3GBK+Udtn_J{xcd=&{IHVY-({W8f
z<G0a(2q(DVR&@}-+4A+n2hIrqZ6rlH|6An3=vXNnEYxHGDG>nYWC6Nvf*}AX6P4Gk
zQm|po6g<h<%kl(mem2R79C_CUD>#Vd>xCWS!%oxWkIW@)qb%*h7??CfG8R@}t05~%
zrkTX39>}~apJ}>HBZUTD<w7z}l;F-)^o*DIs+X9I<c!m$Cpw#xjBF*@6y>0RgCEam
zzpLM_r*{ZArk4-#c-yccLqDp6S9mEJ20JD@$1vd`H*IV@sCzvY)<&W;j%@MB(0Rq-
zx=i8$6<l8R9{bd4yNL(O+WtnH9hfON7W&>5y}7#lR+c?nc-RN`u+xYH_>vaTV@AuJ
z2dtKkUBEbrBJxlZP>PvlVPC6$Y(qw747)PUlejGWg3bp`*U=%1D8xmrSEIV%D_6QA
zinlRkqSNEucc*QmoJM<Rt_fplHzI*b`(OehyzWE*LcUrCeO&|Zg5Jfw#cNy4Te(0p
zbir1-kn;J=s0em=jeQp3WmZf<c6Ro@g8T%A{{07aT|3QdR`gzMa0#AIg49Mw*DOBV
z=pv8?FOP=2lG{~E-d`DQ3&`s_eT)0)t1D-0g^vaR)~axfCLFtwczsp$hI;X+EeV#i
zWL^^>M2X1K&H<XdDyj~^SNTjbr9IOgvZum*X$hK&&BmU28F#`ZxxpQQ7i?}3UTp8b
zCnrspK&(gz3)BzYnbIKGV5dt~|7KV8r&?NC+U)(TK4-Z2D!JBuZx>1!P|W7uwwj3S
zdt7ve^UU?}REMsTw#TY2bwTm|2wM;Qrf%GIv0{kX&&ov6d|`gcD`JP2=kWa$*e%7q
zhl|y$)ACI3?V-hhve{MCMLX2Ox4#`VWE6GNzN&V(X2M%>poQXpBTV70C1CvUdOUwp
zr5`V17h)zAQw>^CcV?JL-bh>tjy@%O7}+Mmq!t@u;#c+X+7-hb4{&!&e{S^pW~!2d
zr7yz!n#-a*zfA2d+1_lqi=C*l)<2WkPsgihRkGapk{urQ+lX1$Xi@39-RTbMjs%bK
z2qr$)X~8{HFq;(`{xCH1rT^tMV)-*<g8MjeMzKBL>e+x`p+Bzd7Gxc<F$-c;dwMsL
z7@Y&rCAwKIHiEiZWupB;p`PMWA&+#rIEZPxf=+0(E1ZTfM*6HW7%3SZPQ^7N<SWpc
z-K03a>_k+_(6%5(P*9LE{tS-O79SWIZ3Anvrjh&m<XKN3j{PB4LG_FXj!)7D%TXdz
zaZ{zVeCLeYwx!lp@`v{wMz+A(_Y=?spEy9<O!X)$dQ+DW`xR{)EYy)piJ2W!XHO|q
z*(YAe_7eQ@d@gr=Gu{gsc%>P?)&c%7iqkxOOYG9*%wX$^BA;MfCI~D{g|&b0V9EYH
zT-l2u#n<%8hmz+L>|&w)Geugb1^Y(_E5i5^dho{=*gvWqP;`&l!)G&-de&UwY#5=6
zWZN7SY0_B{j97b5&Q2@Y`?6TF;+P~CT7MGvZYp?0<K<cipEao-suL?Z$o1C`LIOin
zE|mW2Dbl*a>BCJ^5Hq41((=WX_6$=0VLkmb+yJX4Hgu2G6?BQkg^Fd$crSc0%?c8H
z8G-O3^`#p&xv)DNlA9eLjrgHy{w*m*EQ9Qc$sSZ??nv8^GYj(SrC(h=6r*%0_(@V$
zG40h;rBbJ`ikga<I-%&KNQEj9oPp->Z?ty?n8grbAJ(_mSH++4HRY0|4!Jx9D)~wh
zmolxW`Rdtf<e<I%Lvr#f;o-WH3H(-+j}Euk(B8uoA6(v^XHVSTWVz=gf)8@lY|$Gp
zJjI<SN*qVAH`QMhS4il7L2LQh)}v{T<5_C<QHRWA@6cEpKNU}3GUI!aG4hP<u5&yD
zjtqJ4?XvnS!$fG%>a;E2s&#+?-KJi<;W9Rx7aXbl_y#)UDRXHMOSZ12)aPg@GW=iy
zk{9S4{DYCR+{HH!j6^S-c}j^%SoX8H{S=IuOv#`TF!oys<sQYQHUVg5E`ET`@(XpX
zT%^`9fOJqDamX~GzZf)9Sd<&-8$X@3_$|--)*`2bbyNE0II?$4%`WzBc8#nuvAy?4
zYXRnt>{8;Dai*nS9-iJOw{17d;J)G;Ds7fiP)gs&UfPT>l;>fh8!3S&j8b2`f&uO0
zPw%=ab9dstU);-9V)s%8BZE{F&+`a4m9m3<6qkv<<hiFEqt5hP2@~0Ra+R|C)L#RP
ze>s+#{5b~zbitoYsKkNeuAq$`3>f!WEbdRKCT*-;?8@tNN$h`Cjt&&EMWm4(78li_
z`O}+|c*}$PMlY_fZw{?^&Nu+|D?6PlECZO_?ZwEb(c@R9Yq}`?5emowcsT`N1)y|k
zvqwfR|GCUMtq|*LsowBt;^Xi=)R>W!SnPJy@N@+IEB+yar&QlngoJ6zN6G0VBDb4u
z$U>EXraFuE-L81-z<oG@Es6&W11{w(cQ;+C-?odx5)|^DAj=PV$0Qh)Q{cj9SIDW8
zM~n!)7_a&jWfJ{%ME12VoVRd&1Ohwh5<q4@-%`7L#PTT$-z`ha@9L>ad!gtN>pl(8
za|kQpumkk!nPo_(Dnel6=^#oT;z9_6CaLqQhro_YHJjz(p<p}0!CNIw4i**{QfO59
zFqGb%kBS;d8z#foZH4NncedSuSoJHPx#T2VxYGG?!c*FQS9IJ}QtnD!Vt3p48h>cq
zNLv!crHNDmXLNISxuAbqTQRw?iqKdUzHFH3{V3yx^qy>Q@N=bnO)vROe<f`PW^)4*
ziSOjhOiSWYm{6`Q%x{cZA-!{h?wZ55s)_Kmm>)$6n%UDHWHuJ5XLYe_kP_p|=k(S@
z#J{B8;*axREBqQ?NLwiMZpzVwIH}|(<;rU8%az*1%F(Gy%8^P&7@stj6CgsoF7qER
z_B6)CFF!40rC=c<gplBF?%iU+?yQRECg2>xRJPpc57@2JV_kIYn0Q)bbNxuPRNkxV
zJwxV?PI-wju8fisIZ{Q)L|H>NDv8c91pwc99xLZw<Mhu3|4@>3N<D5h@03>mEqvMP
zV~wU~*X9~pfAI`?U^R>%&fTDKy3INfHFTMl$G8zxt2}H_B6FK}uk^dww~j?M(_VH2
z87dhBI|j;jIjjfRkii;~+{ngxcTT3|xi=)4E;SyVkF=~F`eSzF(a(Wxs0Q9PjdfFW
zkycVf-0@eS$x+9YW(qQ`F}c&`RVH<>?w4!NTWS8k+G*>XXbwz0{$7KPy#pwT9qPZc
zt)DX^?_B{VfdVK^e&$g=)2Om%0L}4d%g}aq7xPO*<<Tb12-cXN&7^`QoedyQb4Se*
z7JJ#1PqYfwe1MuiYt+0e_q*WGQH=~3m=yXZ8SoITPYN+k70vc`X~Tbs#t$CR9GFPm
zOmm-gz7`agcs&MO9;hhsjkWad#w}*i8$Qt*M!07Jx}rx)+f&~yVFxo(q+EZRN)+tD
zMi2=teVUKtL$$Mp($5e4q-nqk9++1O(7;|Z$30f+m($zpD6>9hfVyI*^s?*6u&mKH
z7|=V&xyGC{tG1LEydLbZUW$fi0+5lwk`mz}i4TrMY6A8e^Y5MY^n1+EcU9kesUe6~
zke=2vg4m2*HQjq73pf`*>7Scrj`#Yl9^k!7;lMcjz|B&>T9Ya0=lZ-Oi@y8ScRqrj
zpLLbn1;%Pn>{~qmV+MDcP0{#m2FUI8M=pTJTe^3y%zxs=Je@y~O)*>pjQywf+q`)J
zzw|BrqkK-^ZixO}`z^lt@7Ztjj?VJ^fN?ku><K}huL9XAqe*KElV|Sl#f>N^1W)Yi
z=gqFFmm7%H8edjkSy2qeDW-GQUOQ_I&T9c@hzmkwY{Q)8_;$4nHh@&Z_EE+M7a4sb
zm?_ax*^M&rp(?!jHKWY%n-N}$mw5)o#stxU+i=2bw>CE)XD|kDX?$1Z2@7Qa6;crO
zy4a`?#g!B4v9G@{B2mV%BVTxsPod|>&YlVza@^~8xzaxb+eo<i+IMuz$73ZrjZys4
zYFV$p#PWz{I&RsLPWukc_y+hUpL?Tga&XG~yiMB`PYi14iA=&>+WL;9zF>mTo0Sbb
z4Pfy({}0SF<JFs&R}5Mr0bTfR!@#!IElbCKH{%ePhxcY<8h<C}5Gk)}8q$BMq1c_2
z(9G&Ti%8vv7ucF->#|mS9DFzQVs`=(W3jL*6MrK(HTlw4cfFD?vC=zqypj#LU7Z3%
z%S9<Fo!od_uk5si`V3slhv-dC-P~4OCw1mk3RuWn-6sv<-L|gK?iMM>X}XW2pmk4w
z#B_g#;zGTmUlCL@qq}4y(FV$+Le=IPhf9}GqCq=yiQA(Liu5rhyJD;xU#Q}w$9I-`
ze5S^=ae`T<%Kctp;qm^$-CW_KPO`F@TrOph6_Lv3h$%xsq-q+!mVK+f^2AG%Yfsn-
zZmUVGCYXFeU=NI_$pA3*LF_LJ*r9JhLqcSN{h|69)wotp&mE&`5ovPrB0jXyj($=C
zt#;W|b18G>I65vb_dfbDHZs!9fa~1EtKv16PQ+KFYBxeYk5ANfhupPSKd+8J5cQLI
zUQiVaQ^`}s(^r^7C+{CF^Rjm}9%nWu(bq2ClzlCZ{KMEcvG4J9$ESyMpR&gb+jH{a
z{Bl~Flh~xh4Oz)7t!O{VJ(Dp~A)S)Jscff;b5B3@;-Bh|B4^h>8WkRQsgz26Te&8d
zx-4=Ggh{DT`D#Z6_e_ap$TNDYpIFKUHCq4QHFM_80|BXhARq;w87u^;rwZst4drE3
zR{_prEdA2r$1c_MOEM@!eX$Cg?ZZ=exzuE1_<m4E%%U2|Kyx3uy33^=Y?2Up$*``+
z%9Ai}WT4t_VW6%eZP>LbwJ7LxfBXmtX)zU!xs37b;m&7KW6j~B8qCi735GrV#4%EQ
zqU|C!6!~Bevva&O1;Kl0`OG(b<cI~jx5(viIvnZB9*!G0ue8DNVoPK*??d_5x-ECf
z0>5#=DDCc3Iw(xph6qZY@DxMqiWt>3RYO?u=*wuluI3Gk(VST6@rYIk6Z#H=U3aXu
zNf#_7;rxLhY_x3y*EtVbp}uHS-yoaI?V_Kv@IhHX$ndcL{YctFnl%;uh((GDrakeZ
z-mq@)`p5-AP1t6=BHpk4!o=%a$Z7FDJKLD9lo4xZ-`>+5Y5t#Q7IKlMT=qkPGv!>?
z>1-5r3z?B#;vzh9`=PKk-h|4TS=N{C<_Dg;^M2a!RD>fwUR<G2ZH%B)b#)hQfL+P(
z$BDYOj%|2k4O}qmxTl-+exCNg6#YH(VJB3qUI?x4mOwd|RUhMoYjHT%sU|DvO9_g|
z;`l|e(5-FE_k-72c;J1UFuZ{~5qzHS?Re?&*2!Eh_g-Gb@R4O0vwV{heCU{%7Deva
zdE)+Poq+eGKC>>fwWB9i9=UqB>HFr>QOu2*qp`)N_Ayf7q)nAhNXdwNt@suyWm3|F
zs>^jC1bZT0V0~l7CtIb~mF=)H*Lo?tAzR#1KcfIS25BB`!Y&-&0u@SNkuMC}7);fd
zBYW7UGGCA4ppafnMLUtot+6)+!}T2fILLo_XfBp4_u|CRA}i%06K<Ec2ZDf=v;{|%
zxv`b^EZbl;`!A!TunSPHp?BNj&%Cw)3Hj2Qu~HXo?@>pKi&-mBp-JhSr$SBkkPP#W
zjya4uTJ6NKC~WDI*6)s66HCO(<9cWvy*>dySWY^fR3R4!B9{0sziL|B%7~2Xxm}H!
z<gdXzZ-UD><DM*N75xJLYo)bZ1!sR5su*M%3Siv^{zHza;%Te^izZeu`V_<{XGOiW
z?L$BHaeI4i)e>Q9W-J#rm@t7A?X3;Q2Yc}ob^J@im8+6aL+zABnjQPRJ753tP><t4
z%I^49<1#p(O4(>SRH(@d_?uu4&zs2B>}lS>3+MLf*v4GVJ{|W_=y<*CP_nU4TKjyB
z7w+u$4)9=)KOE^<H9NDMG?Of75_>`w{|aCMCSfy^2W23^V;i}KFnB>bw;ud{kLG3h
zF0=JNyZBcHdVb^Ce-|=JPS3ab-Gkg3xVDC1KO1)VZ`9@A7<GBqH}AIUKZo-Y^SALn
z13fcuQZufNW=(?G^rruwi$O5DlV?Ujs4q0XK^2`~7d{QrG$xx?2Z-LKOx1)lw7Jvm
zVZL3gXMbt#Q%@MoOvD0X?(Dm)t7ds-`Gp@w$9DZ9KkNVT0lqS;MyLcHCMHSa2_V4u
z#T=>s2mE)6yUF!Mas_c_94cQlGhlF#JEH=pgaq!Cf+&dxvBLBo?Qe6qKYH*ci~E%J
z%uRU?LY^aNw;eBXc%7JVo&X-U_}#;XE@V%}(x+lO@mvK*Fc@QiCSbdNojv}rU&skR
zu8byYYYln|dhO?j26guHt9`COhIDwn%lH9UjlE8wwSG<y{{};@3A2He28Ft_DegM~
zM9vUU_{ejox6W%^YNof%sM~KLXI`7k+_jk?MoE|(&VRb?!>_=fmwU7qYHL1#tH-XO
z?ce@C!03F#j@fT~_*MC``va@q7U)_0O~_|&ihd|Mzq$JDSI(c^rgLQOp0-~tHGcb*
ztc*|p$?XH+lfmjX`qm9!_ppt3Ab&L5p-2N^x7jLX+3!EDzc2MBFf=R{e(hFHv7Y<!
zo@G0R-@Cs4-%w=mGCSB|pO0E@9y@XIa}g@}rs>(;T6S`0No%&&`3fwkL;74Zh%T)X
ze_CL5d3}PzE7EB$_UjbcIqp(<L{P(1+zv%gPCy)X&q7vNTm27nC9;s<371Pqooo{X
z8q(6^i0*k{an-Y4DG@;PC`9o&CvVDjQE9{V8fTePO|g>seg3bDUQ1~`XqKUG4mGnu
z5QjS=xX07|X;Bfl2g;NWHnob{q-(7F7WP5<9*pLqI!(P|px-VL`rZsc)P5dcs{g^v
z>idP9B?&MmQG+?Nm8`5}(t+y{bv@2sd~B|pn{NJO=ZKq3rNDz)?^4$0Ej)vEt)J)!
z=e*y1^a5j}X|;MW8u=)_J53_awYqenExYuLaiCjSvgM_7vmM9qx;ENr7J;OM(-s9~
z_x13pQfHQlDGN;o83x~Uv!)TKmc+DV-Gd1$3|4ps->f^iXK}pv=`~%<0=5<ND&rJm
zmviyM{KO0tx=VLKP?PjvImPEP<8Ula=g17~>+^K0s2M&x@H81>$lmd+Z*D9;E?sA)
zMR*?nqqE!C2)Bp~&8RrA{knTsc`<9C-6a+JobbhLk9K8CIeAa4hf5khjV771epNhw
z6>{A&WK9=49>rT-*L>AeE@$^L_BVx><ydb+c71cpqJ$jQ#Z2w7kfK=WVoR6SEQA~4
zZFlFJmNrMN&l69wTie5G8eF6`4(&uBGVgXW$cT%dn_+sfVBG9p+r%=fbK|WuX798j
zT-Hf7Zca!wFWtnW{&=a`%nviX6ul|cYqeh0iKk26jKi+=qADZHifw!~)<3XzDVoYG
ziyEUYA%Vr@%`CQAzGL_snBlTy^C$h6r4@TSbZ$F$(1zz`b^!eI)EL6k$9Yu;W?S>G
zCoW4Z!Mo$l+{J@_*UUyRY?mI)4M1S#7J+i3%dHDEvk`Q_zplvnPygSS8nBWrkc$N~
aS~}lD9+Q5!->+FZckgg@EZKJSyZ-?v?>PAY

literal 0
HcmV?d00001


From e44a3027a4b045c5e9d9b8127eadfc54355625b9 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 8 Jun 2016 09:48:21 -0700
Subject: [PATCH 09/69] Updated image name due to rename

---
 windows/keep-secure/create-edp-policy-using-intune.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index cccc07b766..014d4cc5e7 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -311,7 +311,7 @@ After you've decided where your protected apps can access enterprise data on you
 
     -   **Protect app content when the device is in a locked state for the apps configured above.** Clicking **Yes** lets EDP help to secure protected app content when a mobile device is locked. We recommend turning this option on to help prevent data leaks from things such as email text that appears on the **Lock** screen of a Windows 10 Mobile phone.
 
-        ![Microsoft Intune: Optional EDP settings](images/intune-edpsettings.png)
+        ![Microsoft Intune: Optional EDP settings](images/intune-optional-settings.png)
 
 2.  Click **Save Policy**.
 

From 9a84164f718ddccca350b24f5e9e4c4a33eabe2c Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Mon, 13 Jun 2016 09:10:10 -0700
Subject: [PATCH 10/69] Updated image to reflect recommended choices

---
 .../images/intune-optional-settings.png       | Bin 36815 -> 34263 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/keep-secure/images/intune-optional-settings.png b/windows/keep-secure/images/intune-optional-settings.png
index 6a935cc4ee12eecf657fa0f73d85449f68b28540..ab992ce3c883caa68d2fc5570f56757315f30ac1 100644
GIT binary patch
literal 34263
zcmdRW2UwF?x2}#eI4Z~}DoD%NKt!4}5eTEGsEAQ|k4Ps}BQ+#AqBu&4iqrs65s(@w
zp$7zo(2__?NC-s`B7`C(2_%Hv05kLd|2^m4bI*CseeQGTc?R=^{q1jmYwfl6TJL%n
zPj22Y5!)@jd)u~cVpp$RG~c#uNA<RC+xvbN5q|T_vxgSKe}42lZ+3p$wo>GtHJ6`+
z*Si9**g>~#+uOYH|Mr6?uiY1ZDRu9X?LCVCk9(mmcip!Ix_JBFQ}uVh_p6qwx~iV9
zCgR4nZI7(3UOaCZ<~)mwdViuncm!7X!ZJg!_;~3Q8KA^OTIRgCmNb0qT9Q+T%&l)+
z!@3ScNXxJIe1?I3g5%c?P%^mab{F#S{`iM8g=O!q9P$!*_RH;`exY1E++Oxxy|U>=
z%&vWD+g%>sJpOxYS?Tlp=daKaxLO$68OEZ)YkA9hy_^hE-n1#EoIHmMou7l=h{_|0
zI*`yj|CnDc{Cwo0@Q0imd?6OxrCz;tdF0{V`hR>TUyyR#7_>1Gazs@1&wE~De-V+~
zy!*(*&-On@$No9QOXXqHr9bDXIAs5%i9fkVZN8B&N0}333MQhcBQ#ovh?hW8Fj6%a
zwO|S!5|Cp@sGQc{{<?{3U)yxhm^(aD>+-HtWjRXFB`A+#&W6rJjTAa#1y$?h5t`tU
zX{dV5U&}pO{B_qHWSt`L^9YP$GZ2Wz*or2c0J-iafC-2rX%h_$Si{c0mw2-0TGr@#
zeB*+y$7CO5T&Y5m-vY+{a@bj;ZW#F2oH{nj;SUN4Q@@16-z?>Yt~ZASIRh6*XizVW
z%=&RktTwzC3kYU<MdGH8u69w0H;C<<(s=Fda{?3?eM|1t)Uh@h*Q^J(ynNsR_MNE3
zTvhHPaOfbX`@DK}J{0k+YwVP$|Ma<iQ;-vU`BO>2d8C`9-t48136PofJ1&9yHUz!5
z(t7>Js#v?E^kF=t_o`qv+X^sD$fut~kD$ms2UI=xwwSG6N=c7Y-x(XP$I8PtRZv%-
zT>UuOx`;{4ZFU?E#~+KQnUvrv-sOyV5&=aIIUbKoUE_zqr@KyXJm7N^nG0+x_7BVR
z^-2!c%+yltuRXnZJhVeZH?=rFeI9u3q)3(Jv^Z#gj27knxJ+H6?bdd99bK%=*RSp;
zupfY+$;C@|0*(EC56bfmOj)&z>_2BKqMO2dtmtigZU%lXB&zh!{j}3TIqCruyYQAX
z#rrX|&BDMh&cmoiOSgjs(on9^?ddnGe4b^RjlRat#SMlv(Be!xevDXJ6pi-`9K0T&
zZeo9jMq}^uF5gG1lrD12cQtL-pUe$6&powvK<7$vklu(ryZUIN7th;!{xE$qeXpi_
zwlv+5zzWcOJA}t*7c~a*y}~J(4U@FH=kqz&2Z63qL7SWVD?|l7%GTC<^PXf<5p+}c
z)fbVP2Bp21b>vO_!-|i1&p8y#DpWJWlydx+EwlqvoBC`uzsP}j8tIY#b8hi8QAhRr
zuMct2p6@+cF^S>Nw6&Sk#RENT2PD?1j};V#H*_G?<D4M#E9Ojz>q-9166nrw%7Z-h
zlyD|s(wda*s6X<ovfq4q5F9+$r4bWO!?K2VI{T9`OIgpg7m3gPd)-wwx5Uk;;x8jj
ztN<@YzLr$Yt@Z$q;;UDNi=-uzUqaH&b&1E~Qk1<NGl1rkmS2bBV6!;K-Wl5*QvVvf
zcQ@}TH!aVc;JV8rR}cNUQX`?9=%Rvys+KWMS8%vq&O0V#dGY~^=QO5$I?`u*mZoW*
zMF@V*u<Oxz=_MMhX0e{fKXk30aS6)Vvhir_qGGjES3%!0&>2+`GxTj|_E;KTN8&T#
z*A?isp-45L^P5aquVDZ#ot3+N`R)+WxT7t^kXX^NkQ4Ac)Y-y^m_OZ_2J#xz@+ORf
zP`&0Mju<#fPx?+q2jp`KP|=CtRh}6o*X0mf5wWa0Fa9tiqDFo}TIcQ(xA-esJZgQ@
zUcF?CXC>$jy3ew_mHQTtUw(P!;FlQv7aCWF3Co`sip*PEq+hCD{z&X~D7;*fy(@6g
zswUi{AhDofH&)6c05_SYb*tkQjHg8apLPhyLY0yFg5EM-SO?MN)_-*wrbnmG7U=0u
zYm)4Tc&36c#y6pcIL=#w7&!Kv?##fZRz4dPPmDCpM)Z~>X(iBpJ<+cf^@giJ)>RlL
z+#6Xim+q||z)sx>tV`eaJQL!5eG=db_^DhX%@RvKH==cUVigtFl$i~j^zLF_>~lme
z)5I(|>phIzWJAQfp*PfttJ0qVSpZJGAKrT3RH0j-K#uvqdIslrl>~g4Y)`LFJ0+pT
zx$0I@vFlyjlbTYNe=aYMlB*FPI}7oRhKNPS>1G`%a3=-%#5YGy*W{U5(Pp$bX;li9
z^3D#?`jfP{@XSBb`SFH~IX*%64WZ%bD$*lxR@)|_>KjaE)3@bdlZCGB>I~E(Q>!|g
zelrDbd+f{5b<SaonNxh{8rFxH7uz%&x_4SeaQkg->f?sRt{B}$cNzN2rc%l)O2bn4
z?7I?vutqfkwe^OR#Z{cgSBGIelauU1tN0@jb7y5XKVkDIY3-9<m!q4TCH9n5G_k}o
z^IlSSg+q>;yN1YN%;0f12g9<w7igh`9Lov<L#EOhr5eG&dXGzBu6CSET3t!)&Gq@C
ziG@@fa+b+&ps)<$Jp$#*ZBOAsKK5aZNbg0$8AQm4cFK#2q}7;Wipb^*#%CuPG|ehQ
zp5k<z4u~d4SttoTlb8=xC-|fNu;n1i<@t<mr<Lw1O}*=Se0yw<N6vVd$|?U3`cf(8
zF7+!bhS4W>GYc4BCSKs5V-jaAFo_(u)5}Jrfuz=tU|kf4E6T&KE}pGtdOd48c!`la
z!hNhq!#=C&asU*TP_CxNQle~4=IgP=L+Y#<QaI?T`8@8f-}ut#ga`i|qf1}S-64v<
zDV@(@_UTQA`~eA`U?$3_k2y7qTpti%1p{b=x8RMguL(~q{DFgV>P`@g;2oam?|&!0
zIlkU{{4y+LT;@338X6e)aITl#?_K|}R$5XepguRKa4_7Xv>0c-bh!}-@`K;g__=A@
z<!eQcGEu1&xvN)E1xG||xc#|#&omofHXYPvgO)WwbM^$wMnJQp0T!G%g_X&5;cFv%
zqcAWJa%T(HHXd@sC1%S!R)ou)h4^0*M@+uv3&sU&Us@5)0<R&h%6;isw5$hjw5{C(
z`HJ+d?R{N^FuIOyWK$w!=;cxC^mPtmo^zSUXEm-<JV61E4Vy0QJde7)u3nAGU$#JO
zdT_1EWX_Kqbo|nfHryt9N#j%WZt;~Tv*&v{ME%D-7tPFOuh#GqA=%N~ojVpaCxh4B
zf7m<#Ush;E^Ni&Az2~ELa=P(oy3sOs4@WRLvW9B0-k7OMXQEvJ6sQX_z->A``{HDe
zz<ue8{62q)>j05Z=v%?UnJ$&h$)^7~_-P(J`e)!|zvs{MT&TO^NB>Q+)&FYx-O<W|
z^P6%M{@7a^_8|6hFM!_-Ap9r{ShsEaoW#h2sq&_68q?tu%HYGtsT|bEnu3UAyrQV;
z<_OXA*Qdej6X3n%auU!X)lpPc+DyuE^H);MZ$xa4!*2(6do_>#u<_N0U(~C;?*1QK
z7)0}C%1LviM1N${rR?3&dp0LDPUZY)(=}tXju(V^MBsF!9JLD6g|WEsKlO*<BAj_X
zt}zA2#$pKT6OC&r-HA>^BGIvz4~j@`j){48ruxnuFn`*{(`fCZQ3ih+v+l!|X<U$@
zc4wOmRsPF#FPm^HW3lB?f_VWvWNl?(CL6%_VlN=040y|VMwyvsgWjk&)~X04aq2Hg
zG-+0I^V*cA*#9z7p9CG)Jo@I=qo$3-VB7s8LV0|B_<!f(ddFzPl%#6#5=kf{s(Xsl
zp{WLZW=P?SE(T3}MZ4nt-_p7&MMpZqyhFOx)*@U2M^^U?Qc)%RZ$<0@ekdb`O`Fl^
zcfK1sEciOZ>Uh-T^baw&8#Eb)<1wBN4h~fP`LK%<=&oV!uG!-c|9Q|8DY{8ntm>(#
zthL<O%JM`j=d8YlC2pOSKIqN^l#x@zJW<?jzHtdz&H+30A2p^`f`A@b%B|W)@mYr2
zt)r?|JMp6kJ(vx`X~uA6Vj4?|hT+RPhl7hEtZ)r8POHP-4Qr#$K?K57gpw?b;!Z8a
z?JTrm0MbZx3A0w1O?CHNpWIcFciWuB9Pmw7tnUbmscfo$+C5td8hcWzgO#G^Oh+E3
z<6P%ENKthQaa6}>naMou0J)e4o65Oga-BAsn>G4$pGsGOlo>QpPPD)?A(mpu-ZvD^
z$Hs?9(I=+srRZu#spyeV_xTQjWoWie*Qouq@&UZ9T1vPGMf2NTQMhPHRM!w$Vq;0a
zw!9Vd_r8n*Sssf<sizl<RE-1g_%kWf?P?;S`R4#4HrG)GCo()QyXy3gUW4C~c)GO`
zcXhvLl<D<6?L^IJ2fh>SjQ<=%nl8`lGlJ*{(lxj4t<v$!X<sz3_U@Qg6u`uR-=xn>
zLCC7QmE_TB$^_|+6|ZBtM&x~12i@1fLgu33PTrC;Otx~kWi({9J+NZ0Psy-`U~YcB
zq`jXhP0Ab8*u8LezC+%($eWttFM(0qcmY{0g@C|IkJ|fn-_RTnfx?;gD_5bk(U6fm
zE$nN;&aek{M~i8r_L@qqC*5~rQ^Z6}WgH>v9v)|00)HZP(Hy^-Agz`q2>Cj`<&N%8
zv-RYAL5ZF4ir4XCImYU=X{pnd$h#%%u%g#RghGY6!a<Eg!e}>u{dfl}H6#JHTKnnP
z4&f?3oFD&9%CW-E9@~VCA!~vgreej?0%++mA%8TPrQIN{QA4s^C<75br(-LY;`}u@
zF{`s>)<a_cObu%f@;%qqW&DOWx*shjB58J`P`f&(`w2Wj+sIkwh`(ZMzvhcr8G7GJ
z$aVes{iIQ1mv_z)5#3+7yFVVn=W)rqp$>hcm2$4#p&xJS;xh=n-kZK@r-Z0#dWN-k
z;9!@nU!=K+rjA1?wMeNo^^YbMUcA`MXT@siArl`ttznJ4$;Q*sGSA@SOJW-`-FfiO
zJ1sm^rJ8z7l5z{WiEBfo=IUJ0z6&C{hNOl`5PmyK=1w3>BPZ@{Yk=mPCc<E<Li>`%
zvlTndjX7jbZ}?UFw5Ci~pNi5`gj;m$Y1*jBQV!vcx`Uqx1@&0_{%e5WOnQu8!)m$f
zV+2o%z5>YK-w{;2s~^6*8}S6oX`O=vJ{qH+g*aj;DNC#GR$T(O3#TUku(>?<z?K7-
z6xwc!xvAHj7e`Pv9o$tb_Vv1(<-k=AK$X}^_;L}O)U=6Lt#nvwV}W=(jAb2N$QCbi
zr3HVd4Y(d!)`(#ni<bOC&;%ETnW2^-vYRJ@?AgtgCpA4HH1mu%w7bn#ZR?O|KJz_m
zabwVjh~JwoB}#}$9-0`a8&kx7VN9%v9v1%MHm+&(P5Z9sJ+bBjzVmv5%En-YKL-mx
zZ`&4gf9uZwhZpMJ(Y$qtTBmB=X$lq)$b2p@7%!W3r+6U4SqG<yOblT-iUFw8)&l>1
zY<@zI0@HBi*)9hy!Wn!}E!Le`%9|$+hx3R0#aNPm9cTBO<jzacgZ@5PWKTvb8`(9?
zuYb4r+Ua4m;}BHlZj;w=C}XFG9>09z_T^Z#Q6~sJkw;h!Avdh(Rm90~Jn_4XP|52a
zHI5v^VXeV(v^}GYKa>VQ>XH@q{B`V}4HOAwbAn<Up$?Ra{L@`NUMYp@uUnr9UE_5B
z$WT1t?zbwf+VaY45eB>;Z76O;?)><*;(1$?!e2+@mr=teE0LRx<XrPRkORgJkjoz>
z=-=(TN_F0Lr<O;x6<B(u=v1$+S&cmE3yUBQGtK@!wC^{~`ULKQI*=|^eH=|t{%b}T
z6|uQ`^ht4z>RRM8bU@&E$m>JSu7U8aUAyh}&xtzKclO4jci6O=%h>a1nz1a>6G);#
z-)Kx2d+94PSYKnz-I>-3&4;{sxsUA}@Q)+ziBZ!f)XBddv^_dj;qPGQ|KY`4pmW%l
zpSEH|Vr=fV4c{e2{}Kk!+6v!_FIa5bT<Tn4y}0z&IP2F+TLut%c6g`QM$q}og~HDV
zK5SZzzU+MTRwnb>%4_#lR3ewaIUl{1Gn~@;Y0D1x;(4#OLd3Rdwe>NzGEn501T}z9
z4sf>t!-GS<et$j_BjevDjJgpR_3&Zf($<~!JEN5Yz7P7>snm@<RW9pPYm7W_6&y+r
zG6|WZ*Z90tU>k2e{zzeO9!N5V{Sm+o44H=Jl?50q#m~(2dX^`m_0onSdkNIRk#+V=
zDPA7R@$21OzPFs{+-%iI7XNb#hO}4iTwg)dI!O@D4iL;X&c4me%$ynF*F~iaK}m-F
zC(Y``)5E!aeiU~br%;rGL#2P+T)|B3AaH_QJKYT$O6HGQQ3%4UFyEB?r4nR#F4o<w
z)fN?AJ68bi0<zwLWlp7WHeNkz1iJ7oZ&A-N$#A+q;tJV>XgUz#_uwo105QcemccZ{
zp2p%DYvlu0iuBNEJy)+H4nb;u;WZ>5Ljg`NI@`v}6H3x?_~1zS6KH+q6}kgk?_020
z{Gy#QBcKiDGZ1dn#@X#U{oF)escSaPgy_a-2qyM30PB$pmQ|Sc%pZiIrCxD#6K=6X
zx!f3I^l}I`k1MYI-n^$=u#8@}@N^0t3Z{Pf__**^x^QPadaCxCe(&TXwYL5tU!BHJ
zt<_DaAx8%Oto~j`7+&YD>oxL`4CF7J;fGlY9xr8{>)E$RB}h}gUs?M3@@3-HYQ%9*
zj0!AEhcFsqrEb+jc{9(8&N~scK2f?ZyRSXMgmHaXa!=MrD;fG&t>%2yq=u;GxiaU<
z`A5T5$BF_ZsY?cxw7Ff$e7ix%kBjhZWN7y|V7$Djv19x*g|@mT`VxHtpm+B;Y-ZW@
z`D-`}IqYzSA&>a>W$fylZsV$1l^V!m^n(<g1BThL*YyPh#VV(!cx9bFL*ar%|2kWc
z$9(;aFjTFIIn;el%5n8-sljXb=<hqrhK8JM%oBA&hr&J8u8t@P?P0$4TEoTW$B@Ak
zYPCI4EKAl@L-4-%F4wfG{;EB0VfqyRkqX0j>^;_RXJ=9SnR^I-+2qjP6O2nGl=n%F
zDKe3M=g5~_GaROjhv!|GSUa!^V+n-Gfdd>v`>m)}HO;)+aU`w~*km||mR0gc=CdOO
zUhNFxZlGY9(S4>bB=a=0+`6Q{47mb7$^e&q;Tq_1G!6S_)1_?)96~lVn6aRL0kJEL
zS6pRs+4}2Y$L@H1!0GiHC6tsrr9gGjx$&qB+!9y(G~wpcCfxkObTE+Yp4r+os%pw~
z3j}4JOOi7}(3AS!5&)6hUR>YcC~@_NQ;qNMPJpE+(5GAdCORt?6cZ+69izhX8f1fw
zT;j$=jsalF$cB3zYGpT>!4~~zJy<!mebWe*WPY3){%E)!`6#0zo_BNHa@;vDAy_9s
zv&8wB-D8Aq`~s~H%yxIic%SwBQoY-Xd0MY7z)J!E8B0Cd!t1PN(@t?90LCe863DP%
zP@%-7yrgA;m<Ek>mf$P&)!$M&ftM!NRx4RBY<$WWX#PcST=N+@805-ikt4v)7{-4(
z4Mk-|S70zHcdrkboK2`)XDtv>c!T!R4l%z0A+i7!hd8!nzzor<(1S@7FBWZ?0cI@l
zF5lrJdf|}buS=jwBj&LYBP0u(?Fz>wLvA*LW?@IOU<Q)7)*}E+5IjDnp}G22V|OWK
zH>1oh5%JL=I72ze$#$ydVgVa1mxplr^n{e`#V@R}@w+!%5?a$3)i8^lA=<QO6;ey9
z2>Lc!6vw$>$717~8Y#~FR*KcNyP~hf?UYwJ*FBh$#iclrG0vR|YmYf6Vj=>qYou5Z
zWY)+XfFwapogP;r)o+~T1P@jN(t3Rx-wj2!8=X91WK?-sCx--Fq0Z!@{O|G>wSL<B
zP^fI8_yLgBeEm8t0c68dI#W%AfTif}-kG9v*{fn)p~+8N^XZvv%ru~y^3kKM;0X4P
z>a}M@jbY0vh+CR~m5KG~=t^$jUO)%8Q^|VCxFI!VFiJLs7s9)H`fcO=yGh{NHtyiH
zG0AbgD|J3=-%r?(NL{)Cg-F9L74H55a&z(Fsc}<Gni@5fJs~Ft(W|P?C0W$R^nlJb
zxS<Ub+Q~E66Y07)QjtS8n3SZ7c>gxqWD&l|XO7@_;f(kcEVlrhW_(t4D6dMPd>r|*
zp=5dC5od8G!`kmD`$z!W8x<{!1R`+gEB>nP`WS)N>E0ViL(ttw*2)4)7GSc(rv|Gm
zFHG4-#v7&s>O!+RLSD~@@w+mPYC}3#*7iUX$6p5Tad1ksP0;@u3w_H?3BQE>B#VPu
zEn|jVzc>!)9SHBA&s$`6={LM@wAO2ImXIk7wx&F?3RCkYB$&t<-&1`W$*;`-Ygft_
z`s7jcm;ERX2jX8RD9Q?E!Xi%Ey9Nx)P5Sh|Bg|F-Z{+82`+H`a6Nlc%^SrV+ftf9?
zDcA;l$;i&Thzn5*Yhz2v+^&<P@bGxTWa_gyi!pUwL;riCHE#vse4lo3c4E}c4r!_o
z7r;bLDYuYb;u;Lhe%~R?!lV4Wj|1uib2FKg5yQ^Mlsl0hNwL|Ar4+;~b^H<{f*$q&
zHE%;MdeV<ED-K(fK}<R_SoCC;1T(nz++liNRzwHCuIgz1Rg_wWUazUKsDJTdv~yG&
zP3<)Qyb|C$>v8DPN3hR}x>*Z!I=s8jNW1J5o(%5e?m1qsiZ5j3_ph2ZaC-`@2>H)3
z5cVEpOGN&Z+WP|JyUcSX-%PPo>jV%|j*Df|RS&B<k8}5w*0h$VXF6CZ4^}SgF;Xk)
z)tumdti$*@2<BjM>sb}3>f}4(`PZKo!U`zoh@G;{Ys>L}e4PzjNVoJUDy%7aYM<3v
z<#PJ42{NBEe{Lttpq!-v=^;19XTxV}QnObKP)s|H)u#oGNA{GOr^{H0VRSz8^gG0e
z76nAPljhp)j+x>@U-?3iq<LNIZ^j9Q-;^Eo%OUT4B}-oaGN`=^8*#(k41h7Th8w(A
zr~yrkh))bmupBDTnT>2nc90?AIOG7^DyTEqh4*=hWf_+_55OvMDg6AU0`h>fXM|DR
zupdJozP5`xjwCw}>fB2RtNlKGlgl!MOQbxra^N)cgyZ7{mKSC_+^`@$J@E?0doVn`
ze=)=N<3O2+%ib4><34o>MPG48c;AAIjn2Oo^ucZ|*5Xc{OVDc`4e2!(^Y`^}wNTRb
zbBv`lWmv~RJx)0wB4qh;^t76T!CKYNm8_vU;eBR8Cr`>UL>VrBHZFN<ojR(Bp2=wu
z^;hC=4`_UE4tQ5tynJN#!D|)TG<v_bTjTu>__Cz2p>w&PTE1HTjaA18vm!U=#h=W(
z`XlWwL$UnA$`;8NG|<RNTCjf#cdW#c)9+YiN6=#jO3-MYof>vj?Fx!DI%uYWZQtz^
z*L#LhxkSIjvd4#~8K<J-_D%LWMn9BhN~2A~(eQ!@(xXalZ7IG#cyIo=66L0UMn|wO
zbELI9XaK5VvJkFADW5CM87YAt42K-6sg!Bu!h0Q!oMQVU189(1AevC=bT9!VIPY2=
zG86Q;bXNLXdPD0)ZrE(;^!Rh&Q=^q4qH!sBo&VXfchS}zha2~E1ZlP-zDQZo$0N#_
z0akH-nCQ!bX~(O@>4iArG9m;wNDSq!7$)%_E=kNn7(-_$lWRWOK2Yu~kYoELVi&`N
z`{HcF<c#*Sclmmc8qD$X0MM|>a7leKAQOwF;I7ar;2v6UTb0;WOUem`^$d^M<<d%Y
zw(2$hMLqYx)hCPl-J+6<!1&3kz8UW#S5*t6pc3@xQ}2Ew(40qLba#SfoD<uV@dpii
zLxfYq$m-1MGRs#K+9t+`e@~62T^%p}-I4pT8*#G(0#EE&Z*quwB?*>ZWiE?F^MCNE
zYf{EPWlRVj60DX_<X91pNNdj9RB}x*H-{fPr7Q+hO-4|Egk_EcXUx7Dw9~p0gae$%
z7c(riJ<XOSgUd+Cu4QEqFO149icp7sy4mqTv`NRlKH(wfxWnoA5{H=7b)*YKKGKzE
zuyY|kMW9)k%siDM+c;-3`5M_>xoM7P68t4g^1}Hhu4&;W43C7dC0Q_OAzTH*O}~Om
z8JtwagUO5QUBKGR<e6+zw6jp7?g=MSaJdt~-wLyA?3in-Hjd0iPU<-HHYOa7qj5mB
z*7C;R6oFL>3kR8bMC5Wd<5$dV?G)ww)Y7lxQxKQ+U>A3a(TiI0o0?0M+rf@5h!$F*
zZSiAge3+SO4l#5vc)&7puQb$R$)AWVX<=wvyUsy*@gxX^M7y(hHCPq{TThcLzO+<N
znaA8Ku2EeN-`^gdkHpO6Wf`yA6BNTsmeVbJ{KhppHQs0!k}rS@zwmRAx~wHH(AqJJ
zp^A&q4$>DP^3g7`Bcn86oeW(^LPk{G=+<0ruzK~P%W=V;S1Djbja5L{N13w5NH&$o
z<!X}LD2`Aw?Q0VA(U&a|S13;#uZ)Y|3zr*`{R${?F@kCSGV)T(D7E;hTJjsr;+~Jg
zx7#3tV5vd=*p>X19&>PQy!}wX*^v28C1>4!aNlDBic$__Ewo8m<E$5gLT}aUETlwa
zA|ca`*3cK@rnCB;Rq__6>x4k<seV7%It<SGPCxvR-(;5_UG~Qup5Lj4Nyro@emP*o
zBBK6ljq0QvEq|4<NUjXJJ{g>%H!yy+*vvtoL*_BzwI_k3iEuyMp?=$LS$pz@M$7~t
zXBU>r%YK2F_YzLxWaLy{Ksp~T%1%$F1cN7WbXPg|y|p8OH<s&{S*J>!0ZtPA%!5(>
zE!r?A7^7tM+!Z9oo#d`EW#qW$9I?MN0M_8?SIGCoXM<4<`ccGp^-lBV>#H{ajTo+U
zC-Ow2c-pK(m%gD*9oUDkY!C}^yV2M!{Sba(@K6#j9|3L09wK!*@8C)!F}n<rUQX8u
zC0Ik7yMzHsIUJfZ%!`MpNSmN}ld#iWBz7?=?Ic2gjTM;P)D;$nxUHpHxI0%&$8BXk
zj|Hn^TR<=Rdk4m_I)&JZCNWI(K5~#j)|tAH)1ZVemmA1Uqa8*^gQ<gp#<5*~*Y4aO
z;SF;<)EZXqD7K?!=j!H(H!{xNitqU(%!pCPc_)yceXQtlX{d`2$(PBWkKFr>)piW&
zX0jL1PBgfyaHhguSUW1jG@OG8b5}ahJpBhDD3PyN@**Ygb<Xx=0sLlIZK0^I`^lD9
z$=HhRSP>f;>Y2Tu1eT!SB%-!(@X6CWY|?_5kM;+z&CMqwnFw3?{$)(D#q~-Sy@Pa(
zn5l0gTn(b_m6;G8%LKawcH8fXjwN5o1EE!~&pkF;{xZ|YxN%VMy^oql@=!E_o~c{S
zMa3#s!3o7)yM+KZ(ZV}W!boiL$<*)t=cMRMkN(R4pCzq1u1cU+E-r|J+I#Ia>UHUX
z#tWhTEnmZVU0XT$uIT?5LfBi;bcv}X`k%ohJW^`~koxY%bf0xVm{Pl-v6v|k57^gE
z?-3X^Mi+k<pkI#13Iu6|hXi*uH!zKBX4^L~O7-fG3qUWAQ|lZNcGSzPWT|(<B30SK
zN})~eK>_AiF01iQ(`J$FUEe<;APVoalBy;=-lFyiF#-Qs_39dH-#~YM?vk7ICI{%X
z`9Hxb>94+DtXzPSr`!E+=AmoT;cMuVDXn?k3MtyvXYxL)>NMnvyB}o%m7?VY7xm_p
z-QT-smekGF+SLtQX@&o2A&F3RJn7DsU^=dC|GhlG`wo=A&QBPc!e{k*0c(~GAjhO-
zdRMADOW)KS-hr0hv4Pj13jYbiF+1XJ;M!{=okWwJ@bI2X?C+7fB%&f!-Zt90U*gd9
z9G&X@O!#u-?%sow7E=1|^+z?s9NZcnESF9%#8Os)N60TUij@+sztTjX3^|BNt5D-A
zu?u+=kVkCrEjW$U%eX1y_+)SrEYs~_#_>kBm$>_gZa_(XCI1XKy&0gl#9Z{bQ&zDG
zNs<D%s}73#d-qJ|Mbch9vPG5OR3;>LS)^U|t3KsA;D5^1;?U&&w6i96mX{-aEW9SO
z2c<O!p4p}RYS?(8006neN~fkfe+*ZsEY3yNoyD|BD_h||lf^eQt7G%e!oU4nkzHv_
zW#RS;4;A-7(`ZW+(60<@C*v0AS%4&H+KTP4n|P`nD4N$MjiYs?t$wSVqrdD*|4Dl?
zk6Wr>jY%sOI)uuiTLpkWU+IIFhz)B0!`A)FA9=49t~>ix--W)pejSyce^5qR!=W7h
z@_9M@iPEB|e??UP4HWhlNxsrj9wAlR^E`JTJ4&mt<r%HvD^}-sm*HCg6@JnwiZ3}}
zxZzvgfSPlsI#}*8#YwbeJ^IJND5xPneb|Q4OsXAheO5zg++@>LB&7e4eVATgbpKJ)
z=myGG3c3>gASkg`>gB83mb3$1&%YJW&qfGqsIK2aXs-yO=BkD}GsP#BW&kqR`m40R
zCsj15#HG;i4ie9`BU~~&C^@&p;NP(6a>gC>G`+`gmi;um_(?y+1G1oJ4eg>_7r0!!
zH(U_);Z&cr2&F=@pP^uQxs<rc(egT`EyVlO^|q{teCZLj`7F!ArC>1Y^sx<b#pemP
z;iLB7n>HXq=reb8?X+TUTMB$SJ;FSG12NR9+}I)tJ4OCytg-p)ht0R!!VtX<rVBx=
zRM~$6UG7QT@o)Tz%iY_7kH_Jkf8AKYk&4~IG|4qEw6dx!a|kzW^`I9<C9`j^n(v+)
z9HtQk$}YpIpOPzS4>E=a36-HCg*F<nI{npZhnyGq&vJ($aR}nh|LL)#x25Rxd;aq?
zeInYIY@%hJcOXF>!UEPQ3}@1;O&-E51qe$k8-8VD0S|w%f0X;-cVQTC52_m)S*JhP
zqSL-zyZUY<6n(?t&)Vv?eLI^+=X_H{`ZWKz6Y&uQ3k@Ate9iT2)DQRbaP#!I+2zM7
zAAMuye<uD`9O7J2d|>|#N;F3`tBuHhvNQ*JnS-g%3>Y5QJ7iYCKEFvV_=a81#_txf
zM@%|ZJc)Zh7o`vWNb_a7LK(Q@e^+$dW#|J3T0stbcI0;1yMz={a@w{0WJIdM_ObFI
zm4Y{<@3m*rXrd7cH%UgoL#BRO5Hu>w;lQ3rth};R|7VQU(Cysu#z9Bo>qx&==Ocd?
zBfg52@a@VFDy63`DS)m!tzEP{T-hd?Yvz_Mkkxp2$v>ef!%*d*)oMtz!x8?En)WTF
z^{#CinBt~lvm(ThR%xwYkZ45Q!QcO?cweWFCW8(Xx9@57^U&GR@zu^%Hm#;jG$9}`
zhv4g*H18G&^-$<dc<p@{{LL*ebKP(7O}zb*)&0Nkr;T!B-fQ8;04;G-wNmDO3fS<(
z%51?!yZ&hkYwgD&laA4AGJbC-&R$EjV;_`ZJ^i|JB2(1=hFfdl!qI4l+hniy+nc4W
zts(&-@BInv_9Db(6za@#zDe%xj}HB7QEmmtE0np{`>w5CuKo?DdfiVd)U%<9p!}#*
zly}kZ?Z`zHS(xoHer;h>JdYx1vouhoxT)>>t7hQRBO+-HnifB3z3U&vnn&ql-gDE4
zrx`!|Raf~i>VI|t^qycu3(orR4~E2s5pEW&)PEFJy}tLaNw-IDn8=?@2r0s-kHv$}
zwwpz?`#U-tx_b^2MuAatb%!sw{=7Bn{h`}|`~D<b6#XQ$@~vs#@2wXy8>l$WFls1}
zFSdaemqQX96Xo<nPS?#h@XAu0Bl3N)WZ}(12%p!yN6oEjD8wP8<)Dq5F!EhJ`J!R2
zdOTr<UIXnvxv@@ltE{lGCo^r&k5P-O=;@hUdj5<IDe{;;Z<#vt)$@jj?#Ml8$nv-D
znf$!00(*>#a4Et_YZ$?srGgq+_;NrPljDiuPuK+aFjWy|A>Tf~w&oAWL>;davQG+b
z-5wgC4tIobZrEUwKh6<DDzVrkKfig)w2AVnx<tSE8EZ`KpDthzbqcqZkwd;f_EvUS
zbcf38iQ_4?!#nJ%NkJpxi*~&bGxzm9kshblsFiWh9toTWjuLP$m%n<}3$75DfS+8z
z1Jts}S>a!=hs-%J9O3I<NRpsn3jOPyO=-X;l59MTSaZhImihH2;<;t6aSO<nCL{rg
z9|Sz)pA7hAkA;OdRiQuvvgjTX5fG|XJ}{*a_&iu21Oax9Hph{dVw#*@wz6vCIPK>J
z^@*zht!Rgta&4L?X;l}S?jmBdejn-?iizltZe3LyN#SN(8`;Sc*H{aFGM~wnN3ES+
zO^1}U%j@%P-Mqm3Y|f#cn#X{M>aZ8Q%=ySX8f^B%=+TP3A~p!~wQ|79Yv&h=72*cp
zf2*vkV+ujS%iOugHRp>OmPtHGR`}W(nZ#(fKzs%SpkBSFCxVy~u#KeFX#^DY-|4o#
zvum^?e5k!qA0N?E(=AdZg#jW~RjI>dc>H&uq4@msF?|hmRa=Q^h4qffkg-osX4r%N
z$he|5&FVKY$PwGMOuF_@(XpRvrRcf>Apz_~D#ar2hC3b!2t9$lB{axt>d!GI&J@6R
zci#8c0RL+<lCHkVYw+fj<{J%|;zt^La{M!%@|htn;F_RadT>|!uAsb<AvkBKrT$(?
zkf@b2smUS5tD#)2cBR@As<E`U^UDz^*$?O17alO=3s?_ZaGXf3%@EXL&Zy~XzgB?u
zEG^)RMIX{g!zaH1r<ab6w=n5b29wv)y`j!yAq19E?-J%beD)Kg7)bmkn?ozC&jfKN
z3&Ne7>4PKX8tssG6NbJR^duq}IFtRH&xGETH}SG2;rR5ypyu^rXm2V%w!tC6?h0Dd
zv{UbTm%}6ke~NO2du<+&nP>+LCcGSf=weRseHfRQpe>Cr`kjIXmb?!L!>zzRD9UC#
zni8}L6Uz>cq0{!gOWlxMSACFSa>bt2uMG19f1CM{kXZ`F7#?qFNeM8FeX&Bj;;5-Y
zDR(wGY_UEHCl5OULW-9)D&TXMml8@AR%9<h(eVy!tK>06Hc9j`cS+$D@6_}0&x{cH
zMe%FxBxLb(v#D}%gbwfXW1!_ME@Z>tC8J?fJR&#cQ$3LTEt|T9ExQ^uiGh8m#Dl0+
z+&dcJ+g#J!V03*Hr}N!A?Z$_Yj&Kr}FxV-1Q;)IIsT!$qwTL0bO@#;LyCTPA;fbTg
zvANyk!_Z1hoJ2q5Ex^eX@%uEkr_>k<)UKSA^9<75Uu+|#3<QLXOp0BIH@x93Lnh5B
zj;Fv2nD3+qGi~-!mOe8)<Rfs|<3!l7688_JUF!>-5IOg*J7B2)+sql7Z=*xSRd!+`
zP&|23){}Xp)Gn06J#%rXfE!DK>7|@Wpa5s`C^`XYBchM7R`14l!>7j8LId<TR>ktU
zK<5DeeCC^5O9^(ILb9b$cU;*@k^||4^W(56I59TpjYc}$Tga*8bxr2nf}Z9qP%3Q!
z{ph~8PSx_hxUfuH(lR&rHv*+3I_@>E3~dqtjM&Sn@oMGTgARi<9?D0o-4)I=SaL)y
zf%5r|Q9vh<5B2V5R+l>^NLGf#&vIArHsl^Wqj4uoHg@SC*MdQp_w<?F5g)A7ilJCO
z(_w{Yk*sW-tk$B<$!$VP5@Ny>+&;XJ5NZj-$Za^&mQi_rv@YjGs?Dm2NPQzr`33E$
zh)u(f51KtIa5dj)(`;5s^7{7xsv@_!;}-b0`1DIvRs(7QaMAS?OT(xm^tb^vH$(Jf
zt)*UYq|3<V!8hnI6?43IqxwhswV7ILco@?Ie~)bT9_lBb2gICUWsG4fc$Gs^RAE%h
zMNVcF%Byv?WZ`QS;8P8QlSkUptB^TfH6p=)H+Q@4W-ZocL5MSJpIj?A*|Z2oWQ-GP
z<y?A8G5qV>lGm*WR#-gK1S`grZ3Lj&*50alH&&(0gO^i~8cd2j+FnMValxHHBseRk
zw`#j0?VN4kIi$2p1dGq`$}W8xC>}+m9KieXf@!;4hB^_Ql`LufcN#K~`~)*HUZ2qt
zd=j+gfwwzDguS}D=5$lu^(+w9z{2jIm#iwLbb*aj@(DzfG1(vQHC`}$95y_`d@r)V
zeam@Lil>CA%5;_d9w~}-UR>Q@xxLOBp#qHYnxWcm4|epB|B{~Qx(k1(r10B-{d=Z)
zf+Qx|ur*xtOtpzdwd)28rB~?sIKX?C)SiSJ!q~p-&&J|4FK8!0fd{#<xZ^|CKZDr|
zDR(-7>`wD2Z)$qZ!cR8)8@hhrO0B8ohxvc$telO-m8xDUo--L)Uh#8CF#R%g;2~u{
zDd7@_`mNER^*z`XxZ43znba^=LxDb}^vo4fKHY&tfZ<&l5vpthvi6iI$1p%Xg1AuH
zf_M5AB3BH$Iw-Y$%Aq7}WuRmHXNq|(Kod=dbd;FY=eoe%idJy1m3W_dT?zU@xT_X0
zv9P7nWP^Z_kQ*UTR~i4**c!&=cm4rLP_bEO?LZBcd9nAbcqKU8iIoKOJfsae&!L_P
zI1-uA!swE%a^^g3UG+LowgYQEh$2{TsYEdgYSztRhXknx3#M4Uc8xVJDRHu~)~P9S
z78n$NZ?_*Sy+24VxynuRX-%i>+Ug+m7O9C{O!;JoUX!AgK%3;jgEh;~YC3qD%SU*o
zzR0GMBp@T0pcnJK_FPtan9A4o1!wILFGwRu$Y$!GnZUJ6nRoCKGeKR)SP~O2o08Bc
zNA7m2^bbRJib%c|^2@6tzc}HJPqH>K+Q`MLHs%fuO)5s8Sdz{wdhS<OA5|1L)Ia?C
zr<Uxa?+%x%y{yMYZchT+vJl)@@8J~7iU19SQ?Krs_+SlaQqT*(LJgLIxe@YdK*iX2
zKRA~V&J2!4-r`<|rw!KVFq{+gQ82CK@?;+{toL21wqZ<BPNs!kOdJC#*KbdZcOQ<R
zFp55cUJ@d|DptQh5@ErH9o6N)yUjIbtYgPXQPE+3^_4v~5m86xj@8C=ai{GylFx;*
zXbgTDv|!M?S^8nHGM5CVFb|T7BjqM7$ZxbU!;p~c;X^ELmkgeH0>jcktyUW~60f2^
zF4ymQy6{PK8cH^pqe@#*+)L3!##<oF&0ol%JV?l{^^kd|{j>1oTIROk?Z|J3d{w#{
z{Fqd>ycY~@I(XTPFp?E;SWy-lxwdfbvG&rPA@It2V#9J!3nj=b@^o$Hkcl%B@*5c7
zZnR*p^8~4uH{lp@07?)N^Jm-F*?d2W2{<v|J~E-x73t$63M=YCHUOJJd3&DfwL;vz
zi%f64WPX19D9Y{B55j0-qt5T$fo}*g;ALW*M(iY=!(7;looZFnZ*(0k*UFdp@4+v$
z*{0cVeZi65Pp;!u?o8Dp`R30k#1zZ&#;4yW?384qBX>Q{SU=;BxSAF|(Zjrncx|n%
zy)(ec14=jn{>~Q3Z+o1P7CI<qJYYk<x<2~rdKrdI!uK-0C@S{i-Y8oT%+ZM$g>zmA
zcH{WfY4j{9PkPb%A;0d%D~(SL5ObWxVQW(?GX4-I)X`#fFXh!cUjRqL0iDcjnpZTL
zbtOf`9oD4GJUc}rntdp7@tKQ|=Sr)*E!oLO?4#=Szg$B17cNY*bDit0A<u0c=I!V2
zIvqd*E}=a{p~XxMCZz4vB>C*)C*eE48t!Azkown~vLs-=^3T>g;nS{aZxb||i_U8$
zP!;Xb1q$O-h<=w}8|=3dOyBCu^w1m48iNb>jM%mPOdE`yY##YNv*wq#jh{=hVAKGE
z8@4;3hF=FD!<UM^rSfJS?K>(Ls?UVZbNeAV!fvM!6^1QkCY5a)3-tk$*ztJE0Q3M-
z0!^_5D6NeAcxfwXP!^o*6Jq=+LjoHB0m!GDoSUK`mWo>>XfHo)1Bb9M2ck~>>{P1z
z^ZU6rF`vQsuL}EzZnAT#+v5UMcVzm%+pZ9kiq?Tf-ZU~YZ<QwkkVflaA%y3UGEHR0
z6Vc-2wYb&qUp}@pmY22uBTG4;U<0i9x`B<ZAOD^On`_@hM}Jsq8ukC-&ZtM!56CZ1
zz3S5De-x1<#|bNI^^$p=5+H-;azX}59V^+P+ybp{wf51%6AeUVu64D~Orrc%v*;x?
zH3x+xd?D#(lfV58t=uUPGhY9q6#o4PC>SZHZ@rc|_>Yw7-{xD}Alrq_k6T&X2YVqO
z>tEBe8*#}|m$2_1Mb+HGZ)Sa)iQ2dYpVSe*Dk?a(TqD?%sS{n;w3#6OCb}`#+`vnb
zP?&=NG`i%tUfU};c4#Z(`zQ?lA2!LMdPe7FX9?>J_M*|F5$ce(NL56SLq5AXr)g-o
z1frQ;WLB(E-69A>kin?)s`z4p?#7dgc5Ob|)#5OnZZ!8*0ZV`SrD*9vUq}e2Lz0{C
zw~sP=ZM?uItErzSsRq?_N@FT)q6GIh!u(%ELVbOX$z&BIU$z!vh~s%hcf$7cdUyF$
zfSX5KK>^D7d375PdB0DnvF6c)c%3qq1^sN}kI}KOHv~IyPbg%UK)ixZwYJ$fYW>Mw
zzrffiI8_51e|FwMScMNwL7&{<hx$rwt+JOe8bkS_*is(pZVk!Lt5J$Zxklw0Xp+RX
z(p<>y|DDt~^X7j_ivI&8C3M1um*lmMY%pSdf7#N|gZ%Wp85`;Nfcn<bf3nb)JG;?p
z@ZM$X9rxt=oD1A&leqn-VkEEk-y7X%j`$EGj1PW})>lm}nEFs7{NldYj!hXln&<k2
zdg>1j={w;%^l&K~d9K>+!<&G`U$dmV%|8=kEs9~+sRK6^@Ye!z2$qlXs`EG@<+GVX
zr<8|7bq8s*Qx)ZPl4aD8q`|L>I1{8iLA84HLCi)S1AAq2PyhXBdowH6flyCaAtD0B
zsGy30LS&4*hi^9UhUPtl8{FH?e}vP(vFZ=m6!2d!*=b;Lq7{p{hH@8zZRL4Y=f5an
zK84Xw!xma3%S}~l-l|sxzy=2kW+MO1Z86qHX-O2?cl)p2Y62;%WJCUPFV$gqF?mMF
z_X|l%6W;_+bVP-H#6q6y6eO@y5j$u%7){HZWuII5SD7@3*!&Td>zHo0sswGr8h&}C
z^)I6NZ_&*s%hyvsZ>TeR)6O>if$g46<!@|^O|G=C0ea)(eXNj-DQtS)_<URCzdZc^
zYPZOLS0l>(=(bq3hSUuzB2|ns@=OjGdA4q{O`BTkiZA2M)v3Xza#9Mcg_3xGeUt6|
zAEQd@2me!$lF%=FDBEDQ{!I&Ab`Un|{9c8KV$;9~D@EMg7{%@JUOAtBByPc^3^rGj
zC++?;gIHNrS%&NF@6`4P2vr=U4i!4bH%%4|ouUp=i6MoT`WI3S)>p<`dTGLgr=19A
zW)zZ))>g;zRTYGqy<M{*K_S?}=}^XWA*P2Om&K0oqcelQu^vA~>sC&&B;`-}zu?`H
z&Qr+=icj-!GNYYJ*b`kRn(P-i;n}`XGG-4<;g1^grUAIBXGFub&mUV7>GP2c{r+L0
zxYRc~oHpp5N$3NDnVpDtDPMQZ?hrS4Haj<0`y##Kc>~WSzV}T00U_otB!s>9jfVYu
zFwDk=wB5ToRcsS{DL`;>BOwW%wiNa?1=*O(;72{EM7H(4Y&Fbmuam|O?$!Az+>kE>
zmKSkw-hy)wdBSKsDI#n(e*9LP6;|j{h%gnU$qEa$-4%k#XMVu^%w*bKU^#q|?T0_X
zW3G1sJA#Z=yYTB5?W($0EzxFNj1yDu98MRac1^nOofD4yTFubEU{8QbGbG=Sfmg$O
z;D1@J?T5G$QJ>1!Q4GtUnFl!*>=D9fGC!9I{P)m`jn)a*=s$BTVFsnS5y5wx00?un
zOjY4KwTvE$X-&QCe&f^U1AaM9>ZW?+leU`X$<x*9vK~>PvaxAssp2-T0$`4K)QxZz
z-QQe*5%kLO7wa=YN!sNxdbB>OYyZ+Bw~yZ^YFnp=-+yNcW`k)Gg~#<c`8|uZC0I?q
zrPyRsE__~6NjMRNqXL<$DNE_B!%h;p$ri+ZfHCGt0_qc_JE^dwwqRvvPSJBS!zO-5
zO2Z4>xZM0Zw(yTf+%Mf|U+{Jko$EFVg9>$$6m`Fqw?W`ixfA%YSH<tgA2lun7h6`h
zqYvl5K}Iy51Dne{?KnPDp!npV-?-O<(x;ZJocP#RVzHSPSM>m>l*$%F>vhuNL3Z^$
zBU+!`_}h5YY%e-b-FMa;e-!#6BmyTb6<vh1KslXv7T2y8(wqF*)g9?h0pW59#eBz~
zBj&jDfh8@GXwkV_8v)CoMkQP!3{d+<2nuBx!gOHYUO#rc>bIa+?OsH<uYEiH_Kl*N
zQiWn2EqB4-U`|lCAFZ|9)-|WQ_3G!C7GnNe@0f>y24pF!9&NmbZ=0RV*~3&A0P@3k
ze<Z60pWfbX8pT~Bq~330O%^e39mV8%2U-~2x^dW1$gxqWqMOhDi>@6SzLz-fU*giC
zBzF*S^{sNgihtmvMQp=V)nx_$x=d8bz|A%w*1MZe3353zBhm8p?9;KUZ#B~ECTx2i
zYnyY=Ry^-9y2WnY*Za+okQMJh$d07Wn4nHQVU<oHiu95wwdnLO5Q;%^y;`sHJlG=P
z@MPW~75+6C)r6%)JELAUsgTV``rxIzsv)?EU@uQdnFAEpEX9`YW*k*;jxG6)ye>Qq
zuJ75XNpBDeNQaEr*m3H7<SduC$<*GYk4WOaycvtS+JnqJ^2@O!lPanAdw%`NJG)QI
zW;+h#w|lJg+W0;cuJ3I6d+;+I<s*lRT)O!wvl*_K_pPRXFeFi#J#kkXGOBcZE|lKr
zN1RiG)AS;i?A&JSUAvd|t-4NHQXb4!Ni}9Si9yBTGw+t%801R-H+Qqx_3cb`T|ow!
zp@^_A#_WUPKE2#9vbBH*LX*n<X``)xc{^|d@QC|~!7k$orn9MeXx<e?J}saD8+HNp
zLTa?LWIbu@$-dJGo?69+4Ntx`(=2*`2SgccI(;E){bG!@DWdhXKpe7Kw=A6Xy}>`Z
zePNjH?=`VWVc5Sx&!^Tv8A6Qz<gf(j%dgV(zS0jq;bTt}%Z`~OxK$0`g=};LJdFyQ
z{^x#xmPCgxVYAPN#Z3c}6K+*s`9-Mvsw8OwkoCfd{vxjypCG5aPMkGW!&zd5!QOrM
z2mhH)pisx*r7X^?UAu&<-<B){3O0Hzf|@MNb`m#E{SSAy8jt=FziqQs-EgqN0QT=l
zV_T;%EEcwo%vIkm$lbx%h&Z=S3}J-+cOba!wB#0dVf@7zD`7#AIyXEuZAF~IZMxs>
zo!d48`}dAptr!WWJ(h=!m1AspPEvr)jN-%H8ez%Cxn`kNh7(ZzC8h|O05ED0C`K(R
zVuYvDH({i0ipt*&3Iff~dJO8<Sy|W5`wI&wR$iW=YHsDTr>fdP5lDH%bf>_kpTsu0
zT7902{Q1lTIsHlj3ljww$c(Hk%?N*7W_w1lg{>KO-Dr2PfQxoV0=Z%AHo@6M!?o|n
zsK(-k8Su$+ad%<GfjYx6f(sfp8-ksLvh&uq>bIb0&K7g0{IYsIbPcF}Yj4AiSLZ?-
zQBDz4InQh0Lb8pG)!<g1b6PT7n#YJzovcI)|2T^{;3T_c^iB7pCb^XG+-q?V{!5)s
zc1WlPC?LAo!uiQUwH<pbR?Q>D@$OX@{}Fa&l@)b$tH_tU=TGIOc@}*7Jgr#1XfNX&
zYcM+j$nGf1LnF??Ivs{zz<GlsC1-@G;)a&~R!I*<SgQ1?DzDs$)gPP<{{C-&y?cT5
z(o|E~$bD~3rDFZFza;mkw*HR)xBb0}|LPX{BmYA0KH=K7ofhBPFB_k?LD~^mC+V$?
zw-tfz7gePh{MiFV{{QDfqx!t*KlN69uoqe@>d&sL|H8%pNrCgHZ99dD1<gPhUctXS
zk}UgQHYyzudJopuCyH5Z39@=Gh9WwPsrjVLj)sNn2q^d8t#I!6uw4jM>41cOG@y~s
zp2-{Gj#I_!S-f(}`eNa^sbI-Q1^s*9ZWbbD;*DNx^(c+M7uGUoXXdoWmhe-)Fo?b&
zz{qV*XtDi;EKg6E^577&?%K}iU|^;7jd^#69VL9$Mc~fLvUadYMtRQnm2spb2tpFF
z&h$CO&=R2FJ0mu)Hr4U|4x#h%%MzYL&fybDR1l7LGi0GI>V5fM-1^N0iy|G|db4qh
zB=^^+GNr{ayBr@i8RDvBkPd`PBlS=7?Y?@jg)Pq0XDh7TyJ}G%cHB8|VCT^2-YkK1
z>WOenfG|159C|$-3~QkH4zH-7_o3L2?>aq4p8!J%+Emv(K&<F&Vbt>Qg>#%hgzG8L
z-NvQNc}tj3KEmv1Q$E6jz=-!dVERP(1>T1p;%;?ybtP{V{NBzVc{!=An?C8`dr*Wj
z{No|rkikLhE~zgH!7SZaqF5M0wlLy{gr-cP*A?}@%Jcj*ZB)KjMDa#On}6dhyRGf1
zL9}x1!b*J0Nc&IsckI}dLCa{vYE{%`7;`T8ls;muS{OXs37p7v@UI97eOcP&ty$fp
zV-TD=F%ffP=)*K>wNj>1z2Rop`L2+D9YnLT?xQa;rS<3ORH`@eSYCBn$>LGN5KGM^
zv86vI3j-`;tLG@%%Eh{sCwdxncj8Lke1@y<JY&-S*i{U3$)({%FY^u3Ndjp_vf)rY
zTI)+6HQ*1CA$bLl8{V+3jGU0gA2JG8gnx*re+;S}MW3D7aN^^o{dyo4px9K^5N+pN
zY%`ocZTzw!cZM~`DrP9--%%EXti-u>ggLZASZa)IP@UGp<IkW>$7I7l@yUJ`6sx|5
zbm*dVMQZpI7Sbr9pQRa$(^7YREG((X4ul^c!AB?jkM_Pitf{M8-`-Xz6{H0f6omo;
zTE<98WDu$-GNU3!8G;4@C5F+c0Ryd6Ffs|qJc%NRK#(a6GKezIG6hHgk(q#$Awd#C
zemg<5_WRnezk6+;-sidh@Nmv^a?T#sUVE)~t@Z9aRvtXts}u@xSL&Pkx3NKi4ZIt;
zYbBtvY}!tz!w89xz%9O<2DxqSG6j`9aA()YaWcg}wZnG04{vd{zLe?mWW-Nz@MOd}
z?C=&wcw9`U$*KOU<vuT6dTNFvS+%gHyx8({nKheV7)ay|JEd=hu`GN>O)Ptp5K)ZN
zH#>^A3wi{+gtgO)0>msld@UvHf}BO1oiT7a&vEDd0ch=7jqDZ!UkAlEs%0+usp|9o
zLeKBmHQIjPZ9wl}O^?;ec2(BO+MQ%=#mRdlw|W)2ZJexlqbrd{^67z<d!M(Qq=gal
z3OY!I)z%&DX@SQPs;h2>nYD@`wZU-OMMjjm-*8T?(@XSBjvvIaF}Wr5Ar;eGN@({$
zwa5i&yP!#D$2}s=<9)B&dd+O|?ElI$(f6%JKz0`t1T@dc+s#_$ENo8NBtEA;Q}a8K
zyZ4I#=^C<H8Ruotl(AyBePFO`s{#5^Wf!b$sOHGv;hV9+_7XVVR2Qd1ChkwYyz;~{
z0Qe!+jAXCq?Ol|H!S@~RiJTBCxJD>}QnL@Wwstqfspi?Lg}go8@Y8NNm<KJk`9XZz
zz)?mx$udvf0v4cZ0edyje619!#*nqpFWBVKp+<(5YdhTrCEpwUc3Q=RWD9x)ZPbv6
z+m&%l-LG8y3v5CO@$)Oz$%wdXyU=U~rPsTiYGK>Dv1P}`9i+=QwUrLGKENVasDopD
z6SmFO;u$JWq4$UJwaORNk4AzTj^aLVOG3tZE8a8G{m^)r*Jf%lM#m8{I#(w;6n~9$
zY{}!;Qrg4RoiAzo%}G!1Wk=jkip1Fbe2`~p50A*J4FD;NO9OG5S=_{JVEKE}r+Zg|
z=y&AP1yqYxgYJ~q&m)UpzJzHrc#ND~Q*2c7kC1IV?8x^@A(Un&AImVQ@7t)mGYurV
zYzCn>?x1ExXAtt`QSDauX-189d9hL`H22hTTg5Ff@2(va%T;%4w{-t7`(XG-m~!Pn
zbZXztxy#MOEEgx?CVt&wKi%N0Y2BppF|}<I*DooKJ#RUVNF&VrxU2Aonz|54Yq`(J
z722oBW=zlY<-(mIyL9e_7_}{2NQAR3?-WBBaF2^k6_2`D6D8sm_eP@?=CIu!Gafbt
z`D%5g7?Y&+p%M4gzGCB*;5)UyYfJc|dJ7}=BHe`?xsahFQX}<o5Nm_$27r4sb0UrZ
z>KO?@ih|-~4>}uz)mOwvbel@uL+LpTD_Ew!btu6vO0tVi_L~&jF4QPeRC?nSEL35U
z?siaWTC8nP>%h(ittnh1WXi7DHe<LOma@aehPHpGXOYsFq)}U&Lh2Qh*C6a<3EQ)I
zC`eKpy*HCL#U>$}ETB%jo;GovkG`WrXX_h}ON^3DI#K!K)|_$bEc)z>|J!SEtj6+W
zAF`Qe*=wTx(`!Kv(J0G4KxHTqgNpVKHhK*zHpugdIklF=pjv*~{nm*crb*I9-w$5U
z#t||iiGFX38d%SZpNt<v_($2a#&q7tG{#gAcC{W1ZqfyqH-<L$a(Ta1x3xrCeA=DD
z83jh)#8>RPEzkM@U;so3<nIY*gy3eb(KT(Kmggyz{_=c!G|JYw>xfIyqql={iwB)m
z7K1Fmr97!`HY-Z+%=wntAP};r{5TY*H<r5h=AzE*SYgvmF+Hz^6qJQe*GkoXs#yBG
zUuI^n80D>BHdZ(_#Okhw!kN$eTL$VTm+{XTJy`!`wdR9(ak)&3(pB2>;-lIOlIc>6
zhRe$xW9{SVvpEs4Ruk!aB#lhlBs+O#*7!G!JJ^W@$!v4d6(`D%R}s^5)SShVn{Q4~
zACB8*M&;@K^!EDh0bVC@_rT_*Q#}=TwJDE$Fr`-%Z(d+Ec_~|4<ypVpsdjuJTzes_
z(EBAOLN(4P0)-NLK$4a)OJH}Sp46&uLP1axySxr~?>ED>9MobL;f$GXE%a6kiM&Zo
z_?~LgxrL_(rN?D)<v0-A`7HAQVBNrS%DVq^c&9{QLx!$%dqM9v*Iz&|h8@Vw8=<18
z5md`;!91{497#KiWi=P-V(QwQ>RY2n*_)Kv+8a0Q+ygA<1rDNiQv|Wcm~ef$!R&VJ
zofSO&z!D`qLGvnM$HonjCUf}>*nNJLH!)`)^T0vs*`IJ0pZx>^4P1)@*vV%hBjXM8
zKHuE&xn{Wf>~!LkxaO72x0;2@Ws4`ezS^)EL>Th1>wz4Z|8((DY(Qo0>EQRK|JfJ7
zRcsdKxoWLq(eaZ9$4VF5%rQq)iiST#5L`L^{<UBD%#S0hA32ZEoolvztql6HsUsQi
z?{IuYOg+emb2y<Qv<7#tzbFdo`!p{vJdQG>^%&F$1E&Fe_|pD&tuvwuQ)Ut_xxiq>
zz$I)ErEoH7ySt4=2Ng6u7cX3?+$i$>WdJ2UKC<KEA2tHBYWfmM$ATc>yevF+)`{a*
zT3Ikn#-0wcoUZ_!S8t4toAt7_K=X3F$oGA12Z)@RQwC@OB%e`Fc#^k^9gj7~{!Wl!
z2>7mJpuRu}ByI+;oWwd_74#*C{#$qL!$@6LE4l%m)r94&9LB1@3lFT1K0}o9I<29*
z^A!78XXG*|GFj*20ekO}e|X<}xBdOdzxVB*yl>!#01n^`g_;3R_Z#z@snTGye-r@Z
zQ{c|KcmP-aKG_9;7NAD!Z~MzHC_`H8m4)8Ia#|Ma-U>~D?vA+RVW~0RW$p=FCri8D
zscVR`Y{d1s>h5@v##6NmQ#cIZc;H-g*C1LluD%2~OlRx@vUjSd@gewInnf-ODQC^N
z9JLaoS_3Yr!kj4ZqeT$Ne+vEsPn;$dl#DT^GzXVWQ3R9?Q6mxl?wS5sZ&Fa1^<(jQ
zgjKe)2bAu<FcmNr0Y|vmDU;H~Ip4_eDkk<c3Z#dmub{|5W%2OY2S;jmSPHs*SJ+Sz
zY>rVboGyu?mb8A+6;VFpwMH0ob${_^Rj)LJUXUU=-{*9ws;FSJ^fVEC0Z|rE70tcS
zpu4A^CTh4)p>L!iPM#>c1QZHI<vtQp^)vR@jW-NDY4uUlcl*@_{I=nS&iQ3MjkI)s
z@KX8|f}luu*PXKaj@@^~PI<hGdEsS_U$<_2Lsl+f_+)>h;?p;yC2v#@Vjj9M5o__A
zU8c?(AVtAdzpOPc5k4yqaYm~vM`m$5E(LMmUIdp}e;1k6LM{nn>IcRS^qn5>>+37w
zJ|Yb{hnVJcRHGY{MJO&8lJ1J6T1I6Bk9VQLeNPGe&>T`Z>al+*sXK!lA5=yuW!w)F
zLo3tWaZ{3!S;1u`QK*12${j{@Lj|$Frx8ojw!EB~O#3>`JtLF4-(tzVk>FKKU>YB@
znIxBstl<^@;bK4V6Qm*6*O~|VY8Yr`)e>Nj;&l9}e&89-MTVVn)NT8W1)}q?w$Ovr
zLTGm}kw|prj*Y%?w1^j{qrn)P3=|=|O21&Vq}x7Y7>g0}QqLYZio8||#BEA)wtzMT
zb+l84WtTr1(IbO7Nb<Y|UY-4Bv=6BaOVLi9&ql*IvmCN*7wW=+s&vYCR1MRvGD<EL
zL7-|2pM*1rvs`Et)DMjCeC<os=eOlHZx~A}7aH#7h)f@+<4Qty+>2k!dDWxItRM^_
zD=Ul49UCFxv1$ajZ#JZ<SgJha1iF}j;fP#6XR$1Wii(4wP4}$xLYI{^_x3b4XDEMH
z{F09R?~8YbhA2hVvE@8q2O+h;&U0*aSPt^}2Ic<wtxC*pzih?v>fElmQcqjF8>$hT
zbBR0cB6tY*0y8~&BIgojpc_p&itJqMuF)WYz2co@@GT&fIX})JpfJs}2+?$+HL2th
zMl1W>6!C|Mcom;KFj7WD^p9Pd9v$lviJ)BY%88<y3xbzUca>RNO^^C@)}CA~nBn&R
z<$XJWEdTuxR`xcv=_OHCSNa<<{f;-L3<v3DoDkpSw_=oVIWvb=tp#J66IP3praIY?
zmH}7$^y~L-6o?d#BbG<xbe0>KK2#PHFy7EsLth-FFNon;AmF(au~Npm?JV{|KYhAI
zZo;MB+MHX-dM;9aXVmuA8E4Ob3scRFKr4=?>jl=k2z_czVDGW)I4tikC^5kP#b3MB
zXN{gGeDH!64yw5v6W(hA8^~wV3oCGJfRODmcJ8qyYHY?moO-7bf4P<uWz?lRfTDJx
zTWS!_2;A}dAR>?nZQ9phqd@dG7E~jg^>N0dwq$3nvQgCNZu7ilUTo2giGS=>Y)>k)
zCgEfs8E}Y<Iu1gMmIi%%a>`hAz*Xf<4RO@@rF*s&!EDT)N+H>-#7?&*>t-=>V5|C9
zS`RF3v8ywSR4o2%8tppxwgy%{Z?;;m6DqgI*~VzR)YB08UuAC#vT-x=`^rZS4FENc
zllia~;#MbhSZUciL3U6B-mN1W%~4Imv&`~YuThYKZ_o|&=x<b%U52vHawF4+30R2W
z=TWG&)sjYD4e*&$Ml7c%G1B3eIT{`)n)SV6%(khzukI9gw=)d9>z&|ps!ZxPNS-S8
zvAis7TG?us|LTcPt=l?xuLsV-78=9qd@5)!Qo-caq_$B7?Ux3;Trv<oL&?*ed@IqR
z*<mO5&nI?Jgyl@9UC?NI%lYq*Ol9mV0+G0p)urpLOQljCe9H?LU8_ZJPv&!{7;Nh@
zHCY@DQ{X1z%j`5a+lpf2&8|x|Sbb11hp%i-CXl~)$apKr9@5!TD~2dE_`O}q98xr&
zcOIK`;0hzBuC1JLbXGCNLvS3neSSAgXFN}?I9a(rtp$kHCsn0td>l|;qmBpmt<K)n
zUcr@P%Jss1yyDlsCHMDZWYjK7<I?H`&c1l%4cPG&0;_#k*=$Uta5%PJCTdISHeYh{
zGtiz0(Ly5EC=#`{{XJcpaJ!PF%pR?n9=t+DGyAwuriS<Q+tpe2>a3lsmHV2-^WQTZ
z-s=<rGuP^${}m6t=u4)_H6Zs?pVpeI63&Y!1XQm0vwx8&mqL%!6VURq-)qqXQcp9s
zJdn)MN3sr|rt_(VM*q+s5-3??<t}3FTB)GS(zoiB6McP5Sak;@H!SIHpY~xP>Z-jK
z8L<fXQ%f&okMGG5tyacO8dYl@(rHi2kBZN<x**|wL&3qk@78W*YO>FL1=^DkeMVTR
zs7^u@DNF=kzsV|eF^$aQiwZHCCzdr?HKoqz)(G2etND`AKgjB@$uX>Ghl;kqL0#Yx
zlbR^pb5v-4DDleX`8*`3CotH}^jEL*mQ-f6vX^yQ3CBYh9l=LD1ZXOLqEJn<<NF8B
zt{%GNb3b!j5vPv;{6e8_4`+bZua^QR1H9CU?K(fL;ujIPwXc4E*e2Wx=PdzHWZn6J
zWQnqnrlV6~QP6o_i?Aq`g!kJacz$J9trDibQB<fgx;;dHOw#UWk|lc%kh0z{o2GX8
zR_Wh7y?Su(@^X$^?p_?dvK5p_U0=vdYKwYfJ`PM0U<~PhvYj*bi+8CX>(K3}?a|02
zaj&pgXi-?+2u~Xep9^(H9>&=4M^o}|5Ama`>kJjtit&+Gr119av)ZHSPoixm;q-85
zu7CqfzsYWjkFc07a8V^!V_W!M7<FH58+4Co1EBN6H(4P;uaT=ajz`StnlPgFN55!0
z<?jAKnfAnX!h8y8I2!$8bsz6VX|znFr3yic9MxG>g|Ba4KI>#Jzp#mEM1B&1H8eqn
zR_$|m<WH=Oz8#aW^aV`x2gpU@Hsc4-g7&CrE&Ri63<1AmyK}@zUN_`tZlrI;^M!kg
zs^&+y-FU8b1Q1_#>_w-@IvDreF5a}juXmE)I{HE95y@^I`0F<R&V?o0b6WO^$tEf(
z`^u~K1qaHh9pKG4yUjOL0QJr5w%S?Nz-%+)OBUWBoU~5|v_!7g44EFl2l6)rYO|S7
zm_HLOb@|@_ZCR|$zIRtGH(jpCcDWs%``~Cu3xf|gsf}6J@t=P8`wWtNl>Mq1WV@)r
zK6}Ffi%rC=Ln!>jRcZ5~@dkI{L<T;$bTbbr)*{`&^!2fDiZZKRd8=7K3L9R*=&FWJ
zOA872jLJ34Tk<F2JjHhVY2*tCnV%&a=$sH%{g#Cv+LUe11E=S(>L{6zNa7G5p>uay
z5K4v8uB6{|INHB6W%jJ$5#-2pPqI&XK>a3iTU3?Qr1Iic<CHhL?%me6Z{YdEysN5i
zmN<(rLQCEliJ5{@Jgj2Do$%!b^<0lH(X^e1+tc&`On-avniSgAKCxt5qN$<ww49&P
zqA){nOt}h4*Ltvhsy#b!dtkbL)5H7@2l)KFMj+~8?Kc-y6><X6WP?j2`TTIOqJ;wR
z9S&-XlQVKWmSYMtDL(a$s{#6fCvWj?rxe<`l0S{I>@ss5WVUVP<QPr&<}HiONWxEa
z@LUb`IdX<SjACr0AnSaqGD3R<qmm!Su1{L2pTN7^iGBunWAg<tyLjuHE2bS6q+*Oz
zB8Na4Nks9_#N4exXjhDBpkLtLR5QAWu;>(W`qEDR2a7T}`ZZtiz>#MJ@dc2Av3;eH
zEKp${oIH5XUd%eix5~2bM?a#ZM2&D(M&;JL?PE%~Mlh!yLgCx!o800m1<WGt<qO)(
zF39Ihi`9ftq=clmzV0-;3+B}O{z|2ww`;fAgwayE2b$|}e`;eDR3Z(`-@Hl#wSFAp
z@W$o@`Sf>NieJ^Usrcx}XPqz#80>*rxdx$tq3}2dh~K<r4WFN4zMznBw1lo(2OuOi
zG^zOtXEbBWrurnT;By1T_#Z_#CozkYs4T$$?boCneF}m+F^hDyx1BU|LIbAxyLMsm
zqOe{wgg;~i(=!fo0TQd*yWdFXKp&roa?@4tGjeLLi8W$sG}#)*mv#%i5C*d8EEZ_j
zV@7n(l)}^YUukNCPAiA4rYPAps0*NFBvQyIU-_`rhe4hB=lGchJ8Sqn?poJ1o)R;|
z)4Z3NE}&9dcc;@iANiQ1d;z^PW5SFr!m@Vk{tD(*N4@W-g##a#M&f){$9>8lwW=2F
zi>x{kuB}@!Z<+YoutH;eZ<G3Bc$jGV*9#%WYSjO^hq`9PaeSj^Al?*#n?}{<4KDZ5
z5-<RuaaeAKXDE5TI5OYS4R|+;w_i?r)nG!TJmcB;LY@Zol~;$DpR4#K&!OK%rL^+d
zlwA2i<bT=A<BW9Lm9%Ik+bM0fqE=u^&fp<m&K#~RYS0FAw<+8AxIoS6-F_DCjMKW>
z_O2MsbR*65g6-D$hhsBx4yH?cJ@}YFLs%W3&;=6yzy#f6+Z5VaeY!#WT+ks?z&;V7
zU0rn(a^prX|5r@j2alFESwXClaVqg)A|2ZpUkmS1e=07S9U?RGFsZFDGkxSnWkhTu
zs^=)bRdiZayD6e^Rmezb#6ClSFp^?3p(^^rB%C3L-45@gLyGP{5ifB$zKT$$M_gCQ
z8qh8oaB!7L3(*yGyeOZ`^xA=RT^{`6(+)g`Q(l2Mf0-tnL~eY;&IoZx@_r+ou!yQy
z?p|Y)QGUvRj~LiPYNT|II|ram*PIZ3@;cnKvIgOFW0+sS@@J$WZoh_cE<zoXUin?;
z;1+)l5|JNyu5<pO2hfIVUWGd#YGr*WpqR?Y9`FI!If9P~9I@nzlb;%VcyBSoR|%PS
z;u4>ah-+UjdTTHz8YWk`MDZ|-9Q?&`IqFT*1n?<-g+t^J>|Cit04YQn0bl`ZRp=&x
zKi=^XPPkjPDWHstG?oyyx(`iewJ1tKPC%D#Dql~2i>c-C-mpM5M?}4j7KT2V*IVBj
z-{f2}mx{x>%a5I!<v3F1e~}{vmZ0^)Rmh_iz5AYO+RFl#kz&zP7RH|*qZ=IsL5!r8
z5jopX5XMOCZZPj((L=Hayk;XRypKhb+n|3146|lT?z-&D9Aq<nT1^u)EUF~fZ)@`a
zBon-Cc6PQ=M<tv!nY4N_v~UE57qvc$eB0-aP_Ww7`YZ2;0||$U=5bshfB`6NZ9FxO
z?yte^)-!QIXL_K~;DYPDMXLZHjPqk^$tjYxEk4w#5tGHmm;WMo0ai2~PT7ET-Gv`o
z!@jh#2jEBww+CEI@d&bMtvdkKQm{%W#E1d7POYpUr=_5vVBIx;4q!)sqG2+rmNp(Z
z8NJ7fqyi<*2)x7pUJO?wlq>|X*;(*Hbuq7EEbWL4tPfzYj80w9Sucz-X`5HEBn=Yb
zgXX~DQ@H$z)4Ehi)6r9BNN$hcj7Hilx!Wwo+>-^BMO+r>|3#SOnp$}NYO@^dM*&}E
z;!>%cZbxWz>)9W4xga!mX8&1e`<l}Xcwh{+TSxPVQXKw<iB~N8QxkvIHBEr0u=j6R
zKb!tDJO`qjpbp`pZzY=epY?W^8VQa}>2tTCa-iq+NQ4$x1t(~Cmijy~ad|mWad6v{
z?hj_F5d^aXRbWeiFS!H5RqTX>`7-Io8pt0Itd=kS`lNFNW>?x2!nqeL9!wISlhC{9
z$Y!3aeP><c(0>Dd{pyeK>ovuB&eh+yG6DLJ5}`#%(Z5YRCSUp+!Y&*CDD1Lk)PgW@
zJi^R1D0%CP43<)$;6F;-%K(qbwcB2vE->;yZ&vPW+|@h~=Q*VL)JrlB4KFtFZujC4
z-`v=wbYY?jFKiL;{Xc8&)ryApz5&HQtVL++#XPaZX{dL5Y4Qk2&wdz%*bzfsDx1Yw
z6zt-6&ifl;hubKB6gv!GKi&YG^R*K~pqck6kjecq2g(G#GQ-N$3_BoC{I=e(`ELl+
zTDtyGp!WUNu^s7J{k!Ssqki`qns|NxNh=P*@4TFHMHA(9>}g&<f>+`nB>^=mMTb^Y
zN86hk%wlv2GknS^m9L=WwXA}_G}>DEN67^5EgQ#Ml{dS7`oCT9U!%DH++FY=XGrb!
z4M>%SBvt<C$8{$Dfg$<#lR3QIn$<T}+B24axg{fQ5irK(*SyOo_&+!5FG}rruWW!D
z^}ox@=6DI8K2_r{OSO8xgVzgu%R>qkEnh<|eihc{IBGV#Ycjc6G=CDc`X75g#6RQx
za2X0dHHW}X%`2DKR8aosZR^WqCYAfJ-_8v)L5#6vjd%l`#R-c3XCuU1O5JP|Yv`fT
zWS!-39W2OF)O&w+*|%dSji;nO?YWrOc$Rt{llqh7`o%vw_0#hPGnP~;%VhenXGIvi
z>{k-!v%UJMxv;WHlU|pV8ka3Rrwc)O;fEtSQ}_wdJ%H0-KNHTLvbC>ZWK_iVds4G{
z({xxD3qLyaQ_|km*LxK1EyJuksvVY~h26)P%ykCIyT3ZM)X}xNX#hK(pz1*_0QsmN
zzH<#6oZbul&4Hm<GuNkI{<;GnoniOnQ6-Mv>zJ4AP0Ijd4$_E0swwCEQxI<<s60Ym
z_SdJg#$XjOXjXNePYm~@V$L648^Bt!Mq+yi1=wh~bhd}SOfCQ<74IHuvjm@g_s9js
zPkcCSvcOADBr<v9Xcj82RQs3?mKrPc?$gNvp^oC5JAJa*f}LgqC8_Hlzo0u3!^^ot
ztfziX3oj(>T|XPQ?`!PXXPi6edBzW{kt~$qdjFt@6S3So|9_wH|2$i8AZkX3ZLEq2
zE5)G0Nwpf2<$&40HNLntD@ex0#(ez{-F(UUCf^Lo9?KTW(!q+EX!n}3SzlAltgX?O
ziY_+f5gH`5>a5eL;%!pv<2+GXrz&WIQ}Ocl(Sb%5<E@GKy}KPS?B!|SE~?<bRaws&
zCtm?Vw9!-TFsphAy_4&o`ne@QYoYB9B<2)SL#>i>>m_zIMipb#(W=@y3-{_|e%~o-
z6*seQa}$3Nw5Vpfued>bpCEdJ*g~T8T1$fCb#ApakPbZvIo|y$#&JrnVs5UMs-+1}
ztx!=~pZd!PFwAC-iP-X7$bxt5C4mcQ(}KCs)qFl7-_aeacCIvG%JaK>^VCpjCRzBK
zD#42~wNh3ndYJ6XQ0@$f9&yMTGZ6E_Q`K$-x#zcFXJYOrKsuZfAVnP7WFTh?QmtC~
z8Q!su0*_@yB_O$dhc9-VcMI~cH~hTdr-0@>eTD)<B^6rLUDy4%+49`I7v;OwBt`Ey
zuWttX-l4W}Jy42Fh^2yapF|`Bg8+XH_st0+*s<h*{BO2&-1TI@Km#3>P>;e4V~G#}
zXLLip<m`9v2I6%=VVIq9f-i{5+NXZhuG83>W5&jHM|5B<K_T}{BBLLUCxrw(n10Y4
z891~fZ=19XYs$@W=5BgHPGVf(nb!30{XI=>)|yvy;vBNs)4(*?JSoq$bU}b{X8gJi
zsER=Yx!KFCSwGd8GmWndjDuzOl}5O2p?gT9lB7ISjZ&D#F+Fuf(37#5&n`9Ht!$P_
zg`Q;w1$qi{7efd{hMJX=dg_jy4<e=y>Wd;_yG;|WN(KV`@}c+VRApq9>{H0Ux3Zwe
zb(02eb48kWO71su{5j_i5ZRv?^;V?2fXjwEsOVc-3qNx1K(V-c-t*mRGV78o2Ii4-
zr@#au@hAyYE%Ck68Et+*#5s4s%K5XOk^H$E@a24RwM5M2f2Y#E)|hA@uKFO<)agfR
SD~@qArNI%?!-PX;Z~Q+9UuO9L

literal 36815
zcmeFZ30RZYx<6{S-B`DvZLP{6uv-<h4#*f8vs<dDOd>)A0#SxA1i}y^LP*k<id6_y
zQJIN~fDB1Q2s5Fm5E%kWNCF`cG!hJ95JHGaNOC{0?b+v?eeZwY=l;)g_kNzgkJGpO
z*80{vzw7tD%WG#mTy*}T|CbFLHt3u>`Q6zK8#Xp=*znQtCtASBr@#E<4gB#D>a5GR
z8^{B@MZm+y;orD_vtdJR_LkL)e+Hg6$DQ;;ZP>8&>DsT4=&=t&fkEBG<L48-W8sNO
z7ZbuZ#9fR;CLTeCCH~dw$k8LV(Uv%m4I8rmcIvxt&Rq_gQ^nNm<)Hb5t-pL6Pm?<@
z9ea88*S~!F*OQ<AO*VA;!qY*+&z2Y4ZGvG2M-R}u(d3--TJedLulD#x<lj2x=J5Fr
z<4(neK<}a(q2_xJpD_#hwtV(keS}H*p=(7hHyrjJe|hVRQx8mg_Y~fFelO@4S_~Vn
z#<1q8)d)yOQNcWa+j|rx2*H_Xy(F~_#QP5RU!%Yjm#%#J?I&OU1pF4*qhNwn%)g{%
z{5JCT`Yx?q>;LrSPcJ+^`C~l7^rz0_ALe{nzx~PNS8KC@_qdxc#(nnNVsk$oZTjt%
zpDul?3;petZ|(1qba@@A^M$$iDfh-8b%16}b4mW}+IH54K(%HS55vek!LqVG7)BkC
zTWb6J-sT!@ka1xr@hXih>t1)mON}^O&CgwEQ<n7Mr}vpPuY%Ow{H9e2$2d6Q_bpKC
zZ<{umDLYnS;aakA%~S`C=Q1(r^q#MNzr<e+z$5M`vliZO)jsmumhatZSo&B-QBgZ=
zEGxW-C)qFsSo6C1&a2y_gsg9Vr?-RKyB!+qadp4`c0=OCs$>%boxGrVS?pXbdWBJk
z)KySgq#G|9l3<jU6CJ3nRabN0tP}C#7!}wK{M^;kA$j+0@APCoxqnGkj!y8VJw)Kt
z;B=L1;yzs-&${Dg|7#m<<UIB(x$Lw$JmUT;T9b%&e*x3K6eKpH9R9G~7q>|yaOYfz
zuaAWO9X3UzdH-u-=3C)8P%j<Bv@^d_=;w^`#xbO)Ci*+0P+6)-Qhq}s)*@1u*YH}_
zb3giUENz;(g({m!!Fu;;ivFw#>B8Ay`p4NVbi@|Rbp=QaLnIL=Jz_7@qa$pREsL#>
zFtL79r{?o?$oZt&f`!im4`?Ob=V=^zbcg((4#bWNs8>FyMayGqDPAinrLO%ov&db1
zUYpGF%}eUnO3Lx<Y9t-(n`Hk*Gkt2}m#s?MK-uM(-;{<N9i!Te95%fPE??d}|4YT?
z30(#)A)mK@u;aR|&*eRi?L8iEIFFAGoD;cYI^@A<z1*VBnd}{U1<xlh<p){11X;uc
z(oarApXYm|`5a6_+8&>7izq3od`x*#z%%k>+e1=<4(H@$F<*i$nldnU{kKT0Nwz;v
zbHtg8S2w2<!WWDwZ?V&SRG_W*e0aGy53L)&uD4$xOo@|s3U>EoB~w6K=e35Bzf6O=
z;GtuZx9K43y%}_mVf1!h60Il!q-gf9-)U)Gng8=Zg>rXJYRr7SOQ6<(_FY!=YM2%R
zzM7K1X)f|H(a`ftX8bhD&<c$=dYL@9Qa4YWM<?Q%Rp#DP%5){q`6cGdo20N&^%z$u
z&YKO4KG_;&dpir%eyPWnYsYLS;I`i9Me`=ZPhh?X+{3RJ3|hCsdkJ%s#7;tNL~dm8
z(Wuh1{Qh#2FEMomd5>zoW!`Fy4|<wPecZiIcTc!S*;}~7jPcY?hDX&Z)gKofbgAYX
zyu`%cVV9+4hPaltMe?yS8lxA8I?xVhgY`oe9gq5jh~#j-=`}^c<1U;WEj6qoJzh)z
zhn!tD%22p8_n@=sF}LLTxp#~{xDYLb*fUO<=fhex_ae5XkH0PSy4D|(yZLSSr?0K2
zkTeL<jA_;;3Tl95NRMySol*o|ExIv>DM@x0az@T32BQ3-%*2`tj_jnD4-S{$CyG37
z4H!rlEL@y3nQt6*`(QaVcw#MV)#-f0uH+q=jkEYq{w(dm)yv|(Y>ehrz7~H*F<$py
zBo}+-$BoNc78WrCyOL)oZM`poc!&3C9calnvV&C>#h=nSZCrYTY{{*@0`=Vf=}MvS
zPJU%jK^E)b)1xj*YX5^%wrNI&brEXrX>kSzZULWnSVHtv+b$Ss_FNq0x@V}$5nIna
z9%xo%=W2-C%DYsVI1?uCU3=bida?bwgYhpfUbSq(#&X*qcfT}vP_vUkwCcD<Ae>6H
z477uJh^>x@CYH^cu<qaABBO)d?hr$+_0QJ3RgEEtFsl<eVvv4X>v#Kvk;Mz!BjdqK
z7?7Ka-Ulme9+G4OpMnzOP5q$=32G>$W8DG1IJ$05E;A`Z0V^MaY%cWODrm|tH;EAC
zJoiuDe$?8ehY$mN+5(o#j)V@?vSZ@BpWc<T!+#c@ro<z&qa7vGX?LHA*+WKk(Vjys
z?H)Swb~5<-*W1vPX3gb3!rRy9843<Ojw$1X(tPj@>mNQ7WH0}i;}+cGj%H7ir_xg_
zPDJg!UnsgMZyDw^9pYDaNdYp$I2Uk&*b`OR$@_gmZSG5BxRXL{4~0>tLPjGyvXa`I
zv_SJY{ML&z;EBhoEOq$VWy^fwoh-3+u`|XZneqU<u<nr~in*QOH2atLPl<ddCcD#*
zoE?}w?_~XXv#oM~Q}+3uVQW~Z|9v$UWowNUOZ^R`qEZmQ0OU01*rQi=iiRCX_O^aD
z**%@Rus}E`Ql{jy;c*-5j(Oo0(kr9eo<AzMkJu$$DC|3hr3N8Noj!ci5r_f2vt{MS
zW|%JUN3RP{kMAFhJ!6VRfogIJXO`jThvMsa%O-q-^!&<GOJ^r)mWwFP44uo{1Qs_K
z94F253#S?=I76=^7$d1uS%?CAy(Dw=eP8DIv&+wvcZ8+pbMG(V5{zCdBYx?;?awKX
z*2EA*K@o@hR!n{PvTLM$`ur917Gxlx16Krp2Irie508D^I4Aye3NFy%9BMg|Lt9j@
zEB-xcWQdmRiNG^R&DX@5W|T~*pJ%JVW?=Q`U?5GnX{$e7C;3PF-2AI2C56l$_mqU~
zh0l?1+IJ%B!$C9?f^DGlg}tkJqVw&-zK4|f#p}WVE2IQ>!*6zGfqJ<V+~E-zvTXhd
zd_zF*?C}<x{QBdP9FUK*Ho03`Ug7nKR@8ZWXVze5t=p?0hLtAy5%s$noTpHR%u6RU
zUM^W2ObLaTLR;DFCzvlo(m&{}f@+=?5QQwu#?9X7)5tXRZHIU7B4l537u$R*@aA}*
zsef9a&wIZa^ueksY~XR4UYPt~mzM0cCS?T(?S=R{G!Le##-mr3FO6)6Chm(c?l;y-
z0^i2>X0HchHi_Zbsp4}aA43EekV!BG<jSVhu9ee6Z0-3coHx6y8%(EOLCD(!D>Wg1
zgM~~?#hUzeEfNq;8CW*qmqx-jsq}dClFKtoJrF2XPSHp^ChGM!p<2hdxu%5<o#Wue
z<(+E+h-l^Jbsmq%U-fRq9>wbNR5vtzeMcMD)o5({|NiXi%m2t`ia-4)mXFdVtJ8i@
zvI0e~Hy`mYRFC16v6deJsqKah%TuG_L=tVe%*+S2`g+%<Q*`wdOubKQ7s*o>y8edl
zk8U$WjhwiR4e3y@y59uHz2yGXxt1+&`2Ne9sJMNEA3BdC08-cAPXE61c<Dd!@Tne;
zf|FL~=Jv?wllQ5AN!zkM-TC~=#}N36u||M*ux$4-);{82eH6&yfgeYI3e%D;sK+}3
z+E=H{C^$t0zC{|!k#+w4^yhle{E=LM9M(3~i)}s~%dQ>gR5KKH6k4$?dSnKW<?}mP
z-wsR$Vdki;4rP*tY=>Eimj19U^{(RGRWKC$W{+{@eCq<OdsRWxh1UCCj9cf{g->pD
zN@2$b{>z@9J9Zxa?C+QUlh!VR$M4_y-}~_7q4s<=POUhqk(#O>w!BI=@K2e%c9-Aq
zK*~$OK%EaFl62;GRW%MTjH8TIPnOaBE`!CD$jg2CqH2-YVB)NC@$?pBN6sqrkY383
zqU1guRzAwOm}ZBoFKH~Y1!30(t9-U!dma<pPHPcPYeGWe_&^%Wsz$1Qtyy`WW?U1?
zizOK)scvKVX`YOr*g#z#Vdk`X)AT@FSmk1LU56HjJxz@^PXBRTO-5iRBp=Jxa%c4G
zXV+#JvQ+LAv1+0yZ_MkHv{tXc&$MJ)j7jd?0ASbfstzv$c$~Khy!P4o*gIibAd9zl
zS3gfPAfh@{9|KzOz3Sp#Eg6$#&2giZtX3g_{JSFAu@WnZF-}x{)$_3#4lVydHXfwv
zR;nK=2muw;J73P(m6y~FSW8S`gc3*V?n&f1$d8@3BbnY$!r=7`oIaEVvA*{~TyLL7
zluVwm$eDpPGT=);ar8XJ2%*o3M!tEzY4^l%a2%-WVCUq3``EM4<3@<!UZE!K4bKIv
zuWv!H7DEiih9?!A9Ln)lwKsE@{;$FVl3>0qD(x-j7hF5YF}r?(KDi?AjYAmo{7X^l
zcD}NGFNn`sNl_G+Mhr^s%#?1y*y;7jA{R{8G=4Xz)TXJ~w8`Q=!SD9V=<&GI+tc*(
z1wwSE`H&LXioOT9ygL2XPItzGOs|12Qp^xqeFnVYRYrek_vH2G{pGd>^g&i8)1S$E
z#7OY==J^ZsG*-z8nV|X@XT1w2#)_R!+jWPMMDhpe3CJMFxmrbWNC;A;fNM|}oWfhW
zQBqoc_}ba|djWh{D=GNIF5<%mZDe=EC4F8A{W)&{)@s@T2tR683uIk?Lw?;IHug(b
zdCbcfTg{tnnR@vh^{~(p$4EyI<htVciAF!=kMg-Xh)M@JZR^2^ws5lucUX5DnHlj0
zJb#Pg%KRcdo`_gh{49fhMXPZ#PtGaG>0syqYC;&B^vLuWn|>fPo!P@xg+ll2X>RFc
zFo*;BWX!jrapA(msxP%Tk7}d2!d2c#P(y={4w7SQ6Jn-2+hrRr)>ixpAmrC$y6v5}
z^>ggoU&Xv(gh_5C1=Ufkrge~-5R-DYf;X_8cQ~?NtFbSWLGT>7(7^B=iynv+>R#(C
z&K$FO<V>7QS=DXEzWZ*vC_q!LO}-a0#xYovRriw}7vo;yfVrS>VgDx{sl(6C9bR@-
z&xVIUQCd;^(h6bWm2ye#4Pm-26z^fXM|4eD^Kz1ny?JC*%=|^}Z@IS0ZZln|l^uaS
zdBog$;=FsmS1V;^VzNNK1b^A@o7+iX-_ZY?0o|bW_|pd7Y8h&*X`fc3D)-#Ap0>)(
z(va)y`26;4;SuYm`^`3;MuRf(7HJAk@xgzVew>zZqM}wGnt%V!=F=y29^^xrE*+od
zlTHmNo+p--TVM|tP_5{0LRTGfUVa$!33p3BKT&(CG^L^wO)ng>WnzC;JeWSTYU{80
zQVUYg_FM45c<$mf#;w6E8{%d!#JzlL<(sxed3+hHvo>^rw>I=s=N0o$9jDgZ%J=bU
zAA&;zBfqhpILzhr$@MLOfB5zGpFeoa5gQ4Z-$$%nd%Ni-;Mrep{yi}K`tS0fOYKw<
z0%9K`o9?kmjaQ|2O5T^A;u|1IM%gm~!+_mV6$F{e>%4Q{mEWUi=IZ8oZ&o2j-#5Qk
z=J@{H`LTK<{JS((VXX4PdFQDolWVHG;nz=(HX%OMN^1Y(nY=%(nsNyI?k;wRJbje&
zeHij^_z4N%{+#;cl*5I3F*J1z#YtSvK--J?sfPZN2D<BXEyW$t=0|34^gL8BHwqyk
z$^`8cCt?H{yYu%L9@nME8zs_X)ctd9Liex`UlNSe{gX-hxfAu3o|;+Y*rBne?WOi&
z@tbK^;-sR0J*#mbN0p)G3jc`J2NyPzEx%V&LAS4amquW{Eu%c+=BWL(pa&$|aQqF{
zcWkrRII*;~)}UFwT2RVSeyx3EjmQn!AEk|PCT)b5Xgm4a(prQ52)*`^ak<#z$v<~W
zL(b!xJ7Z*Z1?}CF-G4CSL`+=R)<VigPeK`}UL<~gXrRNx0o3EHL++}hnDT|no}WFJ
zX2yd0+DxW0<Carkzp-C;*C1Gviq@!PkcFl>Lly(XhmI%A+?namw`6VH=5VI{-IFcM
zAo}2Q;^ckou#-M-x&%XR5tCc13}V}AQ&eJD$Ii$a%zSf2OQL8fapxKp-zSu$F7?a|
zS9-IGlX!l`nrHHvgM+DME$^4RW?p4GLfe&r3uF(XQy^9?Are=df{r#tBywHSFtYI^
z2w2KBuBOST{J{3rT|q;xeEeKrRgS6Wr5P8P{3)wlHep{J=2&EJSF?3%b~&Y?@8zp+
z(3caDiYVP(1BO1PTepVK-Tryy)mz>bzZyqB`otl@yUFjYi!a4QjGKBC9h*SJzk;@>
zr$w>6nd-MK=f|$#vSw36?U$io@51}y>FNbJccDPAT3ol4Ek)I35f|@aM10D=Wx3zT
z)?HO;qk~P^*`KK<MxQLSyTj7%%ZB}NoEe3VJYWCPIOPrI3VP|;c26r$gt2P5lvPFv
z{EM{G6IYd7Wv`W!0k{Arz{EmiOQoWxv80BK70aaT9!OC%&19$y$hIHL!@S)jU!E)6
zYO4I6H^C6TzB*!ud<O?{q_zVCdyetFcsXG&oJORN&U3;@Aag|XXMRs?grA(hyp0lR
z2oFtkpFO)jm)1BWu8-AfG=o=Jv8%u`h>?L>1rgx0KbcDs7l@{VyAVw=X=7~*H;Ij1
zC|!7BJxnxmP{ku(#4CRZnnp9xo{vO)Y6j+*ym@iDbw*ARB>CCqNZu__1*?V+Df{>d
zeTP|sT}H8b++6i@6(My#Cp-0V@=YZv7K=z(UR+Cr0YahJviIS!n$E98o9CRjIi52#
zG`w=w9cy(-F9YPO__P*A4m5^~!z@9U?Q-ENwg*b>oRpALj}@?XX?`Gy?~QP&H)eZG
zj+Gc(WsE0^THbzs{-A<4iDA|rtPyadv{h{Zt*~gJjL7d>o}PR+dDre?m^WFFq^i~B
zl`YuM#mEPh{!VxYMSI;9K3*+*Y4SFO7(J6jnyAh(=YmaJ)G6BrDc*5l?~@&};S|5s
z=H@eoMuPBXSlKva9LpI$yyxI?ElA4rXp#-yM0RY=DM!L|=Bx2ydd6N!ih5N(Gdo&$
z@0>wsTyE+Hcc({DEMxr~P2I?R^)}`ejUX@e7bR?>d7BG3i}8|oVHh>IMA}x|vnii-
z9a*(=U=+LGhAMBeslmP#L2q%IZJO`KVzfbni4)FA<T|veMBzB(bZgwIK?cXY-Mb(g
zCg&GJN<~fwbBz#K?sS1|#m+f_b*y5dU^mBc@P~lu<}I{Xp<~f30!4FW^JwJ!c*{c*
z58YlgbAv#juz5w5O(8|xU4=d(LCa+>N@4V4@YiJvupTqZMlC6^17?C!n9n-2bjzk&
zqYe9BG|!~7vsg{IxdysU4^<`>)%ltyXM4a*1zii0l|e$VMk1uIL{G_xY_LJ86D>=H
zq0`kWyU{fHV5GwGWe^5)7?*vRKOvA~&RI=66gOHU#k}beD)c)6*A5HKNrpXmPp!{0
z0^56PTCQ1k1o$f{xl(QgHq~i-p=WVX>cQ`Om0~EOJ}yI(Tg$0z|5wV(E!)cBhmQ*y
z_z>H~tv2Z^r!{H#20Y2pgTHZ(*u@Uohgd)ruMWyzFI*F~^)#t@({AjYcfPYoXM}KY
z9+=&v$V<>_e!}vu(;_jw@&-dBFjifbmdM(|f7e`^KF`2u+4A_!WbAA$y-L=hQ2{bu
z`M6PaFIWAilGU3<_;>HOsmkxHJ|XU2z`gXq+m4xqX<iM(7jskV$Z@Ne9Bdo-S3}Y?
z8=`_{HqPEv<bdTlEBeE+b{*K~3{GxM<GgrqoXu8zS}=e7yz9H^Tz;Ldp}q1QvRE7%
zGgr{zG3PjZ%qHei|BtBC2oc8hP$8Y2V<eUxJdO<jg$5#4P&Q^`>EU|*SG!9h?a1s4
z(^K@!mC#G-!%GVX@wk;bULv#EO=+b%3=?FF{L=>L#162>TjAM51|8Orp~1m+?P7ka
zdPUicHOc@Jv9c#bB8AEi*)@a8CNm!p(TD}u<MN#uRQFYN9aZE&jb$qeUL*(5nol58
zN!31mHRdh8?meo^QR+#~i#Ov<(=)Ps#zL*2-9(~vJQdP7IFG#%40a8wlf+NIXxZtG
zQ>Q$piFi12B-p;cV{k~dlVn?f${U_r4KMqXKOmG=y1)0%C|7zhu_CHD-jPOh9Hllm
zcE3h9%KR|%r%1~@)!+~0Yyu|;rfiwQg}agEZyap`LbSl;!3Gn9V|G{d2_4bUL4%2R
z=|ZzxrwP&Xo9B0dWnDAwu_?^uw}Ow>azLzgQ-$Uo3y>_!_)WHYmh^yoCe1#4DPux&
z(;fV1)$FwDN1|paXmyHGkl->sz;KEX!mLl{_s^vxu;2eIPnDok<RSL?xCn-IAoE*X
zkSqA;vp3ER{P(PgOkZ$P5NR8$-~nY|a4<$tuH+Gfh=s+~jq&l>;nc(!Yst33Ec4u=
z98<*$=>q9y@=yp<c0K%JNtQJTk;u90B~1NFh#5bDcqEk@d^W|Db1@cS7hyRvAMa`u
z8i9&50#|@(3;IKn{5j9Zrh$Trc=5=x|Dk)>;v89>arL#a=};;Su|wS+0wy-g^365P
zempP?kyGUAt|%$d809Uy51JV@5(xJsQQePa1GA1+ofFPGD=@)Sd4b7$iTfann9aIn
z55YUR2}|1W25=5V*<Sk&S8&hqaY!I<k#=%XOo$MYvty-^-7-P5cxL4omM9ktsT$0O
z(1`w3dHBh}4k{lxZionk@{6u;Z^j287R91qo9<Or@WRs-r8#!nds%69v-ReVia<`J
zZ#60^208Zw=^NW(2uHd9IM~3hdk`VWi(cgo-e0114BKVz)3#`;FmL*VT2IlEag3X5
zPg+oRnFZAtCBM0Griz4&Gkp(xC)(r-oc-Tnt<x3x_hJ+Z%IAlF!EJEQS~S*{$agAt
zzH)lt|7OV==XtjN2=;p`guBzB0E9a|30t^rZ&Fc*mz%8FK-TFP=EQzYV?=c}kGV%o
z=NV4lx;cMQG4XZ2siO^+a(SmvbRNY)&p%D2j78`)I594Y{dj5GTa;Yd9fhquNR?kl
zQ)6>VAbjgL0~PtDCH$3I#Htmt*d^ugofou$9_45@%N)t4UXO^qC2qM`q~RT!2Mo_|
zb<~Z|l!%*08qF@@)Oaf{#?&#k(0+U)OtN79Y7pcIh(y0sZcJo~U+f0{erR6w21@0>
zlpkp$!rvaVciFY8jX$LFj1+qCH*FELBFealB$2Y;ICnk?k@?fA+{LZCR?M`s2~48<
z@8W>M?=^(-)QH%Sg<Y*q`mXUx$6VSb3+qOcSDf1=7$zs%PgdBLYu2wQU%=dR3hc1l
z87Hx#w@9t0k=y$fa?~8{1ok=hxNUfxbjOtad{fBZxlVg0$(^ry+MJZLbu4dB#~r7s
zUuq@2+I5+rnaWe&A4cGFhEy3z>MiZ^7Y||6vARRs?vf4KdZ2UYF4)B_k=T>TCWr`z
zU-rS(t3l3=CtA#MI63C0W541mc}9EMuR+sS;Fq?NY{xJT%_dC$N2cmDJ9{|Yw(J2W
zkJk7dAF!%c<cVEEkw3~CwII;PY+L?DoK3#Xz942gjii`x?qUTy@C1?o>r*O`2_g*D
zyP0Y%=a-Uf;i76*RUf^|hW4}saNwKg#5^3Blh%qV8D7PFC9C66or*ONe6w?R3zW%;
znWO{be;5}VVSu2KH@D+8)(dErt#HNqBwwOd6{uI=AaYQT;<=m#ERLaW7MI4a>Mz@k
zgEZXduuY6<{+2%et^*=<W84Cj&GldC6eW);3fhxu$F_B3&p8(V(mD~i@boyBbKznP
zay$c3%;9pVj3?aOtT7rHi|5!N9`fmPSPFicx)QwDGFZ{e*(uvc^Z1q%hQsB=3lR@t
zt<q4+ZGO%HS}bOuXE({QaQ+IO!X3;7^Ld=oJ?~x1KlM*rc{w>FHa1o)jm|W7qz1$W
zVx=q=s6)>12$XE(SmCLd139oE6cv1OtmB2W1&unRNuUab3V&E}?|E$|yd_L4(?cx%
zaAV@aTeMvX!w?tuCc>$nca=<c+F$V)mF-l-RSLTigd4&fPMx_*{&pjR2APx0J7Z#n
zS4}YNs%C_3V9tP9((ECAvPaC2qZ>b9yMmEpR7itx`{~h&Lw<GRyYrR=M}}~NgNtC0
zK3J8%BnhLS>yYAUHf;Oc+!Nb<6lKkqjzr!>B7xYgzKnM>=5mq~0#OS$dc<-l$vScN
zil&(jI~_tD9i*RY?t6nr4yh#6TXO5XB4<SjTP#1{Gnmln6s3cMwwmAq)vBtIg>1?-
zIgW~ty_S3!3v=Nh7pXmi3#TYky9u!ie>UbU@3wEBsG~6j;nM<`X^2eiC|DBVJb$Jn
zsaHdU3$+Spl(&_AgI^MkB#Li#l!&7z_PBP(%>7`<OzVk9^7Pv|T=8lCMz!Mv&htIG
zex=MLsrb7T(sIcu*kBgPn%Kd3f+1OFcdTT9LmFs_(Rjv#l|dM2)$*H9NZ%+U;-tCX
zs^(1xe732(HdSRiC?|pxQ!q@7<R=?by-9<K_ZbXL^2VP}f!}=8;EJ-m!`u6(S?$Vu
z8=JmOetpffD!^m>tfNBY5|GYzg@w@M!otFijl!n&Jl9xf9yRF5$%CqbUqG&NzEtrW
zFbnOCAI^E-f1!P34X_!BJlgcg*+Kp$hgIoaQDwi-RA;BTCSkxF(2JrB)>C6lQ;Mv0
zV%(wGFs*sV8o)DG`r+iSYpG~?tS;NC>hez6Us}-;K2Q`1oVmA{wH=*9uYN#JegoS7
zUp=&cF48nEHmKRdZ}`9V-NSc~7CNqOT0562x2yv#yc;i8C0Ziztr8c_!<5?2xy>Jr
z{)!LiebR0>w<$053km<7y~A71whtIg;h%u)!Bl(x*dx=&E>}0PZs4u#v5yf^tc1Pv
zXE3jlR7UbWPxq)es)?9mL+jBUC{l*BXg3JIww_%3^wF(k-87{^<HVUYY<7PQ>1zV^
zsSc`rp|j!%F2>QPU7j9LO@FHIe_WUM*<@x#Nt1$dpzr;F``ncopr*;XCaMonsP&+F
zXDulcljT~&6qm*RcQ)lI!Ewxr?&+*7csJ<J>pP8`N(j^C0q}T=B&IR8|4i?s)4ONO
zXh)7tyRdT-d0LkzpclGYJ`_gIor+NQL~govZO)>J&|F_pgWMV$XWfC1s^LES9#K4x
z7#f)Lc)hYcaE*WwNAf3W%3qbp*pe#RLPG$?De$m&-=r2L<YF9XpZ0uw4vx_nW20kP
z>Z<v?szj@?#}sxTsIarx91H@jVb>dGKY{$T1`e5?SX$f!KHn~H*fy}V;@{1o1@Tfo
z$B5?$wm~Z_!4=acX?%`<RIp0?fbAfsQfvn$xR^r4bt!ps8m8@e#F0F9{%0he;DH)=
ze%@)zTLkj~Jt*jorll6tL=qr|DEk{}e{r;Kvg<Ak=9}#^G+z5SdH0FfxUuqvn6G^#
z-PGh5VPe#=@bbrkYB~w1uUa;q^-LSH=t4418A-Qm$u6HF{-SSj<@6Zjmb)HtBskc{
zRJCpEj9_EhL943^yY!&1IFk~_<@xtrl>MFvL(gLK^(qbINGYgE#JQ;wH^_@4R;+A}
z<~CD~4H74N>lGAJnPn5aJ|Ie1l9@~X480|7i})^|8Md~$k$oqC6h_P3IvcLbiH&2L
zD-C!@wj;FiDEnnVH7R|_0gLvGQaS{#qtW9RhqXX9S=*Tho$buCP#d{zHr`{Y`$ioJ
zF+rF*yIfGy3ODmn_L#)Bu5e(-fup?re?VJDqtXg7udCWh(mk{vspWsgw1~B5htKrh
z^@vK|SfCG$4K=NGv|Z7h^HPe)3#Qhdh>C8`aOC$d-F~m<Jb9=yZ{e<u6jpaSn70T2
z0pk4w3v~>dSZQdy_u1w(5*4W92GIJ#CzD2Ic~y(QQrE`zZ~S0Vi$7NCZ-cItz`nOw
z1A_iPymS-f10XcpO{+>#yUHo1yA6%bo%##=<8}MKtF3)RzxZeq-8Hw<(ZQj{ef}Fm
z24E3Dixlwbzv->{ri*dexdWz6o365&OSx~1jNDPzI@{yOcJZ&Dx#{w&?68VNG|LBa
z_$^I2U%2u-ZQYaoLC53%$?H$k<dECbT1iVg;Fi>NJgQtJ%a6q?$5>JhjBnAn_SXs)
z@&i^FR>PP~@&55e%g19C*_|;Z!yX})O&0a)9`Z4V2z+reELkm|t_ILHvUwu~GcGP4
zow~4Ijq5!Rm{!)NM;3rNm*sYnUP5kf%O1EGhgn)?dO|443`A9Is=$ERpYYp<F2r3-
zyZ}%~(}KLM?%hPaHg&MK@S}B)aYjpP*NIJl)*mo$VnA+td)uqFlzZ&Ok6GOMgTO7N
z8v*0HP}RMWvj)em@iKF(_WXYq-BCM$yIabm9O4cG?`-J(b@IvEU;m55KP>e8+`Yw5
z*4|N|x^$r`)LsP$WdD-?wm=nrYS}Z-P2<ZE#^M;OI+Q@_j%(`TGtQdwx3jUtz^7nR
z!amLR!++@G?Tc{;W^&x+W1xq&3Vq(r=2b<H9&b2vhN`MN=r@F#bC4a}@;kcv>iW^9
zl$PXk_O#NcY2}QBEBer4{!j(;z;DZazY}m#jt+UcFP{IkcbN;pWM^?bzg2N?+r-@d
z=L7wB`{$Mso$f?#sL6?1DeGeFPZg@v@wOz%cb6`?*&E}I`-QMn!IFuf5M~&czl;LQ
zP$Z5%eK1VRA0|O6>N6i1Ywk`wZ5~~j-buzde-Pz{3!eaPBgT6K$K~oC4QK1u*<&5e
z^H1^r3;=Wy1Q9~?o{_hb5@pe@m+5vFhF3z*3QwTsQ4$2A>#O9sX^YY*LGRmwe57Vn
z*rRVk$!Tu<<aaFlXi8ck?(k@b@9gQrIi}tm+*dQ&0e#v+_cu@8TU-3(j=a`c<aqdY
zxg42he_W8KSKJ+QeELjI8_*5Id#2!In6PCr1D%7l`~HBoZy4};ws#G`$&WA0cYm7S
zHmuv&5AD+?^CznYqmj7_VQ~n!iDmIqrg_KPu(-5ECe7Wrae8dS@0ARoKtRxW^=!Ep
z+?y$H(XIsLOte)la69hLMoBml>1ObWfyt_D(2!mBwVt9(md%X!V~HoQ62c#zY6t6^
zwAqWPzxc;)ybO3<6_2(Hwc-@kT<)z?BA5kBcOvqz+O^!|d<VSWE$05nC!i({p^}=s
zE!Tk8GNkKjU(Rw7z@skBH@K+Lu(UBFzGk2Iob?rxzZZy2(<5wx#`|L7A2QN~<}n=@
z;}eh@sQ(z_Iaa84%)T+3vora9Pam&a#vgG0n!f*5-Tz<?zg07UMx6Eo-$Vrd$XJq6
z@a+mNhjwZ7Tt`Wl*OBYYqTIpb(xMUoRUbG{%FboEN>?R=Ny7Ud9?+tpvH|E9)$W4*
zyI9J%S9S%x?LS`YZ|u?xtzl0yQ}lD+8t~trsCEw_if0Ph%wxUBrJrLZg?w#bLRS=a
zRvd&yl_}VbG*-Si03sHINv*OHyxPCxt5+JI9_yW&xs$CpA+^fw_Coq$ecIo@&bYXH
z>h#RcYH9qr?1aGhTLx!g6*Jj$N7rXn4_MbD<Bv2lTC!2n{f(lOTVhQA$@+MJ!Va8h
zY{$1^plpK~*7`Kf;AA@G;Mxw_YJ$GjYb5_c!^!TN_3_<P3AO%2PjMvlD?Mv|dF>!t
z>MoAlJ#|0jTIiGe03868$`%M8S{eGFB>^j5TdAbm>qu4Z$#m1}rBE_b{xJ5OCkmKy
zhXuKftS>#*dwck>uUPQVXsYG)e$WG&2g`U2paxjcw-^yI{u+ubL>o`fcp;h6{Tx}|
zjR?VqP&RHv{pi`G*3DPq^{<*$=br8+t!;9holZB+KaBqe&rhCUG)B&%0<nMqT$&#S
zeU<-cKfs?FHk~%l0ztmkt0Y7DE&j%4)fMr#GG_MOe0A;h{@m&Srx^nl6ADZTllqhy
z%mH)up)**DV^uEA<YT=$l@xC&{gUq5iuZk{_5B-<<&MF}>CGv(#u6QSrH=5u++!ai
zSEEbJ2J@yLLf^Nnf3<I>>}LGhCb{dv%?|DVFz$6^SG81LU(&trrk5l}UkQcqfroV-
znj8Xn_(ip}mV%KoZl69;b&%6YX4Cs-eiOlEKm`9qIYcMyfjOtfgQ-qgGhXC_SqaWF
z;&ZB6!}S#-Sk39|!vj+dezJJ7(UeVKb^<nA@0!il4|({Um%-n(k$=^rt!aXE@o`FJ
zC~s|(HiS~>xrIG?b?f8txB38;aUxa3Uke>hE$nvUut31WIuAEzy#70tzIkJ&S4vu6
z>4OOLN&t2?w@j7Nyc`*2@wWneVLmM{vtI9qoNWYbsT5Gv>!rM36m~xN=&S21`lHGB
z&>5)a7&f-3+NIf@QwrsWoVZU|tKF^@Zd{D9^(h)9zoYj3>#htRtbqTlgu5X)Ze!0o
z^we+mxlh2poe@l3XPR+O-iPs0=n-GBB+`-Ky0=s~X0_5xrU4HCon|-O&VS+3yx&(G
z0+Y=Y9=x4-4nmF%Tr>L*mfQ30JAehO!^Tp=Oym(lDetkOYKU+Nm~*oQV9ah-DHO7M
zDt(w!sR*&pTwC#F6-tK`P}CPwH!pxX_QtdrO(~2lKabhHmH@5vOggQ;d&;sLbg;xy
zZH+LqwKGqyY+*uBQ5%2m)Y<!#v$lDsAYZfFnE{X^*IDIjjKS^=StrT~;OBYLV1?A`
z$c@Z`Smwxdi=zBD_hE6-3otBzuh{YGSn@fGvw_Vt^x8_EYmUlw@6+vobAvRd4uh&H
zngONko2fnx;sSI2S=SQPPD@H&l;JfpSlb*3*}B>dqAe~}7J3HKR4Zd<c%X49xmKNt
zF}H({=Ivp2ub*Ox+VkN~lKd+5-)f?m-s5OaAd3K+INz?8QeYWYY)2W7>CjAyJy&ko
zP>H|xuPsT^S<P%XSos>L(x%G6?bF~uC*Z8jf|STl|Ho;YW6wv+A-E~X5&S%gh;T#p
z6#X49(zZE`)F<(=Nm6f$s&)ngQ;xIx@UQl@FRM7T8oT7B&<fo0Z7_5kIO;QYD|!=7
z|97wAio#DXtQPO`EViSbX*?gZW^71>spbu_?K05hbQ)D={fF%;r!}j@j`vHs9jjed
z6t+wzHA{W9CAULj-y!K5#H%G+q)z|c5%tqGa<FE)kH2WhUwo~3Z>$Nq7lgk6q5@4r
z{K6@gVnpHZL^A99-AS#u!W3swIN%n<YVM<n9l(A{X4dqi(3aX5>An^lin3$ein9Sv
z5XEfan&IVrj6vs=Hb`Py?qK_yeP)p>!<^O!Qn4<EwC;niqic|FP*N+vD#yTc&is&}
zwMc^A>hGdYxxa2_McG80LL^k(RXyTa=oBC9JzT9+)utx4`DbV*x2Z2&B9yjJosN){
z#~|4W&SIjxKRjrd$#ns%BG4j4?zh;P9Aee-IfzN)U|uBhH!lugBkiK{!YX2_xMzmj
zh=auzr*`$ssFe!~!w1Pue&eYU24nZibi5<=Bk0j4JkSQnO^tXyoVSeMPMTMqur(uQ
z%-HsPT)qetFgZ1@V()<^FMd4`Z9n+fcrvc<aHCcCaFFb_8?-<i5*HR)A8Ub2iFur&
zkD1D{{=;4IfN<UQ4?;vgU6;qu=Mfc^#1t=$fF4wsub<O72e?tdeb=iGGA7x?{9I|W
z%u^!*lVBcEG$6PP(8U(ip!GOrYrM_6iMyqp?<%}mpKFK5sQN7jtvJq{;ROA$AeWG-
zgq_9}ol<4+kP*W15<d~>T=aAACB#-OKneyWbTfwui+VHF4W)scXKE}DEo-mFYtmtm
z`Ch_z2AkFkJQhvqw6m*qjhYKLmVa8gch#sWD=X{U%5o=tdl%IfYeXD=Itf?N({p|%
zml{+(uT-#uKXC2Sa&xUDrIw7ZQR4aipRxA-p~O!o@0>CLD2Hkz0ats6<%-^?4-Mqt
zR|eIi8I_-9DpICql+kgF*-?4ltZJ@9)mT`2KgG)TNcdvBF0}Zn-U!ed*M75;!%Zyl
z9VEmmUR-rbl#}fjT4o6~U+6(av-x!lVh>eNYF^3%Qm6HH2-7r#XI$8~FjW9JXm378
zGCc?hA1u)+D*!cNJMI_hL#IL$mcM|&PuD(xz2gKXjc0f|O3yL*I8ik*>&7=;fwiIZ
zuLlf6OjeB5Pw~g9MaNjt9;a&EN|)HDjn(h2h8sKG?DkQa;+IUr=~02br>;|4W~%(=
z8gb&rpy5>~Suce4SY)<+KPoCYAZ<#@Wj_pAO|ceEJIQRZWe?F41u(j1enE{yjN5IS
zY7gZNb0O*O@HmyNe-QmWdcW@xLubi>g?-MmoT^2}J8oWYnJV#!`ttbjd3WW5LRvjV
zyCk$$n+*04ygm55!3LbpzFVZZ{y5lB;>edcl5jTJ15cN3t~j4?w?^#K>v~8GMV)7K
zduG3c_KJ%RRjBHkQ-cKg2c(>ns+fty-BY1Y5{qEj#;$1l3E(^eBUCySc-Kl*+cdAh
zR-6E9gQu^T9Un-1gSyWOG^P0EY&e=wT0oel5VLY_48`A(&`(y4Efzp(_5AE7*vMr3
z+}!H0CukUFWFG|oI<PQ5l;tj3)DLKWTf~B;yMWs7aCYMyScln!mhM{Gb;e}5Br3-4
zgqX#RIm9Sye{o)s{M;~>{*YQk9At;p3SSmoSIHmH^Q?$jwVVmv_ieYbDyU=0l}JQA
zht@$TGmtNDE+B*f5fgAa_AZ)Guc6eI2Ac*#b%A0=)&$EotT?ayrCVgDg3g2|6JnCR
zRkiIe2D2LDRVnqCs`ER22C`$|{R2I3DEUOw_B*|!Ep4k#>Sa&Oa)tt0uNG|&>cUZ0
zZ6kIY@Jl`pV6aIojz2WE4fxUDUMBg~`WJG#huTC<+&zRyiNbd%kCtsnu|5xDl*((e
z!4q^7)s?dfMSN5!O7Y$W9HbJ)s)e)fBl`D)eorh|lN0am5f9w#uU20Q#Y&IejGCDI
zI`?ehllwpyr~A%o%1q0}I?B<$rWxmRA#abd`cr2%_GQ)>mL79FAt<c$L4+K_{D>$Y
zbtAbII-Lotx&;YLCOvhl4kl2}TWpL%TlN=>xjhWFyk!?us|S;E;(JH)ykLyV^N(#A
z!%;>sP|vf--7xQHEeN_#S<%o}GI`0d%pC#OZa4P{6b~W5xq8sz*p!+qrhAiN1?Og$
zg^oUFY35)hlJ4gY`b^)_qKQ4oE^7<!*vcp~51Ux#a;@%I<qkL}ciGUoNqBa_qII@n
zznSELQ$x0$$52skHBx*wsQjeZa!-T`Xp&cR2!8Gon=H3Hl1nXNENl%7u2!8nC|{(S
z6?m(nwKK2->@p7g+}ts0fv4o_hURm1;^-5MEH6G$*-S)q=bVF7*Tx(gKZZC&xJa)?
zYC+`7y48_5!%~BQLVmY5-msz&Qry8<2(!kJ;%AGb{vq=C!*^~B)i%KU{Ay5-3c82=
zsqpb%53;#6<+SV8G}7^qQKz@MmQ9!16jj+-90%N1@EyfS%b|vNm3gmNcZx*pVMo-?
zk%Gq52iS}Ho{0Ja!)kwj4#I$=5JMC9P};g0JnTJe?Yo1iI}2Z(J>>mb=dSQwNF^Li
zwHr`;?TgQ#X6<Ju@1M6QQS5#^at<FoD1=0p`-TKWOO&QXI3wd~qGHTE$R;=H`fbbY
zmGWD4)&b*v3j)3pgQw&Vauc(es#AlW692<?V9PxCepVGlF{;0#nkp4v7MHdaS3GEM
zJdfs|j>I!4j;s_CMKO|cXjfM`&_gA9tp2ug__?rT61RwgMPqgB^exu{L4~^5xPbk6
zB!E)+7Xk^dzQw)YivFZn;Zrc?V5Lw8`CW`QMx_U}Y=s|dRrupsEJ!V=7XDpnNdL1n
zP9X>vYolz_#7adAQo(q18h&&KrtV;JU8Jp)l`K9cg?I?hV22^}%giYB)T(?+o1A%P
z!F05V?P7rnPxpOHJz(Q3qMtcp(F9*|)2BxT!TS>^Vf~4Ls*#q9FKoFf{n}%-@SW(u
zM5ijhf#C56Q5}aCrhUYmBau!WJ1q;~!6bl*kwFFlC=oTYASeJ)8-+V!XeM~LIIN&?
zA*8|VeUV$i=?~)3ZGo1C2o)o-3T{G0?9K-TWNYVV$>?8)hdiW26$~!5z%9aeig(9o
zOCew}qPG7!?CQYSlKNPoryz2xICq7LW!qMnpu$wCHPXmK;|?=;c%(x<Y3(Kfp~t(%
z+`2)5h@K<(j}I%XU2QtFuXaCfUiL>kmbWK{R2Q_fn{2Y$8)}C^#Z2RaPapV-8_--`
zeQ!A#Ef!7?i9%N1okqdog))>Iou&34XPX`X<k(aYfR%D*Dy=FAWyy){HNJQ!#(=xB
z6hStKuRh4GRg6cgYD&gDEo0c66;CnMT=kyqADw=@HvenFy_Th_09b6vtwyOU4NwQ&
zons>++lS@xJH|$C0Jy~H`Rljqs1;%xW|`w7l@|}4ncLlnv&m&gOji^Ix)MU@`Tc*Z
zG6|_J%A(5Bx`DQopvr7UC8vNs&?#Kf;s}S#Z-UJX#hiN;J$9xHif_n)igr#*bdW(`
zFj1oX%CN9gwL=@3rAP{n@OOP+4utC%u4$T>IH^|b0qr~`lmcf%)}CyK&re&&#zExQ
zAG1(e9GP@T=X&P#EG9(jwq+W^WCQ`xCg=N-PT7*~^-Xe*-O1RCsxW9S>h!5WdCj_$
zvaQqgJOMv7;ZP2A0Eq<_O(`+fr{wOsP}XVz8fh2Q?IozB7G#MnnryE2aAKm{!>wpj
z)-=Fh5ex}?dUzu#q0fEIo1(0*3U3b6LqkS&)w;!vQ9w`VlvTw51o5aS^A1Jx#BB9R
zhDCh}i7LiY)bKB?;RBQ0)ER`Jilswk!)@CefFO{AjE-?SU<jea9O6TS&$G<^JOC-r
zPzjZ7*-XLk%n5(x{pR7XD++Oha5}=V7bDtD#b1v(WJdJv7=FRU_zK>)J+O_5W>HU6
zORbyyI~1bJ)zuxweM@khRe3@~I98jict{!Oaz#}lQD3v;Ee`t=gT^Kf-bsZ?U)rV4
z5^@c5PAg00F)Erb;9<JY))WbuZK9DtEsh%zR8wh1BgCNO>fTZ6@cT<eJ?tu?=a{SI
z?OySDF=9HjmfXyU#Ln%GCIj#{HY{4RmZCB2YA6FwCjtPysA!jk$XljXX(v}c_7m6B
z^qmEM#`v~u_h!oeX>Bs?{_0wD*rik}_$`BLHXf>0D=X5zAzk2djLlqiXS={M7KnP{
zx<RJ^7X0WfAna{bU4NY5n|ol0aC1;h?XR9vuboT?o2j+SKkQ9*t_}&kFiSP8yWYt%
zugb+89}PZW-J~9&mHW{1BU$mim9SyRV_WLhzChrPPTk1f?bFlsg0@cTd6QGt`RzrW
zEL(1#op1ct1OY;X(6el3>!!?2KTc*}j8pBl>&`BXw|0T0ArR+k3c7PbhnKnjr^II%
z-7n$`Jh6$A`__IWwI8Cp-l?~5xH3CP++Ny@uF0J4P(U<Q=0Dq{FBP~_tSO8T!0#w3
z1aHNC@a18bT1BKGAS9{Jgd*xtpNQHsW0OAMX-k4|zM~G;EBvG4Viv+q_dhzJ3aw9d
z$J~vV`jdhVQgHgN5*IB_l-&vJK9%D~QRvcY+n6KmZ0;8UYf9x)$7#9NfNJ2_-06O)
z=-(Zsqfk%{tBbn0N%q?eE6iDZ?K~K840^~~EEvQMM(Om5blX?x2sbgMb~q}gckH}A
zgcNFf3c<8}NXeqMA(vH%oNl)HP9<RY-qF*Q*8YqvAK)iKr8;k6!Sx(}K4yNM8Bg^n
z^hP5{lzf}M!jI0?Sj$_MdPUUYj$lil1}!PGrF5h_CrDZau@;{jP(09L08tI3+S^5g
zrMTsG-nL4gBTcnMA1SU5o~k#yl$p=~@&zIWQI`8sLPu;{H5aKPwvosjyMbT>S5jce
z?@{g4B{KYPK6N2JjTDb+c()%0j(A6UBiq*t^mV1b$(Ge#>j;f%AMV)V%=G_i{bCu@
zNe?Q}iM{MBy=O)w;go%iQZ@?$3uJ*{#Vx{3<d+;!MctvZ22XG6ko8=#mrqtz!_j&>
z@R_&l%ljrz>-Q=8PJSIu+RKE8oVMG<3e!JSVSX#;3qT^-_pBe92!7A){cES9Nkd6k
zP7))ta%QHwZK~g)@X*3OR0YufX@`FL+MQ%bG58CMF+9`lk!)Da!GVW4OO;mTlrkWu
z^*`rchDSiGn`}xRs2;UEDBNB>n%oPG0^iZ&C8id4u)i!VFQDGkzF%DE4|JZLF)n=C
z?G;3SzU=35^M>2>tzmw)StQ=-l3hB<^LlqBo*h6R0q#LJ;j|4A*x{(HjLMO|nX@fd
z{acqTjBwG6GFu-@RMg{;&<C@QQA5XUa%XmqDM(0(X!kIsZ?cM97y-@}`UHW7{j(Wm
zoQ6%k$)mgNf|Pg7=Nx>1#KtxKB&Z$dVOi_jI6`5N?+MQmc`ZJc%qdihA18S_i=zfS
z5px>tWCOROWxZ^=G=Fo6O?Q>Z3$$J4bvwXSqH-vSUEV?(XWyBxP>6IbJ#Wqt*?>_y
z)q}6IIR2-Av&J-4i%~pKp=P_(QX&bybpqx{=0n4f=~>yyp|)NOfI`<T)(}bU!;|GE
zM{f(4Fj0~RoFN4_-ehVRf*4x8!!hTA@R<oXid8Nc0u%*_HjN$KB7dgs9F*lbG%-VE
z%^mDDDde*+#H0|SjaV@nQaQ~g-Pn}iE_HO1BoBbM*Bj07>GvWJ-{=PJk5D54Bn+>j
zXsD6WL}?N@o}BW|%;^mF&8Tc;$V|gU6q?rC_H5w4>xSL>1|fW_+!3a+V;qk!kSqac
zN{-tF2modG&0udkbxLnuo4w9bT=r`}XK^VIfG!Ky&|cY%4|t&h0Eqzrk;rB?WhXKZ
z)*Y6VbJ+hF%NKVKmb^=m)0&Iie!-=OuA~OtthMwO@7u$={htaG7H$Aan1Jqc!Iq{J
zxC-_+*3haFOAWic$PbWfg%1F_-%%Kv-alN9o@%coWc^W{7<Wa0nEH|b8HP@0gC+Tc
zZI@?+-nnZ%`iGsxWfb#{MMCVb>NNJG#@40$H@sI5s`B&mDlF-KGqDD|tTn+nHUk$B
zFx86mjw*0s_z8|T0AZ82Yc;xAz}Gk-7VOUj(EC(>PeD=W<gDg#U)%xH{~N#;QHx}U
zDX<fq+^M5YG5-wA8_hiqfC5&`HqL)Wct7BRW2;`(n&lErqI}hK0HVmKIO2q@O?e-(
z4YH6j-C7VE_?)K*8EQKC$APV9@-M2eGg88{WtO5c_C*!<S2q~7Qs=K)pkK6MYtZip
z5hMRz#D44J{~_Y<ETU-tsnFE(({TVW1{7cgO`$cP?Kz2_Qn1%n`VH;Y_5_e?=r{mN
zJuDFdsM_Ib%Gcu&F7dYxRt5kX=H=Ln?(#yO#1>b98-QXIP`V=7abC1^HS=u5P6Mn`
zUX@faaU3>^^TIFQDq+u5&d)XSCsy;v6qZL;{g)n_|1Le69#5m@YcOb_N#6v(JHSv!
z0QW{@n89c@;6h*QN*ys~>44PC>))va0T3m4VDr5$?{5~VAM`CudbX!&t;Vnp!%n#T
zH$D8k=b_w&fF)PQ0!q0K#BblZR%HZ0R8G4>c>2Fvo5TOw+FY8yl%lKDBU{&3te=58
zi+4^ZjMc28orPqVW*R;710V<VOszcpSJ$a>u@`y4e9z1ElELP*R>yz&TF4(|)(;&s
z$ZYNg^7tgTBdi+l$w^?-HLVR!9{aYB?D(y)_HR`c{PoXi2SdJ2`&trdOQobv9W2EA
zPbJ}|li*k^B0jg1I-<B3r*!={sK?f6$y#aR)&hJ6BO!(4pashM*Yv6XK>zcsn?U1<
z%nSgE<ui3(cvpA?s_z*q?%nCc&Qw+u;8Lm(o|jl0?fEsq3`AM<0{wQ};mN42;#e)e
zWW8_2r6WQg%|m32K2V(hw<`Ph>qGT?_0CZFs&T&RHE?ass;`<7wT7_w*AyJ^iB5;8
zLcjCDEcKYyX>p7xoJL+k-xN^ansRqfKSS!$<sJK1ZxgWBAv^lqz9CKSO8NF6vnr(j
z-OMQxsJgfCOIADpc@ZZHYD}CTvgyBdYW$nj=eMu7nLJ`n7Q|b7x1LHv)b9Ov^?zkr
z5L@bvMF#fxr~y<p2UN<Bg~#m>SCUj^z7{`#7q^374u4Ti1sX)@f0us$|DT)v13z+X
zWU}C8J>`po6dK&uePULqO}>S5_v=2t?jv;545t6ZQ<upfJEasR^oxq$i>sG@?_m13
zvWx%Ie)WIaul}vuuRgf<e?K(_`ZQuOV`E=i8TF(Vd_-OAV*D3w$-80Mbad;{rVQ-=
zc*otLpZ=E}cWWZQ5J%V1N~)#&kN2Ei`G0O_{q3B!O?w`=9d%^of4+tC(|@Xk@`p}C
zkS?!_wvM;`Pl7Q!pZp^*=D!8}qfG*>wAK;MdLQ!tWKZn3|6EV(wN6Jnhlg1MfqAs5
z=Czv~amTP96>j)f+TzRYyk{?Z-=%bH5pVie+SiRvQf)=k+8vfnS6!GjZ3|v&|ApC!
zt1i=r0u0?y%GC$5Wf2p&4iiYdtDJ9*<?h+`FJ!3MX91`*e%m&We&Ph%Huln7&-@ce
zf$Wwdy`n{}5C;fX=76g>_1u3Y=aL<q7O+QPhd&+QGoAH+wRh%GO<!prx7up0wzOj_
zNCa9H(W)S8WX-53E<jX71cX?lfJ6ckBajeMi%J!cA}ULO6cLa$B71;DL_?7!VuZ++
z08t_d0Wl<jY`ixpww-on`kwclIh}LnA5MOp++XhRZom6H&;5R$PyFG*F4AirrutP^
zcNdq`j!_wXv@tA&<d+=X;4}KKKTQ19KR-;oxw;qmeZ%!E3EWT81L1sbFM45;T~Lrm
zj-uk)P`+-R7mucSe)4A;6<D3V=A@qJ0^wHC;MOp`V}GVsT~Xt}Whwibk>4T2iOM7F
zWxhaQ_NVIT3!-y>q6#gDwgob}|L#=&R(SI#-Kl_`Wq{q)X^RDcv+<!nsXPL#XsgYt
z)!4MyAq)Ns%zpbk4e-ny1okw6mj4uy2Y8C?|3-=azax*o+3fx&Mv4C13YTANm42bA
z)F`(#g5i0afxz-V_~MS1-HcM)sgiLK^}NckgFwlH!M5ak7nu9EAJnpY^;gOLB__^z
zKwSRo;<vO6!dMNz0BrvXsS^xHA)Bt2pb{BWuq+kqO*VG%fA8DUSI?8+hw@xA3dZVq
z?E+2o9}zLUq4Qy$$ssM`=%Ao~92cfxKnuj=8D%*XwBqCkvswv@>OUw2VtF!tx*!+;
z1mnI7BQ1KveI4JtVJ_;8GC4s>Ku#?PpyoUH8o})*9L43*4mixqN8XdOk1T(lmzGCO
z0XXe9>V6I8k>vt)hfQ}SbyftcXdIjA%Sml)NbTh1Lbw&Q`Gj*EYjK`L*PL0BRvwhD
zy)bOqsh$A=su{#t_DZHMG<jc?=D<RUtI3MztI4M_pGOJ3xoP?u>S~LIlX}wN<C4E4
z0I7|8x+Unzu5UtOq8s|(Cs|bk-XsDm^9iepo0VZ?_;b6JsT%V4%S9TAq9QQlH}Z=f
z+)}i=o_=~j|4SiOe#XP^9&DsOWbF2=W!dTA=WqybOo;cu;`Q2=b+lTF!iFAfwHKWC
zbBReZh15tsgsB?__h+OQ`JZ*}rwi-O)EN-X7{`5Ex^aM9p>S{@LokW2>xFeYwcFd|
zdp(hC0hEh^v@l7KRXt1a#XVaIYMZJvpA5=^XwYV?n;nEWk@it9MY<(vLb0N+xq2EG
zr{1=npxR=2*P5WrHlT3CnKI`DfR6a~ghtw`L1<mnQaL9c_chRH|5W2d;=0bRV<C|3
zNhv%1U5^K((FFc}`D-md%3qOsZTK{D%T-=u#DS}l=75U0T!<U;0jdC1@!nm@R77q2
zUS1C0GT#t?nCIeyD~a;yNQp|fULZv`*BmY?O;GB$zT)2=99~#+so$$&EuF4U*S=4w
zvQBPQY|_Kf)Xh{sWF=?W?qa{YUE!b5jU0S$)oT+X8X=s=$_obonGay>hxoL^^&>99
zzwBW^U>t!(V!<Owv>!VXrH2j#eF3b!s=CiUHQOfcaXgy@Ge6L#BjycHFUD*)wOs5p
zwtMJWNratWkyqN47xA&LE*ko<&Nt(p)XA-y4E=C7$X7Fy4Vp;Qr&}U;H?FLpxGn9i
z?W+lJ5%6WGa}T~$h$sC#UP|^w3lsLrHrZ2lZ|V=Oufzyx%kNYA5u{0*;^?glWfmIQ
z{g1O0V{j}~C2>M;1jj-j#%dQj=|`-&7FY;t$auh6dTU`Ta(Im;G=Db<lGZ%6Xwfp>
zkm5`mZ+HClCWz7C$9t){i(~zEJ)6G8Sm%Sp`9`Hby*<r4#dWmtt8+CyH6F@8wvIBP
zl#op4M?;FcDah}96IcVow43SX)$+@)^}_m0?RCKzz5&qm*(`uE{4I~G6JU<(q)=6U
z;z^nPZ5NN;eJ@jLPEPQcJjU@`@XyP{ThfdYFLl_ZwdR-}Sp9<82w6Y##ft#_RL0Ab
z(o>ufo3$p|O%u6$N?}l#YoM#7C&Ao*inA$mul=DXTmzWDSza+ywl|?eXdF$V87Mi=
zm!ivpqxvP8@UE+4RleTz^4!MdvX<dp+|_EY@{{8`5CB63s%$k&=+RJ(DjsSPrcX(F
z5wzl}5}I5fAaRv`c_q{5P-(=gx8ine|8n(LV!yRVkNx1xS+^-|L!*H?^aD}NT1Iw|
zG*lcux+Mv^VR`J+J5v)zs_!u5tGXr~zKGsY=hl?hNmzXL+B8C%K3}YB?t?7Pbe9_2
zXw&uAXO{WNeRnkl4UeA;2@+W`vT9vNdZ<#Dv?B9*G%g4gOBqqh%gKinvR(41ljbX+
zh=f7%Vj$>$w(;#!-HG@}QcK?AVLzp9aNFVaC>}qOOcYhLE$c}?{%vqL&%_EIcNDuS
zJ2kCi!-cw&7lU2_RP4d3bZQQ6l9f=o6r8zd6cHP}h&S{>YslwR$C@puX$>{2bM^$9
zAysn%ZFcQHm*ohzdw4w{1jC=-`=Z&1T;!Tz<K7?9l+ig2PY+fP<;TJiMf&Pzjh(ez
z$=Go7reQ$n{qc<uxMN`cJ#`jkgD}{Rjj+p^smb{@gh>NmGW;E|%io7G{Tli5hIcIs
zZ#Wpgs6<of9b-k?xifsg3;bu^HO&~+5O@CJmnQBl(5jni52J}++j1tZ6gUDQT)nc1
zsBALPBxJbIVDG!xop%nU$y2b8k!tR5Jkw29b-w^-M~Lo-=|>&~Gt)5o0iU{cDyD#`
z9wi=1u$MYYMqm-;^5;e{AN$uo85JfFl!=0@7zbZfgOh&UMh&YMr44G<oLZoHy#bu?
zNMYI%e!;RuF)Zyni{ETVPP{xhIwMDzRe|&j4Kwn6n2jJ60!RtKGei~qW&4Ikp~|=j
z<Z<}r!zUZNoq(S<Nw+P~@QXboxY+`bAT0iqgm%wLo0MVc^zQKyR$gIY2{mvlct3H=
zo%H|a2Ci<Fgv<EwkYnn}%Jzsda1KM8_M|Q^QqjvTDWR+7H);srqeJo8clefBbk)S&
z)`QK}?c^ti0Ntjso8_Hk|H3`4skneoCeo;5RG}_LL1ovY(|mwFAJq6AFsH@L%@8P9
zTLl%+y7jo87Q{|>cQ{OSMv}&^%asEWwrShOMek5DAo&Ae(mWk-&3vkV&_^p!ON%P}
z^lxf%ATVTy0`+K_c_GEjyF|Fy<axs^=KGHghu@5uQJv&Gk>-#qAg2F<QgasQe|lhm
z>7$(rqA!}kG5RSuvrl|W%^qFzXTC72&W-;?I+3GBK+Udtn_J{xcd=&{IHVY-({W8f
z<G0a(2q(DVR&@}-+4A+n2hIrqZ6rlH|6An3=vXNnEYxHGDG>nYWC6Nvf*}AX6P4Gk
zQm|po6g<h<%kl(mem2R79C_CUD>#Vd>xCWS!%oxWkIW@)qb%*h7??CfG8R@}t05~%
zrkTX39>}~apJ}>HBZUTD<w7z}l;F-)^o*DIs+X9I<c!m$Cpw#xjBF*@6y>0RgCEam
zzpLM_r*{ZArk4-#c-yccLqDp6S9mEJ20JD@$1vd`H*IV@sCzvY)<&W;j%@MB(0Rq-
zx=i8$6<l8R9{bd4yNL(O+WtnH9hfON7W&>5y}7#lR+c?nc-RN`u+xYH_>vaTV@AuJ
z2dtKkUBEbrBJxlZP>PvlVPC6$Y(qw747)PUlejGWg3bp`*U=%1D8xmrSEIV%D_6QA
zinlRkqSNEucc*QmoJM<Rt_fplHzI*b`(OehyzWE*LcUrCeO&|Zg5Jfw#cNy4Te(0p
zbir1-kn;J=s0em=jeQp3WmZf<c6Ro@g8T%A{{07aT|3QdR`gzMa0#AIg49Mw*DOBV
z=pv8?FOP=2lG{~E-d`DQ3&`s_eT)0)t1D-0g^vaR)~axfCLFtwczsp$hI;X+EeV#i
zWL^^>M2X1K&H<XdDyj~^SNTjbr9IOgvZum*X$hK&&BmU28F#`ZxxpQQ7i?}3UTp8b
zCnrspK&(gz3)BzYnbIKGV5dt~|7KV8r&?NC+U)(TK4-Z2D!JBuZx>1!P|W7uwwj3S
zdt7ve^UU?}REMsTw#TY2bwTm|2wM;Qrf%GIv0{kX&&ov6d|`gcD`JP2=kWa$*e%7q
zhl|y$)ACI3?V-hhve{MCMLX2Ox4#`VWE6GNzN&V(X2M%>poQXpBTV70C1CvUdOUwp
zr5`V17h)zAQw>^CcV?JL-bh>tjy@%O7}+Mmq!t@u;#c+X+7-hb4{&!&e{S^pW~!2d
zr7yz!n#-a*zfA2d+1_lqi=C*l)<2WkPsgihRkGapk{urQ+lX1$Xi@39-RTbMjs%bK
z2qr$)X~8{HFq;(`{xCH1rT^tMV)-*<g8MjeMzKBL>e+x`p+Bzd7Gxc<F$-c;dwMsL
z7@Y&rCAwKIHiEiZWupB;p`PMWA&+#rIEZPxf=+0(E1ZTfM*6HW7%3SZPQ^7N<SWpc
z-K03a>_k+_(6%5(P*9LE{tS-O79SWIZ3Anvrjh&m<XKN3j{PB4LG_FXj!)7D%TXdz
zaZ{zVeCLeYwx!lp@`v{wMz+A(_Y=?spEy9<O!X)$dQ+DW`xR{)EYy)piJ2W!XHO|q
z*(YAe_7eQ@d@gr=Gu{gsc%>P?)&c%7iqkxOOYG9*%wX$^BA;MfCI~D{g|&b0V9EYH
zT-l2u#n<%8hmz+L>|&w)Geugb1^Y(_E5i5^dho{=*gvWqP;`&l!)G&-de&UwY#5=6
zWZN7SY0_B{j97b5&Q2@Y`?6TF;+P~CT7MGvZYp?0<K<cipEao-suL?Z$o1C`LIOin
zE|mW2Dbl*a>BCJ^5Hq41((=WX_6$=0VLkmb+yJX4Hgu2G6?BQkg^Fd$crSc0%?c8H
z8G-O3^`#p&xv)DNlA9eLjrgHy{w*m*EQ9Qc$sSZ??nv8^GYj(SrC(h=6r*%0_(@V$
zG40h;rBbJ`ikga<I-%&KNQEj9oPp->Z?ty?n8grbAJ(_mSH++4HRY0|4!Jx9D)~wh
zmolxW`Rdtf<e<I%Lvr#f;o-WH3H(-+j}Euk(B8uoA6(v^XHVSTWVz=gf)8@lY|$Gp
zJjI<SN*qVAH`QMhS4il7L2LQh)}v{T<5_C<QHRWA@6cEpKNU}3GUI!aG4hP<u5&yD
zjtqJ4?XvnS!$fG%>a;E2s&#+?-KJi<;W9Rx7aXbl_y#)UDRXHMOSZ12)aPg@GW=iy
zk{9S4{DYCR+{HH!j6^S-c}j^%SoX8H{S=IuOv#`TF!oys<sQYQHUVg5E`ET`@(XpX
zT%^`9fOJqDamX~GzZf)9Sd<&-8$X@3_$|--)*`2bbyNE0II?$4%`WzBc8#nuvAy?4
zYXRnt>{8;Dai*nS9-iJOw{17d;J)G;Ds7fiP)gs&UfPT>l;>fh8!3S&j8b2`f&uO0
zPw%=ab9dstU);-9V)s%8BZE{F&+`a4m9m3<6qkv<<hiFEqt5hP2@~0Ra+R|C)L#RP
ze>s+#{5b~zbitoYsKkNeuAq$`3>f!WEbdRKCT*-;?8@tNN$h`Cjt&&EMWm4(78li_
z`O}+|c*}$PMlY_fZw{?^&Nu+|D?6PlECZO_?ZwEb(c@R9Yq}`?5emowcsT`N1)y|k
zvqwfR|GCUMtq|*LsowBt;^Xi=)R>W!SnPJy@N@+IEB+yar&QlngoJ6zN6G0VBDb4u
z$U>EXraFuE-L81-z<oG@Es6&W11{w(cQ;+C-?odx5)|^DAj=PV$0Qh)Q{cj9SIDW8
zM~n!)7_a&jWfJ{%ME12VoVRd&1Ohwh5<q4@-%`7L#PTT$-z`ha@9L>ad!gtN>pl(8
za|kQpumkk!nPo_(Dnel6=^#oT;z9_6CaLqQhro_YHJjz(p<p}0!CNIw4i**{QfO59
zFqGb%kBS;d8z#foZH4NncedSuSoJHPx#T2VxYGG?!c*FQS9IJ}QtnD!Vt3p48h>cq
zNLv!crHNDmXLNISxuAbqTQRw?iqKdUzHFH3{V3yx^qy>Q@N=bnO)vROe<f`PW^)4*
ziSOjhOiSWYm{6`Q%x{cZA-!{h?wZ55s)_Kmm>)$6n%UDHWHuJ5XLYe_kP_p|=k(S@
z#J{B8;*axREBqQ?NLwiMZpzVwIH}|(<;rU8%az*1%F(Gy%8^P&7@stj6CgsoF7qER
z_B6)CFF!40rC=c<gplBF?%iU+?yQRECg2>xRJPpc57@2JV_kIYn0Q)bbNxuPRNkxV
zJwxV?PI-wju8fisIZ{Q)L|H>NDv8c91pwc99xLZw<Mhu3|4@>3N<D5h@03>mEqvMP
zV~wU~*X9~pfAI`?U^R>%&fTDKy3INfHFTMl$G8zxt2}H_B6FK}uk^dww~j?M(_VH2
z87dhBI|j;jIjjfRkii;~+{ngxcTT3|xi=)4E;SyVkF=~F`eSzF(a(Wxs0Q9PjdfFW
zkycVf-0@eS$x+9YW(qQ`F}c&`RVH<>?w4!NTWS8k+G*>XXbwz0{$7KPy#pwT9qPZc
zt)DX^?_B{VfdVK^e&$g=)2Om%0L}4d%g}aq7xPO*<<Tb12-cXN&7^`QoedyQb4Se*
z7JJ#1PqYfwe1MuiYt+0e_q*WGQH=~3m=yXZ8SoITPYN+k70vc`X~Tbs#t$CR9GFPm
zOmm-gz7`agcs&MO9;hhsjkWad#w}*i8$Qt*M!07Jx}rx)+f&~yVFxo(q+EZRN)+tD
zMi2=teVUKtL$$Mp($5e4q-nqk9++1O(7;|Z$30f+m($zpD6>9hfVyI*^s?*6u&mKH
z7|=V&xyGC{tG1LEydLbZUW$fi0+5lwk`mz}i4TrMY6A8e^Y5MY^n1+EcU9kesUe6~
zke=2vg4m2*HQjq73pf`*>7Scrj`#Yl9^k!7;lMcjz|B&>T9Ya0=lZ-Oi@y8ScRqrj
zpLLbn1;%Pn>{~qmV+MDcP0{#m2FUI8M=pTJTe^3y%zxs=Je@y~O)*>pjQywf+q`)J
zzw|BrqkK-^ZixO}`z^lt@7Ztjj?VJ^fN?ku><K}huL9XAqe*KElV|Sl#f>N^1W)Yi
z=gqFFmm7%H8edjkSy2qeDW-GQUOQ_I&T9c@hzmkwY{Q)8_;$4nHh@&Z_EE+M7a4sb
zm?_ax*^M&rp(?!jHKWY%n-N}$mw5)o#stxU+i=2bw>CE)XD|kDX?$1Z2@7Qa6;crO
zy4a`?#g!B4v9G@{B2mV%BVTxsPod|>&YlVza@^~8xzaxb+eo<i+IMuz$73ZrjZys4
zYFV$p#PWz{I&RsLPWukc_y+hUpL?Tga&XG~yiMB`PYi14iA=&>+WL;9zF>mTo0Sbb
z4Pfy({}0SF<JFs&R}5Mr0bTfR!@#!IElbCKH{%ePhxcY<8h<C}5Gk)}8q$BMq1c_2
z(9G&Ti%8vv7ucF->#|mS9DFzQVs`=(W3jL*6MrK(HTlw4cfFD?vC=zqypj#LU7Z3%
z%S9<Fo!od_uk5si`V3slhv-dC-P~4OCw1mk3RuWn-6sv<-L|gK?iMM>X}XW2pmk4w
z#B_g#;zGTmUlCL@qq}4y(FV$+Le=IPhf9}GqCq=yiQA(Liu5rhyJD;xU#Q}w$9I-`
ze5S^=ae`T<%Kctp;qm^$-CW_KPO`F@TrOph6_Lv3h$%xsq-q+!mVK+f^2AG%Yfsn-
zZmUVGCYXFeU=NI_$pA3*LF_LJ*r9JhLqcSN{h|69)wotp&mE&`5ovPrB0jXyj($=C
zt#;W|b18G>I65vb_dfbDHZs!9fa~1EtKv16PQ+KFYBxeYk5ANfhupPSKd+8J5cQLI
zUQiVaQ^`}s(^r^7C+{CF^Rjm}9%nWu(bq2ClzlCZ{KMEcvG4J9$ESyMpR&gb+jH{a
z{Bl~Flh~xh4Oz)7t!O{VJ(Dp~A)S)Jscff;b5B3@;-Bh|B4^h>8WkRQsgz26Te&8d
zx-4=Ggh{DT`D#Z6_e_ap$TNDYpIFKUHCq4QHFM_80|BXhARq;w87u^;rwZst4drE3
zR{_prEdA2r$1c_MOEM@!eX$Cg?ZZ=exzuE1_<m4E%%U2|Kyx3uy33^=Y?2Up$*``+
z%9Ai}WT4t_VW6%eZP>LbwJ7LxfBXmtX)zU!xs37b;m&7KW6j~B8qCi735GrV#4%EQ
zqU|C!6!~Bevva&O1;Kl0`OG(b<cI~jx5(viIvnZB9*!G0ue8DNVoPK*??d_5x-ECf
z0>5#=DDCc3Iw(xph6qZY@DxMqiWt>3RYO?u=*wuluI3Gk(VST6@rYIk6Z#H=U3aXu
zNf#_7;rxLhY_x3y*EtVbp}uHS-yoaI?V_Kv@IhHX$ndcL{YctFnl%;uh((GDrakeZ
z-mq@)`p5-AP1t6=BHpk4!o=%a$Z7FDJKLD9lo4xZ-`>+5Y5t#Q7IKlMT=qkPGv!>?
z>1-5r3z?B#;vzh9`=PKk-h|4TS=N{C<_Dg;^M2a!RD>fwUR<G2ZH%B)b#)hQfL+P(
z$BDYOj%|2k4O}qmxTl-+exCNg6#YH(VJB3qUI?x4mOwd|RUhMoYjHT%sU|DvO9_g|
z;`l|e(5-FE_k-72c;J1UFuZ{~5qzHS?Re?&*2!Eh_g-Gb@R4O0vwV{heCU{%7Deva
zdE)+Poq+eGKC>>fwWB9i9=UqB>HFr>QOu2*qp`)N_Ayf7q)nAhNXdwNt@suyWm3|F
zs>^jC1bZT0V0~l7CtIb~mF=)H*Lo?tAzR#1KcfIS25BB`!Y&-&0u@SNkuMC}7);fd
zBYW7UGGCA4ppafnMLUtot+6)+!}T2fILLo_XfBp4_u|CRA}i%06K<Ec2ZDf=v;{|%
zxv`b^EZbl;`!A!TunSPHp?BNj&%Cw)3Hj2Qu~HXo?@>pKi&-mBp-JhSr$SBkkPP#W
zjya4uTJ6NKC~WDI*6)s66HCO(<9cWvy*>dySWY^fR3R4!B9{0sziL|B%7~2Xxm}H!
z<gdXzZ-UD><DM*N75xJLYo)bZ1!sR5su*M%3Siv^{zHza;%Te^izZeu`V_<{XGOiW
z?L$BHaeI4i)e>Q9W-J#rm@t7A?X3;Q2Yc}ob^J@im8+6aL+zABnjQPRJ753tP><t4
z%I^49<1#p(O4(>SRH(@d_?uu4&zs2B>}lS>3+MLf*v4GVJ{|W_=y<*CP_nU4TKjyB
z7w+u$4)9=)KOE^<H9NDMG?Of75_>`w{|aCMCSfy^2W23^V;i}KFnB>bw;ud{kLG3h
zF0=JNyZBcHdVb^Ce-|=JPS3ab-Gkg3xVDC1KO1)VZ`9@A7<GBqH}AIUKZo-Y^SALn
z13fcuQZufNW=(?G^rruwi$O5DlV?Ujs4q0XK^2`~7d{QrG$xx?2Z-LKOx1)lw7Jvm
zVZL3gXMbt#Q%@MoOvD0X?(Dm)t7ds-`Gp@w$9DZ9KkNVT0lqS;MyLcHCMHSa2_V4u
z#T=>s2mE)6yUF!Mas_c_94cQlGhlF#JEH=pgaq!Cf+&dxvBLBo?Qe6qKYH*ci~E%J
z%uRU?LY^aNw;eBXc%7JVo&X-U_}#;XE@V%}(x+lO@mvK*Fc@QiCSbdNojv}rU&skR
zu8byYYYln|dhO?j26guHt9`COhIDwn%lH9UjlE8wwSG<y{{};@3A2He28Ft_DegM~
zM9vUU_{ejox6W%^YNof%sM~KLXI`7k+_jk?MoE|(&VRb?!>_=fmwU7qYHL1#tH-XO
z?ce@C!03F#j@fT~_*MC``va@q7U)_0O~_|&ihd|Mzq$JDSI(c^rgLQOp0-~tHGcb*
ztc*|p$?XH+lfmjX`qm9!_ppt3Ab&L5p-2N^x7jLX+3!EDzc2MBFf=R{e(hFHv7Y<!
zo@G0R-@Cs4-%w=mGCSB|pO0E@9y@XIa}g@}rs>(;T6S`0No%&&`3fwkL;74Zh%T)X
ze_CL5d3}PzE7EB$_UjbcIqp(<L{P(1+zv%gPCy)X&q7vNTm27nC9;s<371Pqooo{X
z8q(6^i0*k{an-Y4DG@;PC`9o&CvVDjQE9{V8fTePO|g>seg3bDUQ1~`XqKUG4mGnu
z5QjS=xX07|X;Bfl2g;NWHnob{q-(7F7WP5<9*pLqI!(P|px-VL`rZsc)P5dcs{g^v
z>idP9B?&MmQG+?Nm8`5}(t+y{bv@2sd~B|pn{NJO=ZKq3rNDz)?^4$0Ej)vEt)J)!
z=e*y1^a5j}X|;MW8u=)_J53_awYqenExYuLaiCjSvgM_7vmM9qx;ENr7J;OM(-s9~
z_x13pQfHQlDGN;o83x~Uv!)TKmc+DV-Gd1$3|4ps->f^iXK}pv=`~%<0=5<ND&rJm
zmviyM{KO0tx=VLKP?PjvImPEP<8Ula=g17~>+^K0s2M&x@H81>$lmd+Z*D9;E?sA)
zMR*?nqqE!C2)Bp~&8RrA{knTsc`<9C-6a+JobbhLk9K8CIeAa4hf5khjV771epNhw
z6>{A&WK9=49>rT-*L>AeE@$^L_BVx><ydb+c71cpqJ$jQ#Z2w7kfK=WVoR6SEQA~4
zZFlFJmNrMN&l69wTie5G8eF6`4(&uBGVgXW$cT%dn_+sfVBG9p+r%=fbK|WuX798j
zT-Hf7Zca!wFWtnW{&=a`%nviX6ul|cYqeh0iKk26jKi+=qADZHifw!~)<3XzDVoYG
ziyEUYA%Vr@%`CQAzGL_snBlTy^C$h6r4@TSbZ$F$(1zz`b^!eI)EL6k$9Yu;W?S>G
zCoW4Z!Mo$l+{J@_*UUyRY?mI)4M1S#7J+i3%dHDEvk`Q_zplvnPygSS8nBWrkc$N~
aS~}lD9+Q5!->+FZckgg@EZKJSyZ-?v?>PAY


From 1968c0319cdd7baada08c0b641149eb181bf7f5f Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Mon, 13 Jun 2016 09:52:39 -0700
Subject: [PATCH 11/69] Updated to add a border to the image

---
 .../images/intune-optional-settings.png       | Bin 34263 -> 34325 bytes
 1 file changed, 0 insertions(+), 0 deletions(-)

diff --git a/windows/keep-secure/images/intune-optional-settings.png b/windows/keep-secure/images/intune-optional-settings.png
index ab992ce3c883caa68d2fc5570f56757315f30ac1..2d2bf90bb1d3aea7337cd8a02e73b050b5e93f82 100644
GIT binary patch
literal 34325
zcmdSB2UwF?w?FEP4mOZ+P(kWA4x%7U1f+#eEQ|$FkX|B&9;%TJi4GzvB`Uo}L_lhU
z5JC+CLTDjULqaIhA%O@X1QHT%fYF(A&UgOz-2Zd$eeU&n1mEP{d#}CMUTghU^ZD&t
zhC&C#5A52tOX%7kmrZu<+FiM8*AIRB1o)r){PKw@|JNRui$)iB?J9*I+;I4b|GeMl
z4=c#7U56UC{{C?E^z}#l55*o{v3zLi?ffvn;epdG9|t$Dhe}>f4}U$cq@twdp$5IR
zYga_vwaXXp2HG#w!9K|L`;Fc(d;Nj|<oVb)vrjs4UlrUn$?pldoL|-vbn<{*y^95j
zP$EXVz)W|+y^6A3Z(EK!61}c^>FukRVP?mUw*83T^~?PaKRyG$jdrxM6dSsCt?9|L
z&POT+r~i0U>Om_N6FA|^Va_jx1uyi2S#yiMGdD*e07QXuU6*wYYoxA*pvBDqsM*HH
zop|!I!M?2@;5Siaq6FC9Zy%5`jbp$4^`-Se2cN?`uk9<2P^sJ=!2dB|AZGi0{0Tv&
zzh22g|12Q-*F2xC_k~COwS=o;`7hxdiy3=T2u{a)kfXENu~}vzG-wf0zqX0>qu&7X
z=0`Mv?A1(7fp1gc&8K9NTzr~eV(FUR((WDyxug1wP1>;Uj9thmBb7+w7S}T|tI#hm
zJa2wq|Br-7+eHxyk&E0M>Kx<I2;2>O(TLTzdpEzrSy&EzBg1O321~8^dndn{W%^bb
z`)sz1u1Tmt=Fv+>$WgovWx|!G7M&#+;qTO#O&w3-?9mkK&01z(7QIDhM--3OhOX43
zXFlK8_9Y^Zg4wwefa!tmwcy^I<rGvxMsnPx?c?gbJ9UCT6eI5V;T`-}@93ZdSF`e&
zb#98@?P=93qENi&s3E6eEVpYNdM>I^r81v-`5iK0CFK2GcCCJ*-F&&IkWNV{Cn}=h
z%GP}3(Sk)G3)UV?lvP6N2oBtPZF2!+CNqN1r<?{3rVaEQQF1xdY_y(ZksPYBH!4Pp
znTKvDC#^rf)-=|#jEu`|v>ovyf?~*q-j#3P=Zv~^$rL?dIY*X)VupcdJI`+I_%qKu
z2$;HwQ;0nQHjjKCb;j#`^_PsYEURh!!=B2!)Uwt%${7jDy^36SEXTE8jAD|nuX|0b
z$F?cfo5s8U*PU6#OhQ$N^O<9ZUJ+et3epySLQJ2v5&bmwl>FnwEz+10BY&*`T`%aR
z#1b~{dHQgW^YA|oKEE|M*i&~dj16dzT0UYdkxepI!pA(|ns#1ajCtr6=lO1?XEyJ3
zof};v6R9!r`rPA@THQ+%$0-`U5}mISlPfC1E|Wc;R1^y+Sj-QaEXP*4Wya?p(2o!@
z0o!(A67@=2e<wq&$sq!ms@$fVr1t`v77*@`pc`umEJRhd)wdq;%R^RG*xsJk>#ZP&
zU6tIv-RlL5Z3EQ(Uck7M2RNa3CHDI57WaBdO&h=GIN>|_lqmjs8k<A*`m-iB$z=Yj
zz8Pcsmzy!_A|p%XGTCi2)3*lR<3IkiTg*LcGe`jJyrG@4*UA)?sc3w{vz}>bbHz?3
zGJt|&b`A}pS7VjYfQGws6^q&dF9Q?<4?t2dJO?kPZabPG<YuFogXNmdbV-7e^XzQs
zVPjLyTy6SstCMueISspkU$%*5CQ)3btcOJ?C+1mui1k?+c|G?gugcb^pii9$Lb>0x
zG%0brK70YLVqfyk*O&cAis`EWwM8`Rfe{Ln0I*=Nj1*`J^Ddd!)#0+qDbt|_LoFA&
zv?I|gT~)1_sLvzR>>#0d2rZ<xjr!?*;Tdqn4MHIpQOaf}1;d}$f;++VsdmO9%jWb_
zrYL@RM?DB7Qo^@sQgSwP50*h1SvPsDgx^`}1f}htb^dunE5{2fDx=)pRX3N3vBwAZ
z?h3B*nmOU*SR?IXJ+;<@Y1KiVQJ=ZXoa&S-_e?FHUdqF}ozW>FV)2qfs<)=pXKx_l
zN}S6{UG;~ii?3MgvC~+44Q|!h!UKgQs)D%Y%Y;aM*tP~cA3F(9B(n7y7D9H<rBoOw
z8sEQs#`LgP<;mmWlfyTKr3ms)wnZ1`?w_aW)}h@ewNrOt>=M#ka<%j43vWj`tPX%P
zuZiRcR%48NH=4_s(^Y3UH>C`NmE4ZvhQA2^GL6@JPbx`8Wdj&R{dM&#GJrkm#NH5N
zGUY4!J)|jCYMV*;I0|@&Ny}^xQ(~Hb@jKr>fiwBJ>mvP{rC8M^uUt-SQcrSAbBU2?
z_)!0zXEfUzpmUpIoYTn}t?vrZ1M9h}@`O=G!9_`?sxio3?(KB&JEB)|H7g0AiKZ=u
z(66OYd%W|fZKGJ%BAHjWRa4XNEVn9i{;dF?bPwqnqVF&9{y5#1TA3m*a-Ma~v7~(e
z`{?IYrA+?f(ZpQUn5YG?M>tq0JX$mJM1d2**FB~&biOLj$c#)o&q~3Zs*tv~3D=n>
zM+ap*OXbGs%`9^9ns4#g7wd3mp9OV`Sj=pQ#P)u3Wce#^iIB?kFt36*fq;04`7&Yf
z@3m=jfC+Sdp>ImPIez`2Y9+VpV%UUC^j%TLXNyeI*J+GLc-pxOtKuu<002^|A6>5`
zK=h8YuW^_k8Lefm@>JTkj+O#N7pOWKwS$|nquciDbMosDq-|lypE{Sr5MwV=PvzLT
zg;OQ8jnAM&mIwZL*Fw{_Ph*Q^RV?ZDj-%<RH}YN62$~*s8g?rs5<M+)_Hprd<QYq<
zc}D#|hf`&M)pZ&sVMuC_IDSmqx%6)E!qa>pEYm?~xhsQ+1uMzADKLa=kV4z$L)`EI
zED6jvGMx6*`$!|vpTeg`@3zN02n)BaFdF`lsM+6>q<*e!^sL43B)CaMP5qSe^|XZ8
z3H1BQAL#dNuSYD6Pp||NPZt$tMkd{mHpJelFs{2b5?A_pQx{|*E({y?7@?}sWM(=h
zzLsQP6tFmwkp`v8OuG^drq6kY6;<2IIVjn0I!M(q1}glU`cV2adS|ZJvD(owgz%&^
zCN*7+UK{VpW$xIkiTrB1_~=+>@OXY5Y_(oymbtQO2wmAEhm0FzYXjyaFmJg}bsLJ0
zc82G%r^{=vX=;{U{c_d5&^KGJW=ZHZpit|=RRfkAXa2msfn7{gqNaUsW&eUMYH+~5
zFen>{$g2QUi#@rw>!j>JW0%oQ>)wrbTc@hPb?-H8O#!x#y%6Wfv6JNjik%Bag&mYK
z$;h@9vQX~_UMg;`o~Wlrof@|;YC*qLY1+QUuAycu#|a4vcG`U9tBVYYqt7GAxYK5s
z@Bt%`MAlsX!kN?7ATt3XtTARAkhJhEGEVaqYyrtdj|i|j5gEgrMLKWMwZ5K5++@?{
z7Cy*Ty6U@%bjk<>s3kz#;XA|3r%on)-NQn}F!orm8z?39FAxWW*Pbsxd)fuPCR~<{
zj25m{apJ()T=w4G%WBhpJf|PG&1wAIVVziSpH18Z?A$DU48WW04cR;5(>5}?kp@Ez
zUe`|^Vh-f$k|y^rPCw7XZ11YjY)WxGq{NlkW4xfzu;SpOX~>pQZlY{Mv*KI*dSZV=
zE#9%e|NS3e*OML0z$c>o*#85l?z~zhklmB?7s}h06;_ziz@#V}gfSywYmsU{@DcK^
zT@R;dBoxV_p50F)xgex|Cy9nfT|Fuwy8Y$TUr#ZWdE?3g)Cf`gk7I9rBO12A_O3@K
z&bs?t5wksCpu$Jy{68vt1eH?L{|66*G3?jIgCUG}Lm;2-_l;veZjJu<^R!;WQ8f;H
zb4fol#U3dnAQ~etsI>LfE<uOP25tz9PIp4WxKtEuU3t@K#nA%OF!uJ&cWT}VmLv}n
zv8!m3F!!^tQ~k0+{cA28xf$%g_SFHS_|NH1IQb~o(8_3|n;aNIN-y|4XAlQS3>z0g
zv;r6@1V<cPM!6H|71eMh`#|`?Z4xex$)p&>iF`W~6*_&)|L{NO{2@H*l-xIZ|L=Wp
zFcDxG)%!%G!Is+e+e>Pf+y4;Ooh!FVa0F<Eenw_Rd_RMmjbqT2rwU~^U|)y_!Z{_t
z!S<1dO*m(?oOG?GX1S)L@%z=+HJpY#7o>%f;G)Uj1E=>dKCgim&(7Kf=;baOyU@=~
z`~T87rer2&yS;z0#>;|>AW}|JqP{V-H^+wbTwdAOebleFt{_8BwE>S%()VHQMF~^5
zhNQh-@7-UW@EnqpQ6n6kNJU&FWQv1)k_xyWpZeEzI`vBaGQ8_d^30dvlcWSXz@)Cg
z9=N_3N<R+_3dB@SPd}_X5?jk@r?oCN^%ow5cg_qO`WISkli_xX3%~hOTmca0+^hS=
ztVOL{Xxc2=3lsK>aWp!=nNP21``Ds%Pym!S6ywr4ElyF<FAk!r9NFQ_L#G}AP39hp
zXjcdGX4lj-+P&L)5Zl_tQuyp*nwM*N)0mP4AN@k7zHDq@bwUEXa;qiK4gy4z)Mh|S
za8;*TW#+{s&@9M@3tFtm+@|QvDNmmpYUI$j;>RgZx;@k@rC5g{HudJlP}RyC{d|Y)
zK6&!Y7hN@RREmJbd{pY~9ZJrIyGc-N?`s#Qq#viu(|ZzqA^OCz)xkWT6>6QB{?}Nv
zn}Si|OzCw~bN%(vur&wb%WFWCe^n`3z@lCWcC46ekxNj2)NDHKJd{fQbzW-_!6Hw5
zU@8e<I*gxY``v~xW7h+qGXXbC?1_PZ;n+LRa6tj9J|LqG?8CG`y)Eg#SFairt{{K2
z1beuDx-78WhS+GF+ADzJ0CMt$JOQmDl%sC_0>sp7s#njLzOVC8u_TXKGc?uW_J=D3
zIuA@6=m!_QMY!HVJETp?n@ZxBo<UP>7qf*tJx)vg*=>%yR~i-%LE}I|PM-GazQEzw
zQWZ=v6s0fu9#;;b;EA%*$G6ULRf5wv_7>k$AXK7Wp1Hnk1oUVP?HxE@eo4@){bBGl
zp@Jb;(=uQRvU-={@-V7Ov(q~XJ@4gX11~*?%9T*d)jzg14b5An()EFLaf4#aEgGa~
zeTlr!S4XuZ^OY@SEVl&%A_pY}3IsUcQV>$DeEiu$tl|QoA7h?8^i}|~AQpv{5UA0b
z_Q<?tvo+Ts;+{|UWcl^*A?FtNiMVsgrKA^lXCu{?%Yt4cZ;yMCfQJ5AfC=@@QmmHx
zrqglCBbo%ldwV4EuaRlzAPxHx0R`vHV*ID+&|@v?PH&E#tDFm3RflOG8l?OjUI;(q
z^t(DV?XZy7NXz+anTS6>5mLAL0(;zWC9b!fj}}d{W6a!Q$16;T0-DLnp2xyT?rN1I
zx<x+-a$P~h^BxR5LP}?42shTU`A5R-Sg_IiMbl@iH;U>s{ej^MM`l{ACW7m*uL*{D
z;cad9;n+5L^5F`(r_Ws!0RI}^CKSA;kV%q<WW^*af#ny#S;;p_jkPk>D;qn{?p2>2
zY1%Lg`(vaKBW{a^y_D)L2`9Elqu#((%VqBSM7U<ITQ`Hr>A;Dfw|0MTber-5K_!o4
zBQoM!AAJno`iQSR6CbnUx6R7H!5w4q;k4n1lzzUDzVeJq>(;AOzT!8!C1z_G&!)4M
z13b3QLSz5`(6ao$^xBha5)@&IkCXpYLY3Fr8yon_q)dV*vi3wsV<GZ(!05wEtB-3o
zTZ^;SzZ<txygjTrnw^wTVRCzoOencn(Z*Oe(0jEcZP5?>zW#5kxwx-!ELP#0A#ng6
z--<Bp7JiEO4XDLA{vmnj<-x0r$2IyFI_40Hd)2HrHmsoRv-+N07}RPrA<KzUsjqWu
zja0s(*)bJ7)|N}k<o0PNEzlP?0&7b(tiG#rtXd_i9&WRdF;tyv<m6y}sm3;9zxva=
z(XMxpyhSgM#7p%#-5F@Jo(Ym%W%Vh@08GZhJq$-a@8Giy8t(1m@STx!kJxC9gkNm3
z#mLrb;+bPliT7jCCt_OCxtGjy3~I_7@H0rZ(z}*k$f~{fKY)UlMYv7!P_R<9lt6&(
z_Zh)%J~Q0QLC+fc!=7w}hD%@$qQ8oVQxAT#!O7(fM<JFQl9lHY$)Cx@OsgW;E!(uo
zECJ0=D1_YTyP@ZYl^H!6nK$f2a-u)5f=&OnZyWoS$d|t_#78Y!|6h2Bge+3DcA|7j
z&vJKd-+aoKK$-K~_;O#df$6SoSh46+D=fbAo_W@pN87R#aA9Qcj`w0v`1uGQn6>Q>
z*O8=$3v7FDS!S*Wwxs+?gH$Z*V)!=x`z(L{r!Do^ICcofd2?}ljn;X><^};}3|)>R
zdGn^dor!h<cK)+tS+wai?=C1S0ESTs8UZkNMq2L;SMdG{!o@mS0K@$J`^_w3ew(9~
z)GW4lA@qSUJ)fYhziyN1=r`Y&-}o6i*(B3;3(9j`jhU%`l@YXf(|;T#S2pBTr^pX8
zj=a)a`XsW5^-TS7iy_6~4Rwqz9h6KhO^Eb(_g-rzVRK!dz+0&2Vlv9>>N2=BFc!Ux
zvsi-^&w0+esAh}+_=EfxVsI34nIEkMjFNzdk&FHMClG){?l@YrtHM4l|Hi<V!8{p6
zbJ;0S5ngvVa6#D_0i_^?5;{4euq9DtT2<gi@493OUYg~u_dE6Ej4a=!ytoWFFmt1%
z`5-gXI*~jAw1aDg4%oI5(pAq7aGaxAYoF15M6irskaE#gxC^msWI`MJ=rtkZXy~FM
zM{=b)_v(640z-3BPn}jvp9zUjWe$SiN2ga;KzS&}s4ji}ARL+%STIDKy!FGD&KhVK
zvxnf-Nsl!pTNmp$dFFNx+GI&Ew(({@%Byy%g*Mg@-hbMtRyft5Iq9~Sc6_7g<h++g
z8t^`dGKTjmVSv)5A|bUPi7HiD>d#$<&!%dlgGJQZV_GGP?+Y5nfCJwJ?KydJ=675D
z*C=A5o^hJ9PmO%C{2aKO#pU(B*56#VgvCB{tjmU+qDTEi_);L`<vX0hvSEllJuYRX
zJj61f4;>!BMA3qzZ9G|fI(S8%B@XM@Zd}dm5`4*O066743tljQ3bYem3rlIo>-o+<
zZ~cs2HC$AF2Y~~YU6+1mA$jvi3Rc(XaTv%)-=`^ow0Dtr5>xU19bExg<i`p(u35OR
zmr+M;mnf5?h+AK#-t(D~YhHe`niVPC?(gq!d(DVUfv|?_eh<t03UIBJP+0$Ezf6fI
z(0RgLOEd7n+2)O=iuO6>;pJ0q%$CB!714@x;pa^Q6;fwWr#e1IRQXzt7$v2PR@pb1
zKd|%qik`C+jq&x$5e}-4EG9aKq0<Tab&0ECJ`-r7GjaL=JzNz)Resix5i;CHUWL`e
zm$})p2pxsBjb4Od$L%4%vLb?Ym3aqXob@~%R`rz1n4}O^?qb01w(6sra2HMckMw=(
zvSS$ml;g*(Ub*;O!AREStm#zQ12c0!@>D8~d3X5wA5eMz(is8PW4S`&x}}A`_}=iE
zv&C@@dO^#M{wuS0EKK4w>NiseD<<CIIx`2~Z#1?iz}(_tWn!2F<=z&=g;eDS+%FmI
z2YuWpsxKs>Lupn3cF&pmR)b=qk=aCYf71Osg`9riyK`8{sL3hIsPtZq#Y-`!F(KL7
z1EgAfWpIq66npr53)mD!N(!pW{gNIrA%C|RHA%x}8HE--2fa8#SDqk)3n|F3ba20}
zKDW{<t@0_p`WQ~frE4k3XeI47<7!U4B-oNVo_jL`n2&D(*Ob19&B;u{0>;x&55gRU
z7MKbJ1kd0@Jy@)LyQ-hemkVSzk)LRgX8ewm*DQAc&RG!jihNH%7MY>doo09Kv-`ol
z2v`P=F7cenF=7>?Ula6GHjCh)o4NzU*jOghy5u4kfTlkWTwJnU5swV5ZDFd5vky#M
z<zB_vE2MWg8?l8LeZD21{2X#-e#s}p{L|Tfhvfh^Z<)wxdvteD&Bzpww_ZUk(*eqc
zlsMx?H0ZY7wvZ~KFZ$5MX4_z<1kmD4o9YvQWAWsuT1qjnyk%AV*=SU^bxKu$mN7eQ
zWF!53i#m56gf#0?^phe38ZUgI5IrZLj<-<UxBd*-%{TEI8-wDccmV6`Oqq>$UH?Ky
z?~y@KKC^4|Ep^T6IJpwq0K0{})-i2ln1fGJj^DXT_>AT(ivocw<X=nM^dG;h%!K_Z
z0h=QUk1by+<BfL%*;nwPV@aGsVe)*FR_JM}a-Jn#c>TV;*QT%S;?P1z=}X>^?Pk!&
zc4=XAH-Il@eqAV7YD%)z(^ng<Ee5QrU}kT;w?2q*eg{{sbH+N3l9B=*7EMvcQvt?H
z;@9=Rti29fy>QBguO?haE;s=EfpzxgJsQ;~z-cIHR6&&{WPh9PJ9<h1)alTd%7=)N
z)XrFa6LxhEPIROL1+hk-AxGAd@;nbc&}FYNp}$pC#V^$IvP*C3=&kCuE%i^}h>%c8
zJj;cM{*225FR8BvLTMvG@<S2W38ot4MPHHP1Vg#gDAsg9(ZkQ^zSiPP<*rxr!0Ds?
zzd%;H%)0A?;SmsrncI_Q^@uK{8hx#i$B#D$8+jBBSlNl1f2n(?t|RRy*j;scnMr*B
z?H>#-D#);>f5zB(-#PzOJJV+aH8Gdv8dDb(kX&e%t$`V3U&u+Ex43~hXzbslv6vk+
z(&TpxZa2V|u7S$5uJ7kIGolDK^J>|;GgImsX&{4Y<L6D3mCA0_$=AFYW}z%B<`(bb
z8L*?Nu@8c~jA|yt*KMmg2fmuS<n}uv@aqW8PIFkNBa(POw22UvEmx`;`auQ9fCf_n
z|4gG>3=}=@M;a9eE=xeCZD*L2M5YMUuUGpx#U(SSg<FI9jei%EGXcXl_|8!Aa=1OL
zm8^W0d-06SS7u}YqY3E#T4#06n1FSiM~GV`fT+su+@F52Pnzgw^v!R`0>j+;3#R*8
ziRzq)6Y}+aE25VDhJClBELL*J9tyZT+#xR6&nqcf6zR*27_^<R!gm!HBzW4e(;+vl
zN0Lgg73^pb3r&1s4oXkd5{2BId2@R_P`4i}HRE*10m{C5dD*`<&`4f=px@TwiXvfZ
zNF^~k8`sAP$OzZVB(am#-Ke82-Pl#z&O4!*cxDkteta$2pqOfVg-za1C-nIpyIb#_
zO3ee8c9u?-5g&53ZdagjGb{;(l@mC#m7^sYB=x%$2Z^_zEu=oN*2^o)g%hO<0hzbs
zD0vKe<OA9=TairY0&>vZm6^`3)emqADyOPHgw3u8%eQo~;N&A*Dz7id4D5kat3%k)
zD;OC7-V@rAA+>mV_#AP1!(H7S!j74KJJXwMCBtO?Qqr^*Tuyw1l{PcNUwcO^U(m(7
z2i>Z0@URM3+1u9Ui?%Z~UmkfGwo;jec=H)HUw1la*#3wVPSU}r#w}k!Qv+R^AD^mG
z(oDT~OQA_iEkRLVFP3*`v6J#bTb$B*q);nOcRrUd>@HpDZPG!Lhb>GLZhq}GX7$_`
zz{K+&VStwT!gq(v*)RPYJ|FXB8b22=1O96Yz>dn2Mv^L$`jYPEg(}sZGC!xh{^OZx
zckJ2hDl*S(X#C){g*@*g3)+|)VZIgx9QTr;qG`#H%Ke@TsHx;4nmAvJ6E64zLyBG1
zTijA0LqUsggNr9>J5O{Px9nrMm0UE4@rxnk)Di%8bu$JwVZ(zH^V*SpOYz{-nzyF3
zE12FBvlnPp$=PeVX;dp#e~&k@>P0R3mF<uah>LYAL6kJRV>K7l?GOa#p^^i*yv;YN
zwmPeoO@sbI4~>AJ-@<BFEtyMy$TZ7@n$KhnDsMtvOWcBr%0@<(G)nSP9P53e<rjVH
zNKA};O9k;_Hq5W&ojJbW-X&PSX2f$wCu}3L9oo45d=<^`N&!QlXmPX_*B=p5<Wu*A
zaWd?hBoMMH{zqS5x&bgB1c%GfPkLL}cfbi`GS&WfPclGF++^Yir(pdkPI?4_@@HEP
z5$=fQK;NdHtK7IuQdNj*=bg2xkHvfElX@+2wz<%8Tm6Qky#=sL3Vuu=TPk0yhDPW*
zj0R^2E|O3#s62@2{5AKUX(~aFcq2^6Yht%<63?exCVts^^j$gZ>wwH`bJA6wc39KB
z`bT81ukEGdLF@VskfUMO+!7$qS~@ui#k?Mcc$Nb(C)94Wn|10p`<Y7N5D_ioG7S{y
zSxYprQdiClZzaOLl0o~%#2bBnk~Q8#cvnz*g_fwgpVZ6&;=e@OHtHa<kbR6ezkQ4|
zgo~jQQ=8GnQ`POVI3(v)&@8BYp{A=r8XlcJ6hU>f-|V(@9_g-1;j?l}BinbRVo#aS
zrz+OlmXgr5`Y5<po-AjU@rGzjyq^MUb3(cWNwEuN%m%b!yrabG4ZZ0#$w9C^5V^{Y
zD@nlp%zjSr3=M5&=QB=nXSG_vHC}AL+icy|K(=)<%+8X;gug36yLxr2TS{3Z14~!s
z&8b;LRr_9(e8#Z9l*Um+cnhVkHVsk?UJ8ooPv%gd6AUsFRgruNDuttF!lti)yLIVI
zj)EPyBnp;!`GNiXgaRjj=4HJ(<65Rd-Km6!LxG(SqFwO?=+8v=K-k=b5m%Qive|l9
zQ?Yw2QJ^~&cTWtbSy@3?6u{s=3GD7Pj<0c(5-bT7Yuo&BHo?N)tzTkvt%as+ADD&0
z@-`SGCK0&h)NtM$PLSzAk1O}A?Y6Tw)ZDus2_7Vj2!7I(#S1$Zjz{Ip7H%|t&=gxH
zuZp(#*IzJ^$Cmdcd1afkBw~j-4_*+Bn4(Mv#x%3YI81jr!VGB^O0heFG}_3qpP5M2
zPU=seTr=TxEf?dCbd+S(Rb2Ozz%7E236_3{D`{GgLz;Up&Oy^&AlI$gVJEpmtaxeV
zppvMdNPl-;RV~_6GA?M?>CkGR3AlHlK8DE)Mku`?K!WUTkXO{r&qpSrKhweMhHeI)
ztGxH`Ms@g;fcRW3nupw$4zJ6d@*7SHQf65iri3qQri<t)ht*v#A{r7eGlQEEHoka!
z;z$)3d#GmuOoCY5U<(ufjD`5ohBE0^L++cTrCDMwy$hix?@g?Uhhckh^g?XQGN_Gy
z$(eJEaf{Hum}IS{M;I4R>Gduba6o*nxH1JT7`1&++{`HBtJszaumRzuwWuiy>`6$l
zRa<3xjN0b2pcB?nE!{KNb?Ji)R2UU<>cuE*VH_sXXLLiY66<@`2r1Unb74TBJW%SU
z=Te*_^L#~MG2UI#)2E4g?}?uzJg>7vsv{0m`3mW$Qn?KO!)`rx6B%fb_F8O=RYwma
z-B7OUySD7iFSrRoP2k`b+2@x4uAfh}LEBE2TOZW~O`kfPg?^>}aNmNd-s&KTlocLX
z)(g*w6)aBNh+eOzmULtWj_=37<8wd06Y`pWUN|}B=IZun3MO+Tb5VY`&GGB1@0}Dq
z|5e=3f3+gIDGtP~mw$m+ocDh_?&j$f8g4D5lDc*IY8#p-rF8>8tX*3Ydo71qM!jat
z5ct%T%A9lU<>!V(&BbiX2l$~;^`3mwyaREZSHiI0b=KG8n)P-4rmNIQ&k32WUNy{$
z@itE&L?QLZxJ{i(PkAA)@w^6I)nN?ZV-LyVdrLbBpt9Ep1=w;N;w<mWnILP0r!2mc
zuf*#rPS*8C1nqd?4nC0+VV`%r`0@ir+wQ4KWfT8&cBZh7$o+`bsC3nf_&<p(xE}rI
zgo36lSd1py!W6%`TUmB}6XVC-{G#|<iVb^n22+2Ow;A^!bZJu`(mxLL+RA+2&i_Z4
z1Anu5bL1lr-qZWb?*5@M|Gomj#rE>?O}|g&Jd3kCbxsNYTy0N6?y{xV)#~G=63B&t
zL*Z%QW&w)<Z*AjT)$IZ)dG&t;LiQgpc9hU}DbAz`__6Z~Nx04D58Oh<Js((wD?kn`
z+@AomZ}U}S+_}Le<M;`ziGa<(T#JNvIyx%Gkz%Og_hqIr!o*p>w5wU>=L?*~QyN4M
z#Qb0el%^Fk9e0C((s)~{8UwG9R7g!z{hF`3b&Taz|D^VaNsF3BSk9e%{2i~vX@Het
z%pJ$if2u|adYx5uXt?Vhu24E+NXS#Ma{xq?nzksM3&;J&IQkB51_#!5vG$iHM!OmL
zI{uikez~+T5dSW$+qe`sTn{~GQxrAdTY>;YlE<!7G&af4G{DuyAvgUMO+j1yb%p%%
z6b?5}D{1_0A`+K_2Nr%>I}IT@``m~#*PrSYQ2azrkFa*jbj)l&@7`o~yvg76cv_iC
zQtKzJU$XONOw$b1WQGTl8=iJn@0nXaYQnV?DI|6dtcZ81m3pd&QJRAk2Q2fopH@Ks
z>)!Y5zK?&QUT!D!Mjd=6+(!HzdBrWR7*GB+T*oxbBeTI>tX1Bk=rQQRm4VrQ=dMme
zjNeSI<G|VXs`~wK_0nLxho_qW#wo^x`)x~C)ho%#zn*{kMrLGhjLWinQ$m`E(|z(y
zqvFBO&q%2Y+0p3>H*WIX@oa9PKe;HPa@IIS-?ODi>tGK~nwxE<__S|T7Kz?3$cSaT
z&LQtsIisMA)hqhV&?W1q>+=_C7w`KpWqu#zrBUaID_Ct&=)kbX(@syG`c~vC%dhW<
zSpV3M(LV@m1?XbJ48)H_r}Z_z+4EC&Pwu_g%f#uHZnetaj$gv`3V1rdd@!dq8>(XL
zusL|U09*VR$yX*0wS9n*)MrKA2dQ_lN-^%UmyrE5F_Y=8PAys?(S!~*DzaCzi6WGy
zg0RkP;gfF}=G@)pSpzDSxpnUWnscfz{93ll10}X(D5CB0wxFVv<U5bG<RcE44zD^M
z--;2s>TXH*%|n7)(Zy8mSx%pszUmb$&6L;|=f1s{(ya@kqV=D|pC6_?wRd}W{|rAi
zPJaAHSaC=AlO@Ieb2Rf{-0uGrrKCxO*VOslsi;HQ)Lr*+*Q{{`*91FgC3xDECu~|Y
z*4jN&^hE!pg|3P7^rYWK-uDlvXfmjfycFPAq{^=P`QCrjSC6?4K9Jrjbe)|<-w`_@
zugmiKfHUD>{QKIG49ycEMa4L5{eLEupLuHU#b;2K7CgL<4*kyQ8*5*}hiQ8@>|~~Q
zU8Wu6lV~P>oAB$4x#CkV7igc14VVNdhC%LZ?dp7!JXB_1(PosZ`l8!75`DOYJQw_R
zq*;VS0{D(_pO>v9U>NuiUEJGi{eao6asrXMMCgiT!@oKRwNV<c4i9j>r@)qJo?#w~
zwMl!vXPAS+CDIz#+`tYW<E<1ry_nVKQ*u3<#*Qh!1^D4tfh))DEl!!HT_o(8U&rC@
z=f^lNKzboj_Zw;lKtE-RvyWy=bUxe&NbAswN8$$+_I!__*EXQ_Zww%1&2w5OpXWy*
zp2;^IOKB*7?y-V6`Se38UNsq&m-AMB)XPWV9U>G#63c?8)Ph=7k;M(gMn%x!^QG0E
zzJkHgM<0Ky1Gq^UOEf+LhFHjpVNytfr{i2=d>yBMQ@em|NYFr)nqlJ_@F^)bb)M!r
zg=WPy_^~mbQ5x=eiyyx4b*s>)v1jE4?1)+}_5L5|l)h;rax728$*d4aWQaVJITNnn
zS^g?<;<S-7$-<*g;q^q)!*i8duZ|;I_-gX8Rkm#ScWTIE8i>ZkK7kMH<DOcNTlCMF
ziH#IYZ=N)j&9duud28OT+4$4EpM!f-<q$*2%l=HX)1aLDN$x54FN00ub4327q15vX
zbH}x+PK8{%_buD8Wmi8~o50?Gxc+ytMyc<JF~ovpI(g(<UgbxDfTriLKRtQfB?rIr
zaz_gPs+zdx<M817tYWr&8TpoBe=lGmA@ZbUJBhZ7X0sZd*!5n3)yx>Z=<4uSwqoE%
zekJeDfJbP4Zh&9RyOlH>c${P(e5PiT$3dleS8M46e!b_<&7z`C8pb*b>wf*$>T-v&
zMe%?*e=t9)O32VjlG5=%Tf?3&L=~1)yC1m*3>fya@aJu;yC2z_FInDLk9pUB_H!03
zc8K2k?<4p+p=&;?ooa-;#l&Mf6Vq!MU9`MWHi*QkV}_uJo6BJBxxGpucK%}@ADeS$
zjd?!)qhTzw?2px@TOyANDF{YO`d47ug%^q!<WZq~*+vyFWXzjc+;XxJ^_<#_p!In{
zyG+0*s1NT{Om<BF_~3_Fq+i|MG9SbQR%Q~FOH6Iw5MArETtj&tpLr)2j1NYR&ferO
zd_S{qj!DAtamD~E-C{lN;2dp3lTgEM%m$v$oG+<rYaaWp{Ez@E6<pE=o!8r2)-l51
zX84T>?R|mxP(CM=BzYRJk8@|_S99+^gAR>58J2O%DAO99?3CtPnvbK3hJLbUI0%S3
zmuG4UF1|fqLU5`zUggYWbi(S7Q|=?8u5xHqUvtgXI>*{&e7xv1b7b)63!76M6NKqp
zNImbw(|V<)I@3{596}Zd<1$Gid6~}y7r?Mdo`E)N_9Xn6@q>Eqg11EoQi_jn`1yf$
z;}@{iaQ(p>|1lu`$0%1t^I3lq@2AbT*hfHTP#HpSF&VP3TOi<~HDP^OXe`2M9T(ZK
z@Te1pIBu(j99j>Uu{74!B##}N=*KCK%G%geBM*<{iH_-+gvw1bj*<MH54eA%#LDPr
z4hPY?T3cV}hAUK0%_=sJw%M8T%d(538p0Uf+(6~$L4OCSC7Q>kpQOdy3!L=h{s62%
zjtrvGe&IBWrOCn&UvoZW(7|AbPJ?`jy!)Hgc7qmPwg$IGlaE0tC15@R_f}QT083s<
zAVR(l$fnY1QA&VCl5J;g(}Td)bUz!qnBRzv=1`=*y{?5;uF_2XVqs^8k<t6M^p(&J
zUxnRSt0>I_)o}JkYv7W0fHu79wKF+AsnQM-*1oa<z75n_3Mz!FX&dIR%6remVXNFT
zlT=u%ERUPZ;_gAhL)5$~V1_Wq)p3(88IL=h+7I#8XZfdpfKe&uoj2do6G6v%W;%Nw
z91>w9u9HjK)n8+KIEFKhiN<znQx_bP`_v^)Oyq-NT2#Sf%sjXPO~PK8C;fFl?ljQ^
zVg%9R9wTN{53Gc)q|Oa?nZjik3;^p@@!3QD9E=@@$-E6bd9<HtLwNf;R^u1q%?@S}
z@lH#;ejoy^NsP2p2ov-~)O6QogLMIh-4vIJ#IS^%%F$W1rYv6V{#oqx$qOr08Ic>|
zCd&*EKLp99G$A?w8()OK-JIqz`}HNnoUAGmuFnhfC+M*%Uy}!oeVRmV*q3Zqi?NoS
zqRG71Zo_i)QSLc;cf9hK)CVJ5kZ1X)yIoqmvV*{zzfiTF0-S-i^MlzJ3`c(tq`q}4
z_iIUCP?)&P6rVFBz6QPtE`CV+oNgRb9E7u?L|>*JZFxb69L5BN-v+@=$xoRmPTQIj
zVqUwT#ec@^6H|AkDkajMK3mDi#6$tcL5ZdBV(bi$qXvoT5^i!e8bkCWp0Bx+?+D>J
zS~ybhA07k4by&gf+5+A<!@esgdIBxXnM31krZt-!Jde&-8UWdA9m6(VVP=Jq`EX*I
z&3v_MUoB{WTcF-Q)A<?@xxg5JJSUzQ0U{Xp(_N#TfvHyYT>w;&Tc2b{*alj0z>q1Y
z?j~BY*GAc1Za}RLDs`KIrv3_=#nNV8Wx_Krg(;<$Vh2oHOa=MrsCo*2o(gbl)P#EZ
zAYrJ?c+=K;Mcd0eVIrc~4pal+EhV5=me%PP^>E{%5xhPv3@*i*^DmIyizTZ1(RW5+
znKO_DH1QZeL!e%kFIP!`u9IjP^iUTxi_EW-aJ3U${4xrI@Fgq(=J=7b6#-Vf?^CGh
z&UO0rC<O8a-M>IpR^)yeEi+z;NXW)M5?7D%D*ON(VT)}j=Lho)Dvy@}TY~|3zx)UD
zYmL~LiYxj{*6(6_p$<>05(fQ>*<T0nv2#Uf_h!htx5Dgi%xg7+-B_MAs%7eR$Q2p9
zo`s%$a+Dt2&xqX<hQVKYsqQUvqx*r-JmB(F@|5nBpB^!t->`slr5mD|UF(818cTlX
zqii^>*X%CEaOaoAiEwv`0WGM$#;f&fz#eFT=4kz_vJ7YdsRux7_;*FLr)H$p-8vrw
z=GT$bmawlQ)S^=J-f%op0?HBMni<G5v7}XMxkzJm5;xJ4s_uUqq%mM3l~x1~=!&A=
z&RoOCq8!s%|B73yd86Cn6S^8o1<Q^od)XjU>Y>&qX&LZOTKi_95y6L+YCDJyLgUP9
zbP*67xnQf2Y`1$|%)M@sA?vZ*zj(tsRIqyxRr=$6Wv6bVx*YD8SVdcl?o#wUVveM;
z{oashhM1#|Fvth@BR><L=cigp51E{||Ai4e-I+prWhm_{i@uXNCch#Ya;>`fXDn?(
zxj8Y6mXyQmDO0~Oaj@j~(3GE6RM&teOO(bW&mqwe{w1&;hGXZJhAJeJ8f(t%L&|1K
zMJ=MbVL{Oj^(~=CDh50h!kQt-nIp)YVGHE*=7AL~I~lZMOA9Ij_arTbjOebUPk^G}
zHUApWwnn_JQ2nt7W2?4Qnt(f8lJijC8Bk1&w@V8&YGSuqE`?k&UCm;pNCk`s$K|ey
zf1S1}3L3#Kq|+u_G$<;f5JJrD;Sp(sby}idDFj7)p6e^^QNLV0uMpOC);;sjMU>Ns
z!J1?gAw|opZt-Xgqx;Vy6xMmqW@_;cON@1AQs2^xi^px}dA(Fp85D8`d0gvQv5K-z
zuDvEl>g~|Hdf~)_v)*maM<7XBYYfcH+syC<8{~5oU|qG`Zst!tYz1WQ1SEmwGJ9z?
zX;3<xuk^a8sSv?0etx>@OV+J%6T|Mb&jV1zf##|NG@R{zpV%BLH#m`OI4{@EM~3=$
zu-w(5!aCxiEf{j&$9r?UCgfTtbvr<dfRYpX61{yog!$PGQRpoz6X*%gd}ZYmRd8-u
zAJDpD;7vM<c2L$^nIB;nHLpYP?x(V3k1p6m1Boj!H$irtwod7eL+&^A;C+Pbaf#x!
zKxUE~WF&Za925^Q1y1{y;H#1*x~8RLriyaN#F6vv9!BsJV7HmOu_q?hL5Ao=2q*<J
z!qlRE6>(CNS>InWna!}bgP&V0f~Wg<nR55FF-Cv2mp~S;B#Z!`ah{c&Kw+!RqjS3K
z>Q;kb)9Lg6sUHL!hF|a)M1DvPq5zCsk4L-W3t6dBruG4K07lDFa2q(R(;2WxKtg(E
zRP^Y7-q%$PXQ!*fLn^NJ`&rTQ7+U!R>6EndaY0uY?@LGm?m~?h9K`CNOTLNfZkjd+
zQQkwr6?J>bBQre}cTD*_vT50mlaztgb~)f{Em@-2&3DRSwo87tA~I24F05BXw)khF
zA<4Kl(P(_4!%Ztmy4jWiHU);1)rY}`nB7Fjf@6q@<-zP!@h0iQm24#ZYwz5j_hXl=
zt;DIXMW(b@9KOh;y!f~c!YrVv%S%WpJd^|0^c#>(vVC2*+^$euy%LjjY?BtMPfK!)
z;r5(9Gi2dSyIQw)f36zNHF-(wO1g`xfAMw7>WpM~=>Eub-Z?MmwUnT#9_npqmbtq6
zUT-^R2woQWbyXn0H8MRVU`XiFpvAy7-q^3aGUO@&*GqLJDq0J>rCAz>*xGf$>g<>N
z9JiEU4?|(vmD~^h^#Jb71m9@q*b9ej%rOUW$B+TGrt61@Z{B;zuvBdjiPQ$VoZ$k9
z0E<4ZMx?!zCwCcrEOBsO43=h#E50k)%Y_~$Y4yi55dDQq^Q*b`wdUYgmNs;2`UATo
z2$?GgXF*6YRh0^EeKS39A@X_9-buZ~Gi12V&4x^okY4GRypFJWkn+1&wZ@{0=VM87
z)`)^r6C|)sr)O)(ze<pO>+z`pw;EN4mLBS_R`*jakXDj;10SeWKfkO0T#^|=^47g&
zxf`N4IS3xPQtT#{w_t1CUa?epE`ZMN2j>tB%l#E+EQz$_Rm&)dJCLv%gCh<?j=)6_
z#Je(Q)<*YSx#x3utLSI*bf27leVX1{l1v8xvYMT-Qdqw<FuvdO`u#`9+C|T1!~p{f
zn$V9$IuF9h{wJ%RU)GEdJL7e3BCX?Jc@plAo}ZY`!%NbM1bBRD<Ut%Cm8aOjX4y1;
zLCncZg|hk}0N-U<q8AmZ?x5XFoq!URs^u(M{WH>+mgOF^h68{*?n$z+K!C{4yDh>F
zJ5&mKYBDlDjy0y1#tI~{#vcaF=jWAOiag{LK!F<iFEiw#V1e_U5SKC$gx;%Rf2wD5
z+>p8^=0^e1EPhmY%hB1j3~^eocWBkul@$g|<}bcFY51ZZ!ui`>`mes$Jw^VleX`?i
zS{~%%;s4;8QJ!}%Bi|oGe^u6;7u#N8%Sj6eE!ecGQbl}$Jpr&_S-s9a>N^uZYuK7g
zDy?VC%X4mXe`sb0Fn|sFbbs6HyeGy#43$cdsW@eLc$l<FvFGJ|9n#Th88bHyR_M2{
zJYQ*J<LBudkIq*Yz^us-2yC!g>r^FreXB|KkvhK$oxik)e0UlMw?KK9Xrr3$XaADC
z+U2!wppRA@ueNiuHN&e_25*i#dF3iVhIfJlA9DFj=NBOwc{(<k_V={%<Bz@@@n(YF
z4%#tRF{?MkC~I?`vdo9uo~OpPLrN*_zFGl&Au*G5&quX<Yujmu`27xoi-Vs8Fu87_
zz4~`bguIrJe49{lcqWXBkfPK0+Hi|Xq1`)FRv)K)tq#6KTyHNLFfoRh3TWbZH-nrr
zC3bw}0e%Jdzj1v3*UZ><tpDjJ|Mj|55(~?!b2Zp%JQ)0Sn}xWaOx2|>Y;Ea-!_M{(
z=DKV9Z1o@9YuaYGl<3X=hhtk)etgQuX#2u-l#&bPK34HR__hgK6|>&Qkgf7a34!hH
zSH8R1-?eJK?dT>z{)%n=(6MVf81wC&-;EMf%kKxGM<bTDBTnC^_so^oZPxoM@MX1x
z)%g;W;Yp`G^{6nL(pbMn|I!qRic-c_W^E-f6nnN0>Kn01=B8$P&BG(r@1enIGvy>9
zV}A*Kw~^aeMh4x{!q)eSqu1yrk7d#Czby#gHr=6XD%*mFUQctX(HZ(;q-Pq~uAnNd
z*<l|%mqX)Ag>vV@&?s+JUPorTLe*pEhEAL#+<l(aZ|ppU)~G!eMDEbPn&8CuG;CKB
zF}1Rs0Swm6X?i<A^ZlgQ;*{lU3+4l>Z~Q|F>ka|7#bHoohZi}>hNI(%GfB?o(00iO
zp2mSE_(j3|Q`HdMx&##8hPy_4ySBn9-`4*#KlM=hR-?wZ8U6>{R5f$e{>KH_E^7U6
z!YluKw`@D!^G^+NZ{Pn{>Q4Wv;Qe>x+|ys~xuNXD8im398Ah5edxfPtOY|Rx`A@dK
zqCMU#-D(eApDH-YKkKt1f0Zusm9>(NKh4sg*>B-uVdvL>`ZacupCY4etTXyg?@~FM
z89bj)`<!)&B!wA$m9eqWMw1}GPU<iyDYQ>6#*UcbU>kmu&KFvWOJ=_HZoYt(ZI!d~
z(_@Pn0V65g6&u)D4i*FTUS$KJMsnPbPRNc!k{3P~$Z*?ax)y8bSoiod59Ej1^$+?R
zn<*2MhcgyDLR>Jx>H=vf|3XKX5QU-qV`eze@?@OxF=Mc?zQ4B4CZ17({W>f9BCk4`
zFVv5w{@g0J*A}CIOR7$B@>!CtN+ASRzyQA_^E7m1Fjv#|!JEo!i-vCL1)A<zzA-7z
zc1C3RSbk(!FwxUz%B776goUks%9s1?5{E2PRsXU}kKLNx97pknafbRw_~)gf@mG~=
z0^-OfZ7=LY(&YYyOTv2b3p85g>(ugBSdK$X@41*G{Mfn}#p#1bc*w@u60HjqaP_MB
z<Z;_>MMLj1yjxo;>FnO^qi-I=u4ACJNuO#nb%W071h2eT$d3W}pgcmTZ)dLp?Jc|~
zNxgQeyV=+1`NJ8sx5W$dX0^t{7P|Z#rp5dhv}UZKs(Jt7+o+0V`x`H`Jd?tXnJ^AN
z+_V|e3Cc|;cpz%ShJ4$2)thDT2b7lw8KwGn20R}E`d#99U}A9Wt%WXf)aw={cMGK7
z><xI@e4|a&S8I2h^`(wdlIos1FD5yeacZe(b6V?YV{kJ!o*ST6=~T~$Z~rb_vBmen
z?ZyNp0aiPF^CsW>4cl14p+Xj`a0z`^RVyR1RCDj7h^U^wV&f*-X%ee`U?4g^M_WlS
zk~AuXyFV>=RpDG}f$>}u!qmP)=yoz(8naOOPCvxf318$8tKr8lJ*lk)`01<f9`Nca
zePYQT=?1G@lF5E(Au;)zIV3@Aj@dtp{&^)d3UtlZyMhqRo2qpVyGneLKNSyQ;y#1l
zPMlh@emF%2BNhKy@I}%YUGH+=>iiIs_=_*nJgz3|b+X0!Uf0_C5QW#|-vlth*;lXr
z>*teqiPt02Hd0>6v){7{8M5fC_ct43gI`;AYs8)sEBwO@NUq#R{xGPO5YH$La<iei
zbgrBQI>2wRvW+s-Z;>lW0B+EMrU50tv*+a8@`#0xRa@B?(4?c2%-i9GEELrlURXq8
zCKA64k_i!SW=aS#dd47?)-mapt#roO?Y@fv{>`DkD%^6CQq)|^45foUCG;JG{b|!e
z7PQ=*yMOvqssy;lo$or<qs_!chjTq8W7N&XJ=6DiTGG<5r#k<!4+n~Qm65HdGz?dF
z53c{<_2)t_B2UF*!36iq%i5JZ!f5n<F<bAhU}@Rq;8cFomB>_lLjvOTD3r7CPics1
zsN+V_7y02S7eXdJ6Uuh8FtMSG9hd@#^?JwLr1&dn+LdO#40G>&%Rx>wIu6RcX!AYN
z9QOz4d_a5YJ7Ms<6<^nrIk301n3K8PA*p&2m{h~{G7?<F>=!Dimum@;NAfw|L@Wt9
z8wAX)8>!EgRO>Xxpg65mjc_n>Z=D7|?O2qS8GxOhvZV!gP(ODKIAW%QBUEYXZwXg!
z)*iFtdn){sOFs5pd=;S^U_;a>k8G6T*Cw0fh^$?{UZ@l{k<+~S`kjo?rC+ZajG!9!
z#0#AHLn0@)>cDK6yXntxGjaGJEvKdX3HQ%(tNo?-grXMfJ!T|BBGl~-bn6Fc@y<7w
zr)tr6L|*t6to8=Y^>%fq5q<;DNJVABTV>Sps*icpH?K(vc_oL;f^0J6bTAcuA_<K0
z86*41s`Z(2fc{didsxgMRW_HVX~+5k6WPO8I*Qv3QU4PNFLKgSlHh8sRt@|k&DruN
zW5BxOb`s%x*@G2NW?(sBj&D5f1#Jr|KYmWBf<&|>NLa6L)i2~-{u`%@y<mMZ9fS*L
z`knn?{a*~gxJ;(@Kh^)z<S_`}et!u4i`s*`(jqr(t$59l^~k(QVa$Jm=6q4Rm$K8|
z@I9-t)$8!zKl~H&J(}9-Mhf^FuYIuHX^e>dj{0^b9^7fi_#16}e86uw-RiRV4*Ygm
zD(%?Nzv1Jqj-Pf~HvX5`@B4Z;dhQ;-r0~>&V<)x)sXjgk8hgCgzHTbfX4MP3K3xQl
zmDa0f;b0p$<b9v+Sw1kok(PhJ*w=Vr(UGsH&CF}*w*o;fLpn7l(mc(ojG#RsTefsO
zO4)06ZE3<R>ijmgdNlQbZ^7%f8fZiKRZa*e{twMEeQvL}qf6H_-gyq2xOqNgV@VE$
z<KgCL-G(w9{K~{`8VV8ed&q1S!Kt2=vX}K~@*53>`30HdUfy<h_3Q8uGVQ5cO$_3^
z_i4T+3@B45sr>C6h7Q~06uRsDwfb+ypiLU#6J=GcQkd6psTs>ZxN4QkZRqG*jOcMD
zEq3__ni7s=E?<wv;mfuYS{ut92O*qQOnqH@*WR7pwQr2tLaI;A^-~gv<geC~Zpxct
zW{G<I!fBGt$Z{ghW|VE7kRrT|8t+x@+!U!KtN<p|q$UBa_kMW99U1;#zqWV=%e76l
zT0aA6MeBWu_;zwz&_IOWsPrA)e`nwS?sd6x^Jr=;{}%rxN#ESb8><BiJv*&D+ik}m
z68WT0@88MY{{QIVS%Z-EfgQ=%!PUPADv@=+Im-W+AI5T$?Ay2cV)#u-UR{Tzb(6P)
z2d%G8l6DL0zO3V46ElTfgDzW#wS^k1ATwqEZIcpTm4C?8W%ikpvMxoI>3G$j+$yIc
zX=W0<Zy|KzGS+C%X%#l!9fxE9>3WP#H8b$8LBnq||Bvyg@8B@0t0KT(Vku(cZiQdB
zId2r&O2JeF6j)FRs{>a^U0$PRWSJsHDf)rC=H|Ht{(p5Kx2)xJM`OL?5v1ZsX6SO;
zxZA=U?v~3;eb7k1s5IAL>8@zp!4Gu){lNcsK=nocHc(wNkh$!8(*I7=o|49~O!Dw^
zT=Dc<Z~NxHvk%llE(&`2Nm>`4a~?Jt1E?N&!S(XlOMnS=zOE%IlgTCaiUv69ssWNz
zyJQ16sj(nDRsEa(4J?mMMakXLJA9l><h61m9xirowA{^{gmQ*POI8IQh4HIGJTw1S
zdCE(t@nEm>c>JKeU`gHnvtG1{3U?8eMx*(8?_(JfUpFq8Gxtb_>)5GOicwy#5}x(L
zoEL=uZ5HyUM`63SSNnJPm!Bt@%C+$-_peAO?Q~PC?5PM2Ck9nznQDGuJ7X7~Dn=_G
zf&7fJL&qS#wi`KAI-K?X8H2&3F<Q@f<rdcd0hj9U3~kbVyFM?`|62*i4}YB+<N17r
zj=zX3JpE9n^Ks{$<u8^^;5*64$(8C^5b+bJpV1#yk)rDDkwq_!V3JGbvykt@`i+So
z1(g|j0H(?ry=IG-2~glXN31;$^ziF4<r-37-ypaoT2K=L3fMpAAkT!<g@jSp+g0cN
zYWWG#ntDW^<U(mX^DQzexNE7jbNclKeyX9~Z>Z1jC>lAPUMryJY#+QpMmEIG+_X~`
z>Ky!{yP~z%U%HL8^k%|ilh#j_MjAz@M^#k++uY#pj{tu4fQB(YT8`XUBdokmCgNmZ
zx-~PIA-2~%KQtsrq|ZBF^Ln!)6iK-dAt5S3l{j0K)vamfWI1vnf;Z`W$}i50^?$VY
z-C<3iUH`ULd{ht%RnVxoQ4ujJAPAv~17xYlkP$Rt2q8>Ch6$}G$le5*qJXTBf<Ooo
zC>TKY5E4mP%H9ej2qEy^321Gfr|o+^t^N64*Y6)LzPY~R9_O6<KA&^$&xxBbnT7y3
z(QNUZz*J_6t!PH}bGzos(E<ajat)7G6W1_Z))QJXO!xH_n~LY{i0Ob_#ql@iTH7B|
zEA>Gda*Sa|1o>1rq#hB|kX@hQ*!=LSA6tC_g0~EuPrQ4i_tm6GfKw>vrqapTY*nYX
z*;S%C9%s9%jRvPW(MG4{2<*nnA*L8BfFSlj*NvPsW<55|L_=x0(+7~@G=Gm+p%MF<
zp6nhSO!R_T;A@xBY=fJI?wQwX+Z<9IO^4i!We6G5?a@=Jj~fgb(ywM?`@S34(M5x^
z@4$(7;s<sV*S|sK1%QAiwffaF-O-}w19#5f)_i9FpCfm&D@Ip>O~h0#a9`d|l#qZ|
zR;?8In$uwz(&Dwn2=fwRV>GRCC3Q%j)g)^=m$I*A5Ao@<lh3m0omM4Hhgc1^;ir`x
z9QP{UMf((A@*7A;JzY3BJ#URKk~_xMnYtg8yj8_v@_{a)O`+O#7?V^o{M<gJEjB%-
z{6RXzZo*sv9<v1#b})&4k2DmGhM0&+m)~xg|5`Z^Ut3A@CRcnN7gQIhle$&eMDR|L
zrZMBIlUWxD8byKm9++`!r6FcIVc=_vfUg5kg{Q@E4+okQ2n%^T9MRK+engN?lrf~~
z9i>MkH+HugIKyFtR+6OY<lsFsLu?@RF^b;I_QHgxQIjsF{&t#0s8qIGD*NSS?Z82|
z*t8MjM%slYt(wBaWjj3GMLpO36vVS&g`({<iVjZPECR=V^@Vfpzy<NzY_xbzrOVVc
zyM1sFB8KtYD|@2(uqge}SRg4IeX&z?yq9wqo2-QnR;zaIL%E0P&_?SX#+eMC%O2dF
zU?Jy>L5g)5;Zz`3Gg1kgd?6)P0@Jq<)yTD|hciv~KgZy%*{W-gmAMp}GpMq8Ys|e8
zjh^qU)MX_$I8JR@cN3Ps37jn2Ptc}0{~Tzz1KC@-AuH^MF%z+ju_qXE%e-M=WuRDN
z<=#Qp;|&=ek}r%PoD9<Oev_7A>`mh!lST*i$oC2(Bo-;lfWF1FvoNJ$d1#IaDvCYJ
zBG;dCina1po!e@GsXNXlqHAVb6V@R^=6oEgL4HTLZ3%}3+{jm}d8-YG0gsv7zQr9M
zca}A4`lZ&hQ2GW>MuDYJZ^fAo(|a-3AWv+3%K|iRYR8lW+NQ*)h)o8mwRVKFrES~G
z1j5Kwm!%z%2V_D1V*2bo&S+g??c+}3*2ggFe4e}wMmhZ*RVPR|P@{o7pXPX5-7Sus
z{ivt9N$C>H_Gd|F0dzv0+xPU=*}{%sWX&z#dfYVvl%xF`R+&P0_SR9=y}r+Bn64QB
z33j?4L~JV=h0GB-Ni+!?!+by54KGqkGJX^Uib!6rg9UqFN=?O*6Pw*L%@{7V7p3O>
zvtCcj<(!!c=zlp-Xl04IAC%E96}!%TeV>y{8#7i_(tsE{J3@cAwfBX>O&eJgJ=^VZ
zK~K%<nD*7KYh4-jj|c%-Z-dmo%2Wi|(XQM8g;Mt1ds?7*2`4W`9@y5yRdCn72wmg3
z3N^n)%xSS+KIN{|Rb>J(?elkIE^J$uW6R`|m96ftc+q}5Ie1~9V?L5(_xy%!{7w8Y
zAv!_S0<&AEGdM!p-4oLFR@$~~+TQQ7_g>UPMjJ#<QR$Mt*vW|_B`I?In|ki%`O->Y
z3EP=2O!^Q^dqC3QxzU^gQ!#(CpJe&Xw1GEs#L?QUgsE^^?5H3H*1I%lZ|nUOv5Jv!
zVxzGYd3xTD=|J7TAt8vu{=QB*FnhLhEgRSD4Pg=jX<5k|@CmLH_fV)vwb;k|tgy`%
z#Z0PHVU~lrW10gRjhuGt?Ma*JauZ;ku(&R1KK2+%s1zJXYmmD?AVv(bRH|=VAPpmB
zFav9o-^*KLWpDJhCp8cS7h`t(khhw*27q(6V)y2H2W~xGy*P<%v#7`BhGChqodybt
z8mjznBWPs&`<Lhy`r91Bvg!i6A%SVy(VHCi|5U2K+r;rYAwoRi_R(hxjm$Q%TRHEg
ztA?#Ov}ocoJ9A*gH51@z#XJGQmVx>>3H7YovmlMBGI-vHg_-HV#VL6dZ&|e>QsZ52
zwd+x@(tA$V()sjU{yd0dSS$H+@i)tD=encN-ht{#k8guLTrMp9tRFwTUCtrt{Yj!!
z$-G1B+7+zLTq#+mV#wV4XBUAr?p<v7@txeAtM!qkyMOTuuRRA&VBN300SJh7pyPor
z^9u}Z$6X0PVCR#VfhQOVasKgwYw0N~2e`nq%+{q%aphigI!Je$WjkBUTwxY+;mTtN
zL;>Xm_xmT7zpoZk+R@oruQ9H>z4e+MZuJr#{^1SD%r)aw=lo}3G3{e<2QB!=(>mVr
zN!@){m-F0P&_cxIw!JdoG$I%zEe9Arv;`2_l(BR<+I{ryNTuuRQ&=tIn$DM6v0=cA
zD-JWZFW(qK!Ys18OmrB(c@prxm50#}uIJO^$76FOtZmDcEIP0JUYOuxFT_1#b}Q+0
zcD9vwJNJ?X;%k7jMl|i3qY~3=f$tA`{L||tm*?bRV}Yz4;NEJDLrRz6>z4uqAI232
z0|BqJ9O=A1h=PcgEg)>;`b&RxB7TV)d~5_Fz40c1QC9p^y40-C;g;otSDSxu@;?8?
z$ygu|P<Fp;2}vZpB)%M8?}ye@8z^$S0F)FJV3yJ2$}9%)9-M(A{E*?chK!lk*{K0T
z?ghkMj?j6Qt5&FbKeG&^6wcQyV=CXK2L@)acq1B}>4-+7J1XGy88b~1grYa#Kkj|T
zwBhKH3@#FmCuKRc4ZFaX@3~bxwM~}gkmmNn9ZfE*YkO5wmm!r7$R%0>$VLfn_rbG-
z@jg02N;V0WGD$##d*S4uP1{g66e(%#2S?;JTgmM?Bk-&dnD7<7x%`P$%N!cLe1HT{
zh2O-G`+aVQgnFovQ;0VDs~T74VId^%V)#`}GNNs`2+t@8qNEPt1Dvw(cszr93rtA3
zpF1)i8ZQC8jQ&;ALqxYr{kGu;Nlh$-6z$1&@X}Wq?xg%zH3DftY4a#X06A7~;_=za
zEe3-22Z_~%f!a<|#L+_BNMXY_tr5jz?#qbO3DQ@TZh4{SG;UkLFp&wAg1o*W{d^g2
z$NeZ#ybF2oVf}o0+Yy=Z-B2qx6fzElLXGfl38LI}&Bk#b)~Dqa_Rn4Lzhan$GR~Ke
z*CT@8hcSD+D*ebt>Dwp4@h}@l@XXY(-vygo@~awVnm2eUYZ#s-$#PI0Mjl+GJ0qnA
zTG=<6vc0IvvDNsTtez_!HImQ9`wGX8opMUHWy68!aydpcZB{@F0x55onisD(Apx~P
z%SlDzc^%&cHRoLfl8p{V;_DfO0c;ij=uW!+0G&=R<lV9xdL2H>?WjD}37<tO7TVn!
zIbwjr2M)BN!S8NjKCj;)q;TopMKo##BQ}8CUNrY86oLkGfEnHyi4P<f;!u9%_Tagw
z>XQ5p-V_?#%uHl%c;b+eIdVd0#-S$5os`8^zi2$fC>B`)C%nTT-}7hfhTdLk9_Z@@
ze?zXwptv1>rs98<CqJLaxzOVjq70RkpPz5T8ygk%C=qvVM+2RVGf-Isib`HzA(bm~
zPCR8fk8mjhQZ~GEB9A#NV}X>CB^0Ojo@0PH_^-tqq;Lc3leiAY21PZ$hFH0<KG}t{
znN<Qi_-G-b#rd%!HM*5xruSChB?roL^0?D(yr&|Qd(oPWQv-ip4T<(*K9^n^LPm@X
z4GotiV_&TwnfGvER;x5k50ON7FdoTieOL5hiWI;UU1kQ)(A}J3o@V1>^h~ZeJRU2D
zXK5)?z^nCU9MIV~$Yn9@Sz7*5@BIR$bGN^_ViV!C?a46Qrp-x;=9I7|T>`_H;pNkD
ztnIX7PlPBg&QG;w^u2rE6J+s3GcFz8`Wf^WJ`Pw83D{xn1UKf&lGz{0fVjqHqOnxj
zeKvs7$(iX|v|8xI>JSCEHgDMoJnt!oAJ!3cCE)dlau9ctEA#ALSvnYoxfW$$8{I*F
zHo22_GNBP3=x03r${o~K9@(kcr+bxVpFZ9fX*}a#JoDh;K5*DULzCUsjeX~5QadR{
zIV7vtmW`~;$siQVKO0WZI2SVQ1h{uLYS~OdBCIG;^ZUO2yA7BO&O@fy?QM4{Iq3HL
z-R|N_9!J>~Q?mgTA2MXzYVht8E|n))T)e)l*NX$>xKS^CS<?A~MBGVN6nn|}@Q!}#
z(Z2pxk%;yi?%B8zZNY47r_oljk>O~cS4-uUg}kw)CEyWK0PlSw!qCjPGOZA2=-g4`
z)M0Ta`WvqHjahiIyFCRrF-}et9b*p>7xY;eTTbUFvt&M6bMD6)IBwesyN5bTb74xc
z9k;qL<)V{eW@<Jo+#&4=^HmAAnF;e@9=o(Iwiia$yE4Nm-?+USF<G3`GrL`N4;Tq5
z`@%2QUxxD%km;Bx-W<FbF5Hu1!T@4Ut>~Ik?3x+|hkO$<XF^1uE-4QD@WvY50kDSY
zn#@+~u@+ce3k*UvmAbS(Xc9Rhi*HPd=CqZV+Js?lhq<<C%@jfkXcvanX5p6?g3m%Z
z)iEPP4{+ocGu?FJsqxs+o6ZX{1IC!wO;V<lSM=0vUYX>}ujeEWFB|Q*E<iC`l{--*
zt?2p+xD6b0sVX2Jj5mzA0cbP4qb9E$Zli)x?=xZ8@V+T2Pi=I&uT9dSI>n~Dlgwyj
zBN}F3sw$Tp>OZ4{OUy##*P$!hN<CNmLCd--ftoc+7l5r{S4L;*v8tEfr4g#TVVvog
z?p;jdE@pb|-d?Gs(v8UdDKDv9c?Wxe2vH(;pr{qVKRwo<pq<GPSDLNbZ@c%Sfe~(#
zyIW`@96sEmH1EB5ajUIM$G+cNr8LXC0b@|#ZvyAhU8aD(d_J}zzSpbxW`aD>F|hCW
z`%G!e9$tQd5~Tfy`K0$2O7A_%d$ewdxeX>-TUdZtb5g)`+%DN41U%WvQkb+On--ZR
z3$&}6>ivB<6L^#Xzm4q5lY~w^L_6JqyD382VSdk+Iv?blDVfJD=G+<$M7q;?XDQ^}
zdIvivIGq#M?F=3M$^xtba<8IeSx-v^wCu|7{(CBbr6+?aUX9pauFr+LpT=hSm4XR*
zD^`3E-HWki_^!cs_Fg?w-uy&Vz~`*ch<I6!R;mx>n_;XeKeRLS+50zs7Oq3*>D92(
z4c^gFO^vvS`J@)s&QSdssh&30BdyzSgwMJwp7$x=kDaYCIo$v4TnH?g+-ur#n*CPT
z6dKcfZjb9#L5{Flnm6W5Gp@J%{ZLU+WRZ$G{FQH#QU^$fa5oAij+u2LWYA(q<3*ny
zIoCKbUq5j?P-iY8ztpa{Uz%{h>S*z(Fx)RGAUDr3IANn2<0s8sZA!JLSnFJyJQf-j
zU7Z8K%h<wZ4^XMzP|8njuD)gO_@+b<;3q}fA?3+tLcE{91X_uirnPa_V>)P|DRUpv
z8=7gF*{E3&Vl>#peaqF{Z<Y5=t>+A4OktOCMY$nLsi8%qi-V7YiUA`f%sEXBUJ<Nc
z5sp1`RB-d|BI+EMrgqbqnF(S0o^uB&lY$qj8iMd48bgkP9*3We<ulAVcR!=#0^N%c
zTYLc0&<`%k=gd#P3Tw$NjfmYV`@^_ac%HrR?(`AF&%G%+{1!JP&gml3sx)$Qg;fu+
zS5F<#x>r7Wp(H0EHw1m;*(t<!Kw1OvG!@T~*6b*C(p8+CSN^Hei-5;Z)3j3v^m@aT
zh=01jm{oHLrF5%TerOm3ljhAiop4!1`(Wi(7EVqDVkwc`a>ssSTXE99eVXc#^{cfd
z3?G=hGNF6nYqhO}{Psjbl@)UZDz4Oy7Ks;>uJBcTns;qWURp#krC0S(UZd@iySsdt
z1)ai1mLlqSu%l{u9+imq7yhpQ0HAA)(zM(y4MjHV)*44y9C?K3F58-Xcx|>!fsi*W
zDZXTJZO?%ze)OH45%2a!+M6n*4aw=RdMfH~t?#$N8^$HDyG1=esHGlV6glg&CsM8o
zE2KsqTVrzq+u_|Ip4++wAmF6_XvNvp$(bP<ilrD<O@q0&pjbRp7#w~0XyO01-Den=
z(eDY^_pC&m7F=A20XY~bo3GosNg~lQ1=~rRtvTmY${Hg2IMH)HIYsLM^{P&qs^%L&
zb|b}UmfEQ0m$b-bIWCtO-7O^is!zOn(ttk!;|AH|C7&xGq<xK{s&rZS*ba`*>vaTe
zK0Q`8=S6!aG&2A7nyi*RPXbU!+M5rn)Sij*Zb_QBcHu0dcl1@FN19*NIz}UovTI0c
zdZT*MxUvJ)$oGy9e<+qhxmRc-G8a-ft_IPxlrVIa%nJ^it(MDi{1=+J^-S{<71m3R
z@3hM<w4GUe;ih=a3$Rgfufx;AbAtU+6a-7*@#f)Xg8yd!G?m)q+?VEhlauoPsN~9T
zEsq___D3^Rt!WauVRA39LVi9^`Sh$hv51Fe_05`dxT4XL`xKRXF2SXk)qF(Bzp{7!
zXz-0V-^^fwj5^d1aPG#rqzRngkVe~y%<6@g@2INFr6AsTi5d+l!&fUy%z|i5!u|O7
zd_HToBJ7kI7ispv?ejHQ8L3dxH^|L!;%1`<YBwYdn_lth4fHx{SA6$Uob9)U-wEn0
zv)=2{T&VsY<SKA>Khv8+k1}xF46ngX8bB%=Z5wk0vT9Eu06T;-BUrG<huYfh+s5yR
zD>j3$Lgai@*Rk&v)OCA_*W^SP42tJQ=(7Znsy5&HgsipyaNuE~(HnMrM0`4#-NN-U
zx&G?kyjA_pIg0jn5?4NrJsur0SK-gB_eoouqFZ?xN1MVvI+QI6bM5kjhSQD)7DZxC
zvv)v$oP~ZTJ7&zE)dI{cv1Ng~fL0~!uPG?~!MAOml)xr+f;G$f#rz%1jl1^&!eTvE
z#6l9)9M~eceN{g8VVqtkQDwL{<}l#tzIq5f1`|R(KIpVrmVziq+K0|0<r1FHms6@x
zl2C<2v9yu=(i2`BQ;Euhq546{N`Cb7g<V5h!$(tMUpDGao&u!+3U&>d&{Z@b6+b0V
zuE!oZ5B7-GdGEsYCvYW;{R?O0D2ba`#L!t)#<g%WSfUp6`cYOF;G4W<e&#tW=WsIt
z^vh#mz@s>|;TT{arCbh!DVIzd#J{;vB0q4TR&F{hR5WeFRFJy#$Y1yLK1yr*&v`U>
z4CdF#MzeK#yj-KnmsG3peWcAd6S}K4oSEk&zvCygF!-~2DeCt)Wew3zC8clqR%Rq{
z<u@EZEy+=N_O?aV%ud<ky7gv>X|uf*J933r^&DiY9P*MXT7OPj6d59_TQ!6fm<=y&
z9ZNbq#+{G7k<rA2D7lU&wR=aU_DNZvO%!Z1QTLb0yY2x!e^~^1fPGhbtsL3BS$FO`
zVUdb|tu;Tke^ku>QKyu3x%E9(soe#*y5XR*`orE)x4T8K$Y31ybXQJF=sKY4ZdupG
zpw`#ph15>EO0v}sk%Dn}nS#(T=fs9<E0RrylzPpKECH>tZ<*U*@!45-@+-Z`(p)$8
zpj!-B>|pEBvB~%s;}e$mOZxybOy=JJ4SY1ti`{|?4_{TkY}LYIW!>LODMe!XN6()e
z((~xSmkZOwDJx7|I~cvHX3&aVN|$Ut0B8t)#s}DDehCVpI)RczxnsMb_MgHbmNFIz
z-Cno3@YXL7+8;p+61`<grpb<eD*oZvI1gR28(?T9e@x8c^3gEd0d5W#U;}R<vE<4U
zy!Q8DRMKm>`BC%+KD~vk%;1>#vQJ5CxJh4;U2iRBapSdvRt_ugmpbk7A}qlTSxCE)
z{QouVu+ic55WZe=7xc2sOt};``@K`;dDwgiIV?fxLDi>(H{?F5qN{^MzwU&T;WqE$
z%YQf6@=*niPAx!F=g&QIlZMR-7(_y%hIQ2ceyppn4+Jn0=31V>BR~ivo?5NlF@Fv*
zvA_oA341Y$(I{i>q(Jyge)ug<cGn`?qd_xX;VLEJJw-f6SX|S8)5O?VmC}(gPF2FZ
zY6!7c)<@LnJmNji<N1{z2(aE;|L#3w_MFqO{S*!ki8=zXIxe6*Qm9KaGVuwqs&T^e
zkgCt)17l?iL_*tFAndmJyhhcy0)#^06Q7L-WFu;qx&vU1LxyogCkTK6q{(^N^?7-D
zA0(;_z<1n-Ge-=-f%3iQ(j{qmhd&=e1PD_;1N8N|pz9^G0QjWEdERp8OtGx;%aEvs
zYu_vLz+B$Uep#sXlG6+*ZB#cKMe&KYoBsn7FIn*C&>)!jYj#fr_=s&h^y%~J&$>Uy
zkU)eJoI<elEJf%4190)3KZ1*`gqEWW>-lccui3?*ojR%L_Vb9AX=;T$K>Dc55rSnD
zt~GlZe@n|Zq80v^hO_(60ZhP@=2;pi^F@i!G_>F(!?3M>JZ)H~KCOdy<YU#LmHakO
z|ADZ}ruIJyyYTi_AOLRXrdTTNrOQuXJv##XvIY+@3cWr6V&`$zDEBATzB3(bY)8RC
zB3aX?_=ChMEjK}s5^8+=UAe$EC2WyZ2%jgzdMWz(M_aeQ92HviM?ue}jS9#~k1ght
zRrn7F{w5*uqrMVZ_iM+%D!-6UU;jl}7_xv(peSwb06KDP+}c}~ss8!^f#TAxu5RT#
z+lLeBXN}o<xJSeZeo>89=Fbu};F#*dQO{8!PssDgD_2?VjtyqEt~G`^?HjH<nEj%R
z)G@D8$%GagGqj);kw_ou{-R8Jy(r(mCEb5XYcfBy;3xSb1$F;GwB5k&kD~1#_bsK}
znvgHbo*yZA`9)d6t^DJ;rQI@&e;}`;^pEm7e%TzG*)`qV(|=5~aRV<^;0w%&__#PL
zcxG^;ql{QyP_;hpByG!bHo>w-|E|c*#K)fJQ1P~1B0kV1?+T;_05|FL@67%ep=Gc$
z`#+S}@yina|Gm}dk<XZD^@~Ev{_uYb%=lP$a;fwak9lK-*I&M{`*<P{BQQRJ=`STe
zJ|8rGop;KRo1qGda&C9&{!!1C)EBAfx`lBbVYB!?Xz{%c|KTmhyo5|}<hkr=1I%!~
z*5zC9+%LsEmyS~|zvREUQ1E1zt&<w93$qFOv<#;Th|qP6z;PT-$>Pj9j;F_4!5p#o
zKZ?ERoKBH7D_IyRfs0=2*z{@r(%_>72n4U*rwJ#+BZ5;+n7`m$x$Tx|!fdTYdp^iT
z`B<3juB*rD8MLjtA*(3}d;FyRn={id%{ur#ecO?SZr=xF_V_c4ekuy&(f)pg&^0z9
zzdt0Kqzj~q-U23?fRDA_UVkXUS~j>oWc1{*0*{3<lO-Z<z{bngUE;asGWVi(0v?Q|
z5@CsXfC7|P@e9<1|D1(o69t;N@yEnfeRxz%5$vLp>&WmLK;6Qtp37HtOfWT}$O#=r
zTRkjpYpl3jUw#99him^=%rIgWdUEc2PA@(Klt^7_Ib=_R!b9vNHBSRB#(k9ep%Cs3
z&)x^CTeLb0^Q%Tyavuem)k}Rv2P;hdFjr+rlX1mxA8iF{u~h6#Ak<<ziwv9oK7Z!T
zRGo|J(rZVOR%<FHD0<9&MU;vB?HBY&mvUpV-O5-7w9lXYvv;hsfy9wK1Kwwm>OQ3{
znGTX?J`8!|st}9q(Q_ABZ#v=Dha81T*23B<wZol$ZQkiLF}LoU)AUw8h!GU$jM+mB
zRq{{$(3yW3Z*c8T+=)Djr`)u<L;Cjd)SIa%Bl#%_119YmtkfCHRA{~o!)$BRW;?W9
zKwF+;1jckbeT7WF;`ybPY?brakQhO@cTVhaX6aM|O$*!86GU@$&QkZdZuDU+2k*Q%
zCK#`&w1_Z6_H&N6ZE2*(TJ`MaSPJjqtC2RZ=pGg?xOYI?97WZPF%VvNed~}~;MsiY
z=w6LSyKRjby-cWYtwCLw3`>ZH+5qXh5jRDjI(rhC(khR%<JIQga9ZR{yz31;&hdsV
zS2T{m5T<!P%_&uHwhUB<^I5GFiLnTozB+wf9ep1kg4c=3EBoFXa}tyi1rz1}2;_(_
zp1Sw2AppKOXCzG{1<OgD7KJQ}&W6GrleNksmb>?-9AHk{f(F(bQ7`U|IF3ecX{U!<
zDtGEE4@5c2c5h{r{AzANQ1xH6>!(To#HgrXKdenGMC??|A*h;Eu_)wx+xZyD&CjLH
zCC^=$YwfA0AJ9f26=gR+jn}qZ&x|cxZeDU3C7Kx;yY&go;<d{F#OP`LEOt)3n*Jgl
zX3PrsP@I`Njiq5xTQy8wBzpFb_MM}`&Q7c2RAwF=%?`0gryjrhV_Vb#&lojz^v^8F
zX6E)K2}E9?8X`6DJ1Q3*9nC}Y(Xys8<K!n!i-L0(JjLPl{<--Db)#w(V$JUew#+5v
zgihc8x5~v;clthpAXhKlK2MqIB^?J=Yyq5(T@>6ne0l#tYl|rEGNgJ|^Gw$1Yj^$!
D?$Md&

delta 24807
zcmbTe2Ut^CyEZ(I3ZsII6{KZsAR<kg2!v4-RKzG%YNVG)jnt5AM-)d9q97my$S49*
zBPH|%qe7&FNDT>95F&&kB?%;i`~hd)_dVBt&Ue1+^D@DZz1LprdDc_!dztd&XIlKv
zPXhqk%NNesM7qurfVanc!$uHANj90n#fM8L`#>rzv`uc(m6YM5S5jPB<!*fA8P~U>
z!kd007ch+s6P>@dLQ<i{x7yK%_9on)DJp++>7cLJ(_e3G|CM&(P)qq+%_>q-+>Slz
zTiotnKlVp+dD*kO=PnJR2z3aoD}v2H*727O^t!p3)ck1+Tt(j;A!2?GehtW{N;pxm
z{J^+h&;N4xzUWQC6S)u%ZP%>%@$vBe-3`f-y9|@3c1i$_k4S>aT^jR^0tMQfFiSWA
z&_@`IRxw|pv~Z+)4p^{&4hj3>N9f$<-~Yb7lI~bXI$+8h9;tJCQ>L~I2-}4f0Bbg4
z1{f)F#S5#~`$ibT2Nn^Uwf{WuNXge7bFg)qFu*$);4o3B#`sDSL5N-lJcS5h$4L4F
zk%=IR$HxCX<r7_3vPahw8W;4vCwpMyDwWcLCMe<8L#|r&!{C1g)w5TPx>rP*`ZWsq
zYAHWr{e5_dD|m5)0r%C)Y8a=*>ms}HpfHwi3}NcXYCFB-T1U&KI9~esABP0T-cUF>
zbrkp{=aGHyhOa*|$gvHxn5WKr0F4;ncAnF$DS)G%wvU~Z2%J8<X9{*)pm;I`JdgI2
zHkiHmArUsS?(P=6XG6fdtL)adRmVG|WDJvG-Is;4Ikuo-O2Oa>><Ff>YrneB?k3CC
zi)k4#n&R;Z2JC!1sgl0>=<<ir=0#jGkoVqsIEs8Ufni=ssC<(<;?n^tzR&f3Smu#1
z1U=P$YU2r?NqsypsU$Em|F&;xly;VmdT-sS#bXhzV)`#i3Nq%wXHSS#+e}MA_QvVZ
z-j2)FH{O(S-cbC@*b-fVVNEZEa}NSfEm?98HVybAB>#4B+Nw=V@7bGT`al~0p|YRp
z*%{>7aG>n(9U|_e3fyDi7hZFx_}d~rSsMjB@iwW|(Qjo#v{Y;LyLv6Fo@HC)V6SlU
z2m_Hs#uJOyZP81M5(z%R16PAI%^lqt49*_Eiam@f*<$Ac4~rJV$-F45ypwDD^)8i!
z7>qb_YK|oP^8NhgfkT6n8N0Q;a%2acDeNHa*F$8SZgFF<z&DDPMVw@Wo-5#99RPdC
zglw$m@K=}`c9f%Q@aiqqyfWmv{$F3jYKbbl&GZz_10zcg`^`BO&MMWgB2{t&m#uY!
z)JZ)zwZAAp_*xk;fpeY-3<+n=yDty&us(0Sn{mlePjvxZ7JYGl7sm;Wcj;k=M3Rl2
zs0{=c*!+qWYv0wBKvpSSJc@QNUo$O=1)8*@<~SRUJgw@rnjV0L&9!UAMKSQ~VR6^M
zKHO6FGu_3GXMx>bYMa~QI#BXugv1W=Wfthj)ZS<b@-Df2X}DN+U+QyMhLwKD(I;uD
ze$GH9*lN<|>(CR#EWx>Z=4LLncMaLSlmD2Po^M6**x{XLfc;#hl~~c?rbd9PmoraQ
za(TY4TPNiCib0EKwWj@BGiJM%rWroPC_(P9$B}v2B?h8)v4Jl*c%^}P5zf81X)dw&
zMdcco_QIZJuq&oAZs?nM&R9BGZy)fP^4kjh%2133*!5KwqT4u#kipK|vK%_pVcPmB
z+_<B%bs;zCS%j;#e@DS|TROydK*x_V4#9L=g*)Sr7z0`N%vRXvG_bM@#kV30P-u6G
zuZ&*SpO?Cy8C|QmAgdR;#4GuVl>*i`=iw_~GP`e(sQ)zEPqk<9m>KZ=^novNhDlnN
zhAGRR7mBT#n`ED>n|<i$b}BL}&Djw=U|SpIU6@=*+=-X*4kApZ>)dGl3&Gc+Ku<XZ
zWn;>zJt41|Np>NF3hTeQ4G+d<%oZ9LPHR&ghxiu4FQ(Vw#suzbiX=4tto}^@reZ!D
zl}wC~W}~}HQ*;u&7{49w)d61dl=}3QhADSO7OZ5uYx?n1?!omLKRwHW`CXj^d4RT8
z>`S-7_njTlF`HP$JRxP}fG7RhSr>Yo(aQ`;Ywmg%GcVN`HE-+(cj2k^X2KT0Q*VcV
ztoVi9da{)G9RQyyaypl1;MQ3>H93RV(~vihei^#TJ%qD#NoZTc`*-BWlV&4!Ps<5!
zy{>!lkhs_$r{Cx$H~5@XM*E9KT#A}~Qz{74szG6XJaV$6n)~qbFrsU6l2c@xa2RIg
zs>%^0ZhFw>9@%w;K`YDTuF^^pTQV#EIUU#$1v_Tt5w3u<L_WDb5Si__z=)va+Eh}Q
za#gMv^=KyEZ+su_a_fnd)s+|BdH#Qr*l3L*SGfWrjct_R9js7s^CThsLl4e``c^E8
z*#R5TO-rgwS&b{9iEaATgq##3(yS`%F+tB|zeFlvts?RmlKynPun&&IHoySJ?b(ce
zo2~vTL$m#ALQ8y?ckXzk+R4CohB9eZZVf9d#<9nDvI?1BCX&d{aLKdQxMZ&9sbv#t
ze@gQQs6K|vli-tA7tb`Xe4mmITx8~r@E#g4@K0;ooj^sUw97BzX~0eM`38K+kS2SE
z8U=Z5HBSf)7+)Hl@D`i}nC*rdUQU2uQ$U|19WzMAg8qGc;S6BX!<w2!ulEb_!hS5u
zPxwmzwmDxi>YkJ83vmdW;un=180enxKB2*G+zb&uE_V!R2M>O7f3BO;>(_9<PF7ki
zs39+;XdueFtb|~<WY!3V1R(Ed{X+W5>`L*2EX<3_yw%G9rtq+sJ+C(}|EYH4bJ77_
z4rEyiGUrIKX#~A@Ho`-br|@!lZUS9&H-JNU_q8?QZzjMFyT$$3v@4?d&cXsON}(oS
z3WVdrwJ*&mSE28aPSu`_Y)1CISGsmy!2;#MAA9bq8fA1H-^igw%MDfl>x1iD6fn;<
z;|ti0>ogxo&_iR=Me%c(TkD!Nn1W?%)TVRQsY>N;<6;w*w%PMYgQbm+u{)(!9?hQX
zYLy5a_gS>GoV{GjPln~h^2E0;YEOo(d;Po_ot{_f#PUrP1>NTWac(CWJ7}`Z+r<@5
zj;vvt>^4TK)|+TiIspmRhZqqy-H~HSs(0|73}r!2;J&LMu?YBU;lk;5waw9{MQMph
z7CVpm?2J_vp4(iH=xujh<h^*aZjhi8MA`P!#-GnA%xr`@f7-q=1394zJ#>uD#f+>e
ziAg6YOQ>&NA#v{NG<1Cey1TD}3U+$oETJxIDdW8PmCXBBV)n<7w}Lx;lRE)zV5WjP
zM@<eylP>1$jNP?)iRlaOHv9G&lXbE%(mR@<C*!PBs9Cf5mFE2@G48y8(3nQx;Bl1o
ziN>|G&SaM%vDkRC17gyf*Tg+NUE}T!6-?Xvn5=y;$rMcE*8MqhjSF)0&K&chs{b;a
z)pHVIWh}k|5Y7vc;cF`kGdUoEFJ}P_81a|$O|r7iguK#htWy&$?&Lp<BWc(0@;|9e
zasJClJ^Kd1??+$Vc#wR;>_oDjne4_3*uF8PyN9o~juNM&)x(ykqE*qo(p(Ns5y@HM
zMM>>UhSZ8~<=cO)@3PDw+8N;&-l?$`?G`+;x@&-rDHVJx=JX39m~kA&j8?B}XvDDa
z>kPZ~0m<dxf@v`#8Ap+EK2A<fbi?_`3lrG(VLzaK_SpUZyy}t6pm}+``bi*rEib;R
zBH7k8yN9^MtG6|TxZlH=xDe+%q&(*vm(Uels8jC|Q$`g8?47OJtZR~xZLHfos%|Sz
z9z_`->`^W=#w!!kcxo(yT;4VuRvc|hAkMg~4*L<;MqNWFl&NSHc?3Z7qL&fGi|m=8
zbZUL#tSxR+MO{}Xca-MevSPFPZ)Yesv_{5Nks2O%&Q?Lj9+m0gWd?JnV-5`xJmy=e
zK>flKx^t}DWWH{YLfk#lhCuI@US*8tWsg4Iqt;$1V+l`IkSO#?jHelM_6$V{@Co5E
zgA>yYGJ_f>zzgh1gx7p4#U>(0uYJ_<N<}~Urbb$n7)|?Is031?6lfpn+qW^N-<n=a
z2Kt#{AT~#1F`5}AV%6hd_dphHx<x}QqTnn@%>F9I=y;}&nTKBY=oRFReUE=k#Y;0F
z7GrTWUpHAh)=A*PI2}00lpR#$_n5%+gc*SLkDIIY0&-gxjqLndr<H{WDeyPh(^IfM
zb^WTo(P`QQ^_4BZb-7mTZDi}<Z6|BF3&!I7C0B%e)o{~j_-adV<!=AdVJ+d@{Ca6i
zFH4r1KcKa9;mmxi;_YHTdRpK<obtvB<aLySf-gR3>D7P5a6Sl$VmYo{2H=d*@R58S
z{7Z^><h}YMC5%x=ZI$K|UOVw=l42He&aicF@6&F<+o|mg=Wpg{+vR<f0=?T6&R&mm
z3>3Q|$!*BWmkE-&rkadtnNwBh&{9rh@ylXLk<whzfYw1#UKYf8xRw1PJQ1;4_wndf
z(KOzj8~<I#xzfQAPr}CmecDjsRJ>$*5F;Zl{7;f)`ZekrJv`fu)*tPED!y{*NuU-t
zZgsZYZb&karDf;ccgLf7nf$Y8oV&4-V$zn^igasoJ0BqvbxmC54hJeX_i87_%MJFd
zgkLqB-%B0sX!pxKET;b}Z|8@D<a}P=PPkLgXqAFTXT*nF`s7T2((SkDRK)j5sApu_
z`2`QO-wcSc64TamDx(*xG{5+hq{dH>ocXL=BRgd7ub?xml|R{dDpu|(a(qd0L#*Nl
z{=U=NTV00KWuB5(*x9i*M15bAC((0WOy8JFoP?0KVC39`*;=_zUN;A6zamivUMRIJ
zSw96<9JDtEkw2wb;~VOjPRjD|uPi%BxiM%r%@`G1%B8q#It7T)Fb{R_z61r#WW)s!
zS1UXoqWCg{E1-hCtsx~ldXYOjQIGK4<~dmKgR#LgFlQVsZE5w*s$1|D(a?QAZ_dvv
zxM}}IrBAmcJvD33NulW4PG0Jjdw^~)%Uq<|ez*!pg<K(K{~~?jujWC-i^f8!76jWa
zwumED?!gHA&gl0zxU3b&F_kF&m7)zTinPQm!Q?m8@RR(R&8er59#G!%O*b_B(@l+y
zU%elFfBJj&;>JbqqW>UWOx`CZeQ=_`eoPtvg*mY%aY*!q^eqBu^i|7_*j@2fLV@dg
zqT0sQN`EAq07}VVK>6>NETHKZ%U_3Sw5ivhqTxZotY?bC@$y+Onm0O%ePFtSg`*4u
zOi;b94)kAf<Rf+zoKC37aXVlg#S}p5@LsGk{(Q%9lwc@Ok}dsDG`LGrI43h0@?g_k
zMXp%>M69Zb195)+yY<&LZ<DPD;c}rQz;`%;Dei3`sF=8A7LPS)gJ37}DXZaq#1(_e
zCvsdL@(vSB>biHWGuL=nXP^S>$SfBOrGwD=eM-Cj30r4^#UeP|koZQp6Ron~RJ*@#
zT9M|<=BFYzHQhThlt2mnR;^Q4QFSHSh`-IA=GnoUAHPyEe-oo50sI{|zl<7_Y{jlO
z_T^c*!}gmx!OTAF8~pCrUZ(fD^F;;lsnEtZO|NEk&35ELPh@n*Fw62^QSUBk)<1X`
z+=+Uz`on0V>OaBCO-*vH0eeD9tELY96dM#g9{%#6t4A>M$L9Iz)-TC=HSW6&<FQ-q
zo2}#=`3&uNHuVuK*{EkUE|RnKl@(^FHRk2YXoeTSUOnH#aSi%+$a!Q!x`;WE{8_>%
zStud-KfJ_t&jq_ie%Zd6>D=##PhQ#|0cfm`X_P}^#`e*J1bsnX_E2P4_}A~xX5!=m
zKcVKiD4b^0FnCF4`{vdYk5vu&J`h;1RzLPwwY*KEF=qc|XvAQMdHCF5t^ac+j_Hpy
z_;68oK14c>^8v&Q4xfhSmj@XwCCtop`&1-j4bq2Vx+(O5k#){Y85vN7a|62fzY}du
zKLv@o+3JyO!RIC%b+^LVo<d-qDvaU;31=H;UuR`y&5Q`@fwUnw)wuVBWrI{k6t5?M
z=4I~^fpK!G3ap<ioT(cCPxRGIcS43z1!J}}iYTcsu;}|z1u;Gw?`7G16BAW8R|stf
zv)@4FPNs83YX>y4N8k(J@)r%9Q;es3qc8QDcUbgC2i*IL+~1Mr9M5DK<4@rUjdhAa
zE5!y_tbvDbF_$7Uzwi=PfTMw@7hP{AC{ju@2;{IB#p75*)s;afj={Gu%Y;P-Rc6p9
zgnxgO$tUhkkLhRTiYo21>E<1tOk!9^FB7yLvtUyV;99bN7G*C6C9x#JVykL}DbD2i
z5MrKCQuqD+t_tBYcHP>?C1NOy{^i5Nq8k~JAe{$~HC_(hIq^W_Q}57iy~dBtH6+ZC
zGn0JAa5poOtQYEWrSEVi`q#FoLu@7Q=W@>s9GhekWoh3pE&XC<)^WK8b<78+hRD{V
zjE3840=8YWSM&VX{Nup-MA^Fho|b5H=G9^8UD+RO<p#&<wCAfQwIsC9mb+HXKNzk)
zS{x)zUoxs<%<V`OI1D&{SVZQaBRa=H;}yk?t>d3*jMX)X=h)*QgV1A$nPrb>FOh8Y
zu+t@`BI?_hvCDJ%jjNW`8W8KzcQS)qD8hjQtQ!jZOVmzI@ypx%hoXeZf%P{b-t!GJ
zqV%dd?qKIx8Ryl@WkxTNqko8(4-L84TP5p73`O~9Tpm$rkdmEmzCyh4{vm82jb7u}
zA(<_2p(T7<63VlvZn*47SeQO3c%a5K9eaxp5N|7PIeiBeD4!b9eVlo*l=e2oIZZAG
z2sqn!(IeAo%5-?%jfHoBsxg-!xLhR2IilB=Zd?1Ff9naAC+Zq8T_eh?1S9h~F+$%K
zX2(vjaGBY8x+gsA6sy9nw6`3+f;_^6mVV(G8F00YduKCb?I~PJ4n2&yV0a$2Ba&ZI
zZEj}w^^kLC0y*f^`n6J8TE0rKCLl344rCIRcv7b**B_Gz^9$2q;6AUcX40s-1<NxS
zl65vk!2~s!(({@Eis5w=dIm;2R)0R(_%?I`Dm#Ha)f_O<R=J>@I2rE@MCKFa!%W<s
zjENluAyU!AJFOb!*I8lKy=T1Hxi@>JQEcggCmQ4<Q3icSn3W0q>*F@SxNCl5m|l=}
zsq0aPhbaAo1x62)<K>F;JLB`EW~VLdltF!v?>-Q0?8T8Lep?NPagqxIF;D7JA;yIR
zN~LZUrA-SR>F^lWeFCMPh8rr!$+CTQH7eFjd;f|BMqu$Pj{;^c4!ts2><n@+MF<{G
z!!g;hl{j2l=+z<fGeBb1I(wl5LpEwDYn2S>7gdLFDVX!8OoTC39eyB%=F4U*Goj1{
zzL~oK)s2Led|iS}ny`+Jn4sDC91kQR6?VN5GK)BpjWCiXG#>`xLXZh@#P>Bf8avBq
zJDKGU$*2!TVVSBSE;pxYFBEdH3i&9PkB_LSzJj7!dm!M>aA`zsBS4(R&ve+gWEauP
zswsx{IyC3GFy|7}>so29f@YfSl~9S7QVy!C+^gO!>5?*n*cjKn($0I%r6U=I)i+Tt
z46$tF^}|x&7A_B~(3;oIaKi>_K<VAL8{Z7Yw3wVYZemhprk6_vuh3`mFoB``MV;-t
z?~@3CD9hguv7K*NXCy-G`6{PtI$%(lK`*~7iMgCrNuJ2`C$9K+O*Up3(Jchn(Pn5g
zXKT&c)8fX+<uud{ZP3cZ`gCj+FL*bomDi?Xw`59ukv0Ixr}4x2p{HIq-VIHG-m>?C
zu8m2L8(gaQU;BRCo=R=k4=O?%x2y5?0)>6=OAbwqTj0_)=n<R=1qGNvbxj`Cx*@I$
za)#)MHBM~lo53H?(7*NqJ!FqdOQ}o<{KS|nCKvn9QJl}8mYPE36++WZ&!`XOS1VPF
zqn{H?mlqyz7iTi<0v>Y?2XXu`vGQmzih#WosP1Km6Z)R&zJ@l2gvPK}7TAD1$b3ma
z4^vxSm~xCsFwOwgM`X8#znqU0v}YdCg|)4$?SdzdKM&jG<dS?d(eP_L{53Bv>LUK5
zJOOUIj2rg&;@oerKdN^=f05O0NPOF9XFzn_Cs!0^M|)r!so_USG*>Xaqy9KXP?rhS
ztx_!V&!-tK2hg1MC%jBlmIs70k<lj{J%WZ6CjEQgP-d&a*9vlZy<M~KlZW0W@O`tn
z!C6fnX?P;JbVNK9bskt)8(T`{wV$9yMI}%sUp$?&9@Eq}4!k2#`&t+!@Na?UBm>u5
zW$B_S6c;n4+C+U$AR1Zzu~k$;0s(%<K=s18nJn6faoa<hd(4MlsPQ?<Wi-@Z$z$@z
zfc)&}RzZFBk%G$@jZA}X3sZ@}lEqk8;1fgRl;E5S=sWvi#L@?-e^ULdH8um;*<+$x
zev;e=?cwb@)}T%<VixqSS`c|%g|?J}XE+#Vm#Gb^U`pd{A^J_$+0t(oc)DF81g*fs
zvj)`<X}FH_c9qpOS7c;4*{TjyEgJyL7nKbfF314(A@Upycc7&Cj2c{h@=eFNmme1*
z3u$LN+T`D_Ehqf>bvAM#!^Xe3sJ8U6V|H7$+o?n5=mPHiS#g9>1zQW&)z_GigPg5>
zk+WiiVL5PZKQ3rJaHQ2fUdHbm#ul(ny+MuW&>%GTbdMG<+!PP~*KHV@IuGdEeKSog
z`ljk^SOI%;Te|e+uLHU}@X^=2EI~M9JEYM|rCP|uh}1;?1ly?+o7KpH<%Aehj=}bG
zY(v_@-1wiD*fvkH=0SKB9!*fNRM^+=>Jx2JKODd`M6T_ikE8pXDD_^Yl+|AUp2=l7
z%0+6vWd(Seb=>*k0^1h{Y(W|qW@IE^!ubtEW%Mp)-u}>EF6Op7DS6z#KC$>K;V}PO
zh^fiBm%<*zjm0{`iL;3Y??=PCtt10)`+Hcc=mt2)(@2?iad7XGPN-;kfx=*V?SU|z
znrA9@aJ{G=OOZpTW*cLSmp_}9zP5WYs*Ih<ZITF75o`%+d}{>)-c*$=AD+GUQjIZ<
z-K*=_c()a~ENyD+S`na8piyvb)j8U-*wb}!yH$H{jDr~*FDR;Nl1^ekMouuo0@HY7
zr8eAN=V}Lv0VjALgW=Pr<v`c1q}gFZW{4cePX8y}r<qktgBRJ3<fwGh7uY9zCcB+u
z@5{1eu@+HSWFZhueNe@#D<k)Y?JgKsp<NHmYz@238foqf>4$5XFGT6lD&~rEM@r!b
zqF_gBtK^z_$Zls7m-yb8AO@@sjHOh$97u!+&w12@&xAZIo0a{RL2SOji<~W+9)AXY
zY_d|^VOj=V7kqZ^UcBi=AdCk%L$q5^Uu0|t$D=D)K#=W|09>q@aN7BDNk$Q&V;L1r
z80d)Ltr({W?l0||g)xUt(<ayab^YPISupqJm*^c#b6(OJ;^d6((>DbM4~SM|MG$1z
ze7LkB6_ka?(+HOsl}K-$*Uc&%+a=XR;|8Yp>~dKZHb?!6;DUiy@am(*y`Dg7F_b)6
z-2=?{6?>>#n}n2NM<4t3nn32fgJU}rZJxMre3*YS@Ylq+wao0c>~_lnWs!;EOayl{
z*t#_dQs13<A39OjTVcrLu62?V@Ru}Hc9pd(87uhNzn-K@e$1Q@-ly0uAJ4VzI4r9@
zZ(qf;z+E4H=#sV=MmHb9{27@w4xX_Dz8bYK+7m@rxQ;Jo+UWXNE=z}%Q&T<4%VEAa
zwHq{%9s~4q5<(c0&OJS%nC86I<=7IpBc=UtJEZS$d%ltQLPDBQyDF7+GEKg5&V2GE
zy0dE2Do-Z{N|)wG3Cumxqs*D!iDOIhQ0hXI8jP25iI6rhsZ56UEduN9;JU2TnH*}Y
zt4OO}iO16jc@tsZin8q;SZk~H&a6f5i*fiZTojVP;6m!`6ivS=gR2)74zTh&(91c@
z-*B^aQ?zqaOTUdz!Q9rv+`MQeNp*d%YA@1mg*m&SnixelOCGwCBP}g*J0b?c`fXx%
z%fhXf0z2@fO-x<D&SMVFPoTnRREGQR)i8M+Vm)2D<l<5TZ60^0q*i@BYHv$a0U9@x
zpKZGCNKuX|UCyxS3K-XF(|V;_)OQ|Q^hJ=1)@LvILe`F24^>`>b&|aRQ;c<!9~otU
z>*WUZ_Q^?Tn%tPn3)8GwbUP;8^;a4cRcjj*`9ZF{F$Un!J9s>8swd4EZmD}^-+Zi@
z4eAo@apR?NsXI{$L-JoirEVq&?O#Wp>zKSKd90E83b(lH!|<(7umPydfMD!W!Ah4E
zv@XGMDCkW1e4C1^elN7=Aq7LL0J9f9N!t<Z7D6I!H0Uj)MQ5R5)6RDAq;ZQ`!?tQg
z>r?e{9Ds4MH$c7~N3e76MIH>8Y&RH`-<Hb{I7ys@O>q;JgGQ{Q8@|@6Pbx49R+)=^
zRUua=!_o};$1j&yItlgq_$*}I2{3gcDu8gX_hzTOW8e8k+yp3h2cFK)NkYy0iUx5p
zaj7Vzo{N&;WTeu<pp%3_4+XE?btA#omK%U&_Q^6=kjuVa)&U@}Nf+UQV3w|)y@bYj
zQN7frOq_R}?dUBFLJ)ldiUdC794Llp2z0z@aGAGSU%duu#PMX?(8n94(r2C84UO&V
zq5hO*qj;F-wZ=}_`^fVH2UGY3D0mD0AhpePD^C`U+hL6Mb-79@#T(m)Qu=8?1rnY+
z%uj%+$(m#NlZaF8R89#s{RB#gj~7~A*B5p4dCg@y1oul8<2U6#kA-RCn;=QO-Th;D
zy&`-iNfH;kr!T}P`*eNyDM;cMGh!cUwAJKD7=1w4IJP6;iu>IW{xH{DgSg_Z+=7{%
ztDo<<mU-qzLf1$BU*|B#_`q@WXMfwlC+V0A_xsHHJ|DjGJNwg7w5R!QP)mnVsM6_5
zM^V$i2uD1N5S6ZjV5^LuMKybYa%oap{>$7gsY2xS$hsnl+g>M{{z}DHZo!M$%h6Bo
zh9t6ug(pyTMFWo>=i^frB>i>Y`EKq&G3jK)%J(m0%1s`ZvIkoM>XnWxLwnJDP@n#?
z6g6?Opl-pPj=N&x`!3}}u<BRm9-1tFndxC(J0SetL(ivrE1SSi*RSSb;+3nBloH>a
zqHb)5wO{Z)6UoU(Q-AcHl^I-mz&#hciT6BBS#w_9hh4d_AO&gZcGPOn9}G5KhzM-@
z8pUtlEWwkt4;&ZUT}isgQc0FPpayuqs1w2(IvX?m*FljgEyBhUmQX5aPs?DJ(4;Z8
z<hv02d^}z#OfNbp4AtI1F0NQ^*=T`j)_hn1`+A>T=ZbNF=h>+;Z-&LHb41{beck~f
z?r0vn(VaAUMAU|O)3aIm?}#;&pN~~~qmxoS;r$x3M^wrO&T7^GwRX3Iy##qnp0b;)
zh?iE@KgGr?DND=+i>m*>zF(+XfcH(e1YXa_)@2~quqV=*^E;K&bZbuMe^%Ec=1F-S
zVS`m-6@(WI=2X4jdS#W?&(%59_g`v8ZnKs~sXL$W;_PENuWk9GBFN7jPT>?J4o#7>
zyM4j6%SN!HvVdIoN=;kYtJ*_bv9en?@I6eC%H7TOTEv-Qam&MAMjqYvvMCJt32(o-
z<lZisi(+ar6`w|%_wGA*HCL}@FAKRGv$Olaq_vEpSHltQNGDI?z2&m$g?QR3_;6p6
zR*6dD)xWf{C&CZl(knH1Dx4xd4dNXib_2;^cQb+Oa?XziCZTej-j-ZHbW5q1zr;rG
zCZII$r;UcJ%-|PMJK$CSU{l-$fA{jrRalA)$V+`dBG9jEIzNW-*MpmwitDPB<aX<H
zvw)hD9{qtQJ**E-?oB^q?!LSn<8SRdnKK}(-T%}f?Kk7b^MxRoJ3E7(;rby;sj4Io
z4b-2(HOZ>ll0WxJZD?1|{y*h^>-S=Zvbd_EEtTGCUcnZzHW+X~Io?6eGuWpPP0_w7
zxz%Cfv2L(L{wG-iqdk4~Th-j)^Y)DGx|8|5G9^1)dWp!KtBP+Fg8p99J6|z-%-;LW
zdzU}(|5~`}8UWOU!e3pziYX{KASbKkRDpc{tOEH+Wl<uq66n2#!T%~PP+7{SywLSI
z$Lr4lbc&juGKgRCdVjbL-vFrzQclut_XQ0TzvcI9xVC9R6&})DBudv~w+#SrV?oBS
zJ@Y-aZlL*TEv0djCRCZ2@pI0h!9tU}4@jfC$^5^7GRURadm+hnGSC0IWy9Ft{_I=f
z;F)L<Xy)-PobeY$!b;s(JWFa)Wd<a7rMFu5drBoq?MWJg?6mKhZnRrgD=qhiB=Q?R
zL&3ClFx}uGlI=K+EP2!m^M)-L*umRrSA}jD?hF?K?@so}iqR^idznhcW@R0l#1-G8
zy1$E>Zkh%^jH&P91N!?jY-_i|f$UR9HzbyjFWQR_TK*s@By!KepL${Irj_$Pr6H#?
zqOB4(3|^-yIYZ?-a4Xm?^j7f0apdRUHf}pyxl>e(cmzjORhMTC5vFbLbtC9~oNMg&
zp=Sq%8684Zw_){<sa1@7nZpB=s)+C+do4u0;cAUjZW8&k!XelbREPMFohRB7q5(_J
zTaVt7863P5I6u=PrhCyoR_<9V8qz9)H%{WXlYr$XMHs6LBx<{FIE9TF-2c__LEgJR
zL=pH7Tt6bF-f*BvuVssFO=t`pd(G)@{OzYb;_pZ2Zl{U$X#eRR{Q-iAh!|IX$@6J6
zj0*7f^zpvl9>A^`ePtPVI^o6>)Y;;M;NEMrSgv~Zrw-1er8&s+TwFs|(C|25aL}@l
zb8Zug{f1x8A@3A(L`}L>K6>(Y4lsm%VBBVTz?p<&|APHm<OciqH$$9uZOv<UbPF${
z<+kVq$ca@)?qL_es)Vno-|J4NGbEywu2W6G2Q310U|3AH)BatPctus2-p@Fhp<8+5
zjRVddFJl6lT@M@nt4sb>vQ*$uj#4W-c~J>+)n)C1&7rDK5_y)MIYN1@`xgTfNtwoK
z2W(fvW1S8QwrM*yl_e*t9s^2Rb~Oih>uqiQ>fj-tUi(QRF(^2fa{G45yk{`nTd6zo
zrQadwH_za#^?-p_364v)cmL_Hi-G|!?yU}C4Ak^ws!ql#KnWj}T$Lld;LtlwW3O!+
zGH)HdA{X#_;>?v~2hIUG_T#TB$Fn2?uX#2XEgXq;y4B~~atqjmHhy%cDfw@Y<F^!}
z%rKbK&jjXqJ3lz}t^uBf$0}8MS9`9kn$`SHP`?@=6X8Q7QB)t4N$@WOydJrrCXcvz
zR8Ut$O5oFkpKOejX`UK8{?!%l5|g%rOiLZG+wpIl;6cWi-`q6napuplz~4ypyV1Zi
z3y`-I6Gm9}yU|TN<lV17>_Y@({PdINHVO5syZ;$=OYE-Xt^c3_GL%t&>wBMXZr*fv
zYa6k%>kwrW49wLZI`8qzkE`AuycN9X{f}{rw~H+B$9{Ob8)y)L(sTlM7&8<sklg6P
zR=^USlNAiZPu0&8`Q>S@(FOkaKGEHd;<5bqyEHtjhr*r0n-17}ic-tf6G_Cmn(@S$
z!CH9liOqT1W=D=an)&qXD7~b5Fe8gMSTG|;jX7$_U#8D|^||J)KXL~izWl9orXWAN
z&=Ciyi6$e;V}?=uSvsVVO|Ae%vba7t!GwKS7fT&w8UF3_OFKco9B`~&L<T6laciib
zKHM74y=IR~{V>-NUWLb}1O&|6q)${-*Cz+e&)DJW{x<bp^eMtxW^Uj4K0j5bMK8Fb
zffSimH@wxMh8i*=wdl|dv-ASicg1+0TBBDzfp_gAcoS$rck%?QXMB-L!HML_1u{q@
zyDvNH>(%f%C#ExU{R>qZ5=I;R>b@xt#6*g{w+VaBl-@MIPU<+j%rk9*++>Kj5mE<0
z_XQ_{e%)nl?MGKC+y`6q3Xcwo(5dL3QVM<+W(a|S+ehC&>01KgNG{Kt*|kr&E$4&{
z$*UlpSf`l^U4{>JRUe<>CT72W7w!{*i|&nWUey>$<7HkM5ob$jt%W_B&*CX!)=sTv
zz)D*b4FxwneW8LJ?!m6whoI=1$RvK&d`vzAG5c=xNab!Zdz95$1!(1^Ym#!Ml+pL!
ztLp1nqQ09M514ycd#;$cOyx_nqt;H#CC7ROlQUr;&6-_Z(H&_)KT$Q>Ou!O>;-2f`
z?W3(xLoJPl<mj&2PO)kk92m8#P9N?=CVU4QOU*wUGt|OXe=4=8wA(rvKKAj^3}+w^
z{iOJlcFij}^vKP%tU=xFvGJelWCrzxB5F+13z~I4aLtR121Ojl-w+vQ4gHrmb5|PZ
zyBGiaOHkmI8EKE(scXphY45KQaU~D5cI5_UJ{GXT-JrE0I}DH>j_o1&r9(*WP*cO5
z(hvz-S1QRV&6ilAQMXd#1J_#G-S*`$yf1*@(GwLkbQ`oDx!^qUqApWdhdZsIulrI7
z-n9fQkV_=)GpNHSzJaHgj*d662B(ZBuVnbaUB|*HY?baM+&SdzM`j7Q<C}agqo^SZ
z!ka9Na(zEIFjAq_0(&!Id>e<IM1_H8a-IoT@au}^zIIfCU~nMh{dx(!`-LE$=#=Pi
z39D_<W^lFLX%a?0NxQ_mG7rj1b^wP_fal})-K=Q0??1^;)RiR{|3SloOWy`X5>^oJ
zl;v}rEhxH_iDf6}h-t^}rA}C$hato`wQ|?$SEf~Bp#A(v_$-ZPicGMvp#>SoC#^6p
zIcuxYDqPJES+9>G`-YuC;U&vjmB=}>rNq*O75R&BY=RTVHgyb@LzQ^QTT%l4;-7pr
z{+SuBxF~g{g^DhDW;s<Mh0^1Heh9XiC4_GnzH}^tPDbUWeQW^pzU9z=^lUv$NRrUo
zQ&J)HYM#3m^cK$|FAUoNaNFLz(QUjBYmK7vC<ATM*A18}ZR#;vmy4M)ycfuj0uS_<
zJTiH-BtEaR?-0BSz&+X53wsT6u|WMXjqfTmg@bjgCKY@_wD*?S%cz1u;Uklh=M#*t
z`N{QB=ak3OkcF%_vIAN6duU6ancj-ggq-mX#IOqQPqagGl3uuiSGzkD9{4(IhH<;m
zsq!)>IT<XKIw|kNI$Y)u!R4L4uvEy4ry>l}PAAg9Gx-2bFDQLP;vwGl&G=5_)VM}O
zkO9}WL@^KS8WdQ-dUazd(ScjkXCu-dPri!kL_O~MFcLs^#D~1n%0T*wSZDn9$=n<8
zQ``kw)lE<@w&%4=jpA)WWY$gUGB50R3avEu$xD7Y);t;<y_;R@+st!>9D-=wSBzc@
z6^#Q7lpfYdq<wZb32Fli;C`K~nhKXh>8kLAS>6iSzOReSY!qk9$1fe=Su+O}ef(#)
zCWNUp<7hTd_1IC_R9kx&+qGD$zE2{S3Tnav+A_S57-56JDQvjarcp&ftUfpCh5f3z
zSVJR1HHmRV%$~UI-g}=)LhX0PG=~kOrLKPuqAT;>x88vMo{({|+O}UK2r03iW@8K-
z9(>ZT;c1MWtg|r)i*Xw<8+e6{RI?)cHEMnsyfRZ~hm2%-lkfCdzJ&)U=7Vv^*_mVb
zN`BRl3|*9e^3apnMT#2jP1)o+CFB%wVDj*%jB0eQZ>?Au=v8QYX!c@VHUR6GS^MZw
z$<1LzGh^ahFe_&>no5vgUzfgYMzJFkSmt<1mV6@!^J(q1hF@cK+B|eQ4XwqZDPkSv
z44LP>C><16<&0)s543};Ju;V?evxAR8ClhC$bckZI%xaJxA|d=9d1KysJ1G$tl=9i
zIaooWWgpp)*%WpHvIcmQ9Zq*3{<^&8a$V8m3>ZOV<M+->SC`P*p(bhtln(PT`E7R^
z&l^9C9G+mk6<grF<~}MT)56u|+Dre4k-)nyuI{bcQg4S+1IPK!&~I)DbM{vJl9BAO
zgM6^G=v%+zTb5O#G%nV-IZEPmjk#8h#|DF;TjT_};5!#JfJafr2+nQJXH%)#B!-AV
zcYqg9I5uSW3zV~v=H3S8v{?au^o-nv?e=?#?LYHm)-(zt1HZIY&BhbT)GwCInU5^5
z1UMyHd>Pt*pSG8pc#%v0)@aoH7U}`s=>)4vA&%A3;E!otb49d|?yzVmvRx}$onzFe
zJ7vK&4pIc7I~K~C$S%LZ6iOhM2V}NPIhCfb^tX=xLbIv^X=D3ft)-R?d2UG0;uXS6
z75-;_d!k_o;j%SCGIHrupHa|A__c7jhg{%`_*$mfo4_D6q{OnVuD_Pfy3l<_stOwA
z!cGDE9MpxJ<I+zD9gazCVz$dyyK)~lulk<ra{!>)_W+9B549*~!!0|xobV9!FyR#Y
zwnJm>bJ`R6c)J&A3f4G`V0UK#JEJ$mAhp_4`*CfX{MzaO{05c8DWQFIz^=(KO5r3$
z=s@lA)7n<P_VQuA#cedHGzH8IqZq_}uREKa5vlgIWx-W9+!xje5fNNk8Rkepw~XaZ
z-ZvA{ew4j$;yEb=dtxNCO|5qrCN3uZQpClrj``w3I5x@N?2N`NUbeS#B9hchKC-1<
zR}8!^uRf?OAvWCq`nRGSV?&24G@dsQVz#6}Z?aLmc)#H^o5~<9luNh%>4Y#XcuGi8
zK#>;P$jSu$IH+<A81IGVQKDF3@#q`8tH|_$T0N#~q9F#MlUkAL4@GppDbqEME6&Zb
zHi&z|L@V?<b|iQWN7I<aA0W>uF<+HylF%K9Fyq#m3UKKAT1)oPV^knEGN7TV%RU-7
zJa@D%uAMjSsFiv)g3VwG(&2>ze(z=PhpF<YP#Wt16)1^On6&PDrHdPeg<p*tV)NSN
z$gJZywiaf!#-y?1GWNrA!>-2*A0?*YeMWP1SzDS{8McG@8jSD^6tU|LP;%<L<=*K2
zA_`;6ye6_k-|L~<YVE`T7M-K$i@;h8m|0RrvV#sO%fn;V7S2A@U2-3SuB;~$mqVIp
zA(lYQsk*Eob5|DZcPPlqWWiDI5n3aE!Z~_BoFbwz&$g^{1OYU2XmWvLOk$e{+TULS
zQQU<lg5N{(cRe;}hI#oFTU>k2`uy+#;Cb?AQF^ffsr$8(iQz{4ES$@TgS2a;8)vai
zqk8(4zO&6*#ggDHG)b3Zk@NaCG{*1eM^`Hjor&H8fUDDng!Ui`STJaQc8Z2tDrwrs
zc>eJxXgC|UA2|7oOPT&JZ|6Qq`VS<0RoXjros(PB@+3%oYgXW!ElP1OuzK*A>n0{v
z&59i$w8?s8IOQ3vTpOMFNTMWl?aAu*FCUs3E6SVyok#CivIkdw-RO+1AN!t-0OndY
zdt*N@kwyc5b|3Wyenx+J>|38czfDZK?}-RxX^_ru+XpdvrXb=T)U#8aDy*@Fwrd}(
zeXw9m)>?bZ%p@jIJ$taUw)TMNkcWtGvB?O1idAhBN}8^JQHlC~7!rn7Ftl6C8u)is
z|4&T-{JSXl3ARN{`tXlZ<DH|ZA@pBsh-*($fs6Pz4}jVm<jvA#vzi#U7EoIgRwaZ-
zmurQ)vh-q$NSoEh?-Cnh&GkPQi$FLDA)`yq>vi42qX&PKB_BlD>3xy{rfU?Ko1LYs
zGdYVU4@T%ix?<JQT}}m@_qn8@;Zm4(PO)W)R!x&I64eLAoKq*4Q1mw*UA$xS*&f!1
z1_w>%zAE7dAAc!cy4MpP&TW<E6$I>|&0ZNV^v@>s@})K4+AirVrOk5n?nWN^t60Qs
z|D$r*g{fwCa?Ze`@%&=<$X(rj?f#X}_oK~_Ak~8W`i-Z&-LqLcB_`;Vv#kfuG;WKH
zf4L#s{yQQ$y9JY#^lEf1$1&@VLIZ;10VG`upKxa0Nd&w`q+w5N(AaLv{Fr7pWi*cV
zMY*XW#>);?kYB43i}3*RjI^nenl;dkC&709p9H^I-~C7N_P^*Uu?;c2q^NUvgSvP7
z*W?r6v&qkmjsRA9{t-Tg14D)`gjNGW+D7T5aqG~njWYPw-|9$vU2r<iP6EfN*933M
zt6%fSN^>bT5AtjBx#1PFSwkmPha>a{7>tvZ74_2P^zf8{ugU~-v?4{lX7pa%M&lWO
zX>$|amE5{1ZD&VITekQ92p>cdDjLJAq)S4=<xKpBuM_!0^WLH@>E{_Z!X<KTd&4)Y
z)3<Iv<lbgveY_cux`Oc%HEJsItIvH=!F`MzJcU?jlCH2&uYIjq9fTMdD4dD;_if3F
zmt^z>%iVOR;l<P$5g98yC0%N>0N0a{P(LrC=}p0c+m!JG4g;}_tXa<4m48bhIrx&?
z&;6RoFe8hdA8lSv{UQ?Jt=MEV_+qk&kz%rnnesoR>;L=-Y`+`(DPDv4VuRg8m!yq6
zRRG7Fsh|9$OE2>vm-FZ9H4sy|X@z#8(cWJDn{M{M71Wvs{;#WP5x8FHDB5lB%Kr=5
zY}rY~FaM(&1#lQpl&vyhZj9#naJPbgFPgAmUXGZn&6o9hoY_%TT~$u#?rqcc4vJ77
zpbr(fCXgnJhfdOm=pErj7kd|87_G02H+3^aF0G{l$;vFEnyjsk6{stTsPMOHMI?LR
ztEkN6wyNUVQPV>Y%i~7`u~}i?*bg6L^{b}X(uyYollV7e^VM=g64Je0EEy*gcg5CA
zqy_{}__S=`QJnrM@)1-1G>B0Bw8MDq^M|J7!TA`bVeha=V454${0$CS3U<G6MjZ7f
z?dy)&tx`r$XXobXk}@iv5&6lS-+u-EyP|XBG{DW>oA<|)kV`?r3mT%FD{R_EM8XfT
zw~`}|deb{Nc6V|#aI@VmT3dOS=cfomw_%9<=mYcC+ym(2CgUm5k+TWoH=fwyMH{{Y
zp{6ofY0YuCL^1y?2%4XnOb-QDAQw3S0QoqdwcZA94KY=3C$C>{sP0^~!CLZgE-Zty
z1bvvs71{bXE`+|98peTzyMol-!wLeJWDT-6`Pb#TUYJJ*=3~V=hH3K)>j2l9GeQ|n
z738tN|6O6WK^XRk{X3BqWr^AwDM}|`4x-G}vD8JYY8pKl*ZjiF>)OZ9`vY=aG%XDJ
zPTbVCN}aCJl=lWA<m1z^G9{mU3&FWkz_lnf{omcd(SudvN$WEqDY_ML28<rMNAJ=i
zuSd`$akJilyw`mSVUHt8AfI%(1U!wuNwJ-LO|#FTo&UU~mUujbKnJr{(}1N6_92&j
zd8yVNy&zNEqeRR{SZ7L6X<gxpcy94COJkCtHI0}=7+08o!x0lPugf+#yM8VbbDbuU
zaFJS4fV<874T6Z8d+>*DwSaBgw9bc>*wnOO4;8#ZM>n2@TFE_bJvLLQ{OCZyxbMBP
z$2RQTg!sQC<Fl+U8-M^zT2&LO`6_ks0H@}T38Tkh{B;6mwi}zTd3)B1d<32p9!-#y
zi7iH3V_eR;O6k^!*b{-An$`@LpeTjJ5`ptC(Q~}P{v{o;Sc$nC8zJy-a}rGv0jhf?
zDuJ_&5qgMkFCRKz4p>mG@hYa=)xDK*>soPbnNkU$r{g6Y7|0Fj3}7^O-t@@rY`*+C
zuBoHowO`!*V52@6x&dRnOK>wMkGqSd)DIR!?flTE9(HO=iv_@2qrA9FVow$`Zydqp
z`vqH@+_-kgS%lxKRS#Ot{ug~a5x<wZ?p@*y!l_;m@ak*T0=2;42a9+jFjZ})6j+~y
zDeb@h35@sa6wpH4PS5OX`g-Q^*yYz+8TAu4yB_LV@y=8}>oU2)Y2MTQ&6tv%;6%xZ
zq0g9OPCjCnO`(bnQfPJ9j4v>nQEG!mx9dFAI`PnC{s0~MH4H<-(_&pQ&q->1mQ+LN
zQmA@3VIs`e2UhL`C%gw_II^A0BTBCErQgw4MG@udt_{3w1E!=NG~wXK>GLtOypB!k
z=O!>MP5AO^47l8d&O7|;(ZiE!FYb2zw%sqMN5_5(0TQrttnAA89t@%9OvYR2Q$5wg
z2aDZ01!=RH9=Ny77Jo9OF<D(tE)z4W_59D5UF$`i1vHQhgXkp(&)Ei#&ZRx89+Nh-
zd$ZLtjX5MqxD;~c&5|dxuPX3WXf~&zg{7%4%<N+-qZ~_cdk}<=&o^vsE$E)evhucX
z;7_bu!4sedypK#yIbS%PL(j+ZFDVNcK}3Ayc}$YbXj|!e%GjelrxJa1N)8#Hcx|Z-
z6yGC*0HaN(FJi)8h_kamHJ=hn!B*>+MZ>-|`VY4+%Krj=CpMAMy&IfgdM%tO>TaGG
z-Us>eo9tju**pKJu}8|~N6iyGtA|5j8$9F3K;-m)vW%OOo!Uh__jik%W~3l-T>Yop
zii>csRcY!3C_BkyFe$%|oT#9>-Z5*TL9oG#GKjlg_x`5Di%CT|4=-hN|Jt!bG`F8p
z#gp%wnVh**n75U=k!fr?^{=AjO!{i?ozcxBRi~tXpr7MOr)@>327PXLYTCAAim>4;
zll#n$1GS=#v1{!@vm7_5=1W{LIuT?-6e<IY$~aMg`1XD@(E?Mj6A}WMpY<Lvthcpm
zm=6@SZ*6^jA~ZZJW=~ePK%&u##u+Zbr0tR$=b`+ciEZYIZ=Dkr46B4}9Do$cjjSxq
zh~CUNJ^)8Vx_0QqdO?LetQQ&#@FF>%glCeC*S;U6n@SmHA}1@PyhQCz`V7|uDI{(l
z4|5U4em`B?UhBcE*%IDVKz6scz7aiO?RAvt>Rd!4#wB_x_gO7cgrwWs4*bYrPf16~
z@|l48WEEC)qFoAfg3~nms`CL!AuTHJ$`hF2xn3J5Ji;3S1jW9$c73!^<G>k<*YHkr
z4!!IaIKru_wxzFbrWZe@?)m|2hNSxxe*8SGT(RgV=NfM`I|0gREzifI&LY~JhLe!|
zfsxYFqC#Lp5C0N+7i}~Z;$K}+C5|^7m<{{>|NnaL&IRgo3vE>suidp($_-CN!b`qw
zX8+rt1?Ri>Z0Puu)DH!2{QD<Z3kvTdyAc<Yzg#|*bVc%i`@0R$sySz|WfP*_JVo%%
z@t%m5|MyY6|A!C%H_*fOpTtE88^cHx`;owx2h!#LBRzk=Xmhi_K2py9lqheIG!)%d
zLNB0ZwGtPuqTsy$7JS(HZi}d3)Psl&J*ZK@naLmFjnkzX*!&9G`eM=9sW9nACBr-4
zt{0(Z5=@eY;J^kmfBdZoW|*Cs(;ZtPPu)hq423}^o^zt@+*`!<@j<8#46*93h{uM3
ztL(1LdpT__6|gUW#jDC&pkkR7x!+gD(b5nYRm8S1<d(oo!NTv%`24yT&Ud$p`V9fu
zB3J1eHIYJx5ct=_7wUnx6}t)R*B7jd^$6?l0n;XF-fxfP%1YvPI6oj66RPFVPLzuy
z4UY>PzIt;+=g_9lRN8s9*J0jmb>F{Vd}wrcwovxP@hDu7D9gtkd^sM5AkuCRuc%@7
zU^ov$U7lf&L*W!%x<@`JUShTgSROuqmK%)nI0*@DT*{iaL5L(Iq9kleNaU&j6aF8d
z>Elu7`R}$$dDhq0m%dgCcs+mk`J}FX#-#V{17ft{Z3p$k2L|vvWWFecvGwCSBqLGs
zMbSSelCsogoFxJ;^L;)}n^f!;Q@)n@DX?*t^Xb!Lqgd6tg_VS+k(TXuw{G2(LenU5
zwHnwAw`apn8lu)}L@~}C2%gAu3aku|cwW}-r(M&fXB75gVj}L^(7S2OYL#4-Ch>av
zx%Tj0J=A+u{Rdy-${NlM(&>I3NAqjaOBatAhudf`NiO|4SrlXwUo%J3RV~r4I^NZ&
zFHR_Z^%<!te%id{p@$^yq8l-(oAnCqvJY)bwdc~kn;Xg=5XlGo09bzEL*grrt%(b|
z<XvXbis(N!=pBRW0)w+N8(wa_tk(d-29;Q-8)F?@OYDaWrcIv{^Jds{>=LFb`3-GB
zM9G<3M_IuuMIb;tQGMEgOg@dV7?Y3sDCi5YrrGuoGvJG|l`o>E@UTWP!))y^f{v!g
zLs6$&zCY?1FhY(^tPoV#;}8vcTA}KU>HoHAFZq-BPn#waPa@2Cm~>mXyMmC*oiieO
zNa%4qNz6VlxDa!^_Kz-o`OxwGfzG#!gWi6PGaIo<af=$?&r8On_gLBuMG%3`p#J9Z
zQ~_DPy&{9?R@@Bi{%{#oG45Y*Kwn@BOjtV7v94*nn-98c4@tq}JN3IbHSuz`@K{HX
zM?#=<U|^U%N9;!6nfL%O`7EyEa;&%7oHik-GS6V~;okR8J=&l;eU~}if|*IOQZI?D
z<Y6N?fK-LQq#~+Awof(AnS%0ZK)*f_<>@%ZPO7TF1KqUhCg<+1{3kbDwbw(g6qD7^
z<V1V6A1}=yZoG`_-x)Al7N_OY_OjzyE-Q@QP}&8Dbtor*g92!`nDA8V%-9$xVs=;b
z(9Y=W*p;*KxL!RG)Zn1%G4EKmv>Urialv4=`G4rBi%bFdVGHiT=yehXak;%{&EwGU
z2;soxfH$OGeZrUKiz62vWF&flkfwP-{^u=2>k)_wxgt?{DMxV^u9>MUAJw-%eW5?~
zn;br}v`&wOJ5QzdwPLg@pt|Ulo2`EwQ`U#GGblNk`NQVCWSV1zfvtYLwypl?FeS1<
zPZ!`R*<Ql$f_Li<=n=vGk3}c*w#UgkrK53Dh=lEDK^TRi>jrT|#cfepbyZu#onN|Q
zA{7FJyg@pui)9O?ZtsxYE=#-f0IYtFniJ(JfSsFUe1lS&6pJ+L^<IrXB5U{>n5T*;
z&9w}aV`-76leojtA-zm}#BNq?n92WF%XJ1cm2GPsXJ8mXMiGgkARxsH0s#pMNJg<!
zBBFwnpkV+dbPO6W92Eso5aG}}iXhU2P^F1N=tVjtz@YSi3@wm^khg<6cV_Or@4X-I
z{Yf~RBzvE|*WPD+YkljpM?#}>b%^1(TRrENJ<ctsy-3~tVd;=bPiaz4__M?ag4O+_
ze9H=aV!v$w5$@PD5IdbEO*{gQsuyFrZ#9VVR54vhy?8C?X+`}!uH?f9O<fkBzO!qJ
zm1_P8s+ETgHK`0qYi0{@&L;NnjSQP<=wZlZWcS4$)voLe!hJZU3$?mWvnaY1CCVYF
zyi3N`2exbabnTj8R)^JY@BU@>`KLRYDpi9~sr?V;ZZsEWxj2Y43F?*j={?Ds)=L~8
z)7UX_+ws8IyB1??TK3GHJw?Az>Vl;#<u_6*buUpdY_D`?(eB_q=%ir%wuNg6rd;!<
zB`B7u$MvSlmtCBRHxf`~(rA>@9I@MD#>1*0U!$&!V3_!Ab|k!XJ*~XseWwm}ZHE^R
zx3FTaGhC<<3mIrJiu7MY%Ntxb0F2(u%K`kWD=&mB4vLjK>TCcuVX;7=+f=Fot@pTQ
z0h7K0*}Vx^l;Rd&7%(icUZ5PHsrJPxT~ybMaJNCx(_*Z9TL*VH=uD9skyAF!))}9=
zHB)xESS=kI?p>rcCTi8zru6iQD{5u$=7`vG`DnPFHb!42e~MLn4pr!I;qA1E+X9ST
z9ca<d9*(Rxo6(W^<CeUc>MY)P*?;9$EC*_=NQS5wukw$Dwxzd%?4t1I{XpzUG8!M{
z|3v>IATU$s6LM?K3xjF}m!7pw>@rG}(LXqJO_!9N5mD&3Qry6KSMqxN9M(V5sx`Xv
z8KE({GJ8+!(I-uMAn-?68vDRJWYKLYnHHD!v}i_&)j#nQw{H8}et>g<IRV1lyhuhc
zY33F~+q$%ZtX%f{yXnzLYv-;LF2yfbhU6EII;$=QneU~&u5ZQ^r+4P=Wj6=~D^wVx
zG*6DD?tid|o*gS{dLVw%dm#mX5$am4K13H!pZCkm>=UQ0_~j5qQiCnRw3IGy8fY1;
zn`8#OWAzgKnHtSU10>`#FP5!AOU%WWwHZA|%h6gcA9jtkkEhS(hHJJO$|Ut@Wm+fN
zD6+H0x3ZoRCl;h~OnN*WXm@U6r|0Ooi*Fu$K2Lu!Zk-uPK6!WL_P#-W2MPDU=H*Mh
zm0`NHmk^=M^T2~^oF;D-OAE5)$K4vn3$X4&R*}yKLb!UYemEX4{=7#9lElPwyYa7U
z4{ydJ@sfMIkN6zIkXnxFaEnO>Y_}Fh>qSZOq_(L-P0!VZ(xWota-<5<%Fy>4Gmn5e
zX(AwSC~_4#0i*f9i*&yc+K{2=++NVP_4a!t;cN$P%MU07egxk#TL8@i@5R1ncZr<#
zLS1xSn?rqT)F^ke3Rm}s4Z9TpwprkXfF6ip6%4X(GaE3EYM-tKFpezK;CStu*}Hz&
z5Mel%-#}FJt9n4V@`}$C5JmnM_~z|h5O7_0LH6-tl*p0shIwe~Q|Q*&wYO#oQxe*q
znJd~wD&>pkyMEfR1pymfP~8LqpYYuaE|5JHXcX{Z3ZWiQMeNS2Zu=6?bma{eV4Fyk
zZz-7!$I@nWUV(}<;2s0V*zpi=ws>fTE<&4$cXZLzECFbx1wrFc$-27@5JO7ZUW?Z}
zt9}qWcmsr-UY*$W*Dp2#muA|r2Mt}!7IJ2aj9qcyK^}{XY{RkAA&#>rhy$J+V~}RO
ztuH$9uOl4sEj+(RwfIvz2;5*CGQbd!`K<cv*W^9iIHC#hKZH7m0j?SY^ipL&YkIPJ
zfoOkI*q0je2aq`RXC(2~kGGEiyR`U*M)5uHVQtOa)#Jp&Ujv^2LN<%=-LzyOXdlxW
zx;rm%-*!eYdm@t22ury10um-%5`m&#O};GwQ*=iN2zj9}07`8&d5|iz-U5^{K+8H%
zyi>5gWdCOuAX<;o2fqgKIx6^f_5XH38`j~jF7y>uEM;+$R+p3*?pQ|;bFJ|%$ixdk
z5ObTpsax3c9PI76n(jEU#!IyeQzQbY5awNUQ?M-=H$MQl-5Ilh>znFrd;wm|vZ%$u
z6`UEDQx@WMOCX$4lp6`Yv<T8trQk2{3A3JpH)E_R?IETSJ{xaUsFh&)^)myrK0QI@
zmain{u|HenID4QN?h8|or@~FKZZ<F$k0jI0kl(>a%!>AOXd!6o_AS4Ha@wBuk7WB+
zJ7y5H74N?3VHIH?9P0f-X6oz^qnsBXp4=-=gXJ-HtvU+^OAbUG9<O7vBQ3*J170yZ
z|BtXp5E&lFGDqam%my|@=deNH^wL_$`%{bs@c<5pa4(0imUA9Ci^G`97Y-V(D+6rF
ztKz&9t9UwU{qVB0*S`g7b0erq<Mfk(^)B1s1jloSY(1FvpA`LtB?q~``|FlLUuvo0
zp=&xMlr}RO?laUJ%;z$SDoI=b>=X=~d#ww#wvb-HK?HSJ!g(Kb6ji)D1VOpw90sVB
z_n`;dqkr$7ZN;)1bEZ;ytX5;D+miLNSh<>Or#)MbEN{1|!$ce?**NXwI<!L3teD5F
z)uTh?6`ZZ~$IHCV;=U_iDaawsD5_PA92>;r=_FadoCD)Ed0lg5Ua@PFXii$rZjgR!
z2ypAjacX&N3*kS_vMXl2M*#`zOgH;<;AIQYnqi|7`N%e7q0reTLj__svLQAo@;3by
zkH>W`c2l&{sB4d*ITb83J&~1edL#P)FtGCA>ifiXQy8;us_C!0v~CY)1H*jcp-bh`
ze}jzb#8--Pn$s%ZTkP>)gOwf4pgn@0fki}fI!lFZ#VXnS+VnQMu<i1ow@U^V8cv?(
zB_I*Qv!5K?H%;uKiO3sGyEr-7n$I6RF_ocK45El5Ys<G=m&>F*1egogU271JCi9nm
z{$ks*lq}vP6u61`vO7&MqIhlq=C*W$MF0}tNX&I4OphKH@!XP}P5u4_YekqljNV==
zjx9O^4_`(om>`Si$-fd4k9e|j>)I+<r)CeNcnFVc?wsGJi5@4*mn5qUq_q^(z(?^H
z47BR_H20$Suk{J9o>Qq8>F1ZYwU;_DK#<kAE<;MI6T0&LHy<E#s1#TOadNnX2oacA
zFB`c%b%!st`E5(aayX)>aD5LVEUn>kZ-i9*qbiOHceHYP$dm5G?qA26T0YY&YqQ+7
zSsPaicX*HMF$fs05XQCU{=Z_*>%P<_`39UqjhW6|wFo&b`*GE(KlgXZ3Tda2`fMjf
zxq~`OLaAn~?a!rhPvbbp%@_h2AyK~!1P4k{EZoH`U8|H-IHxW8<PjgwiKy>l<%K4O
z_3IwrMqjhlp<)+-_)i%q%Ntk7MbxN}CiQD{j-lJr@+0FiEv`xW+*7hM>3_ISg`NyO
zQ(Af*e3}(nhCs(h_JoQB)Ni&3Sxlqy`Qn51=L^f5ESgeh^e7@WJ19T028K8Tl-#qG
z?I=WxDPTaKFr-A1-r+;?Lkc~&%#(3|Np)r)+y8K#kCY0lmCJ<Ct=YyQi}s)w51}Ph
zKLkn}V|-}v%GxnU=vn6Y0n%wKs9Fwjdocq}gL-Ko>G%O1)Aj4Ls$Y1ZXn*~o(9NV(
z@H6PgC|upIgUOQR!A+;8LL*W0{1-zbIg&mr!>0LFUA4-D`bNaI#;Eq-(_>OL_j}B_
zb3mf#S^2ayz00@y^aHcCqx+f6T#dZ_Bt}&$;ECQ|$V_aD{A@DbkApGpNVw8U2Fm&;
zrX96D6_F_69U6lw4keH9wQ&OSP|mpH1S`QPTK=P9L8qF!vq~Bz0TG_k0k+&Lx})i@
zqpT)P889kO$WHTglg*Ss_F}rwb=5qr9q@ilx>{`;N&(RTG%y01EO20~xV3x6;d6S1
ztjI%A@7pf9yFXWfmR?&=m`vf$jz+y-Q{%rb<0Knlu9_`PjqI$h4ybQuUU9HhT-eOk
zr@js+o;AdURIAy&^e?Q6dK4YM{JkdP7v%NA9R|-)1?`bhIsq?su!Q{1?aP(u@xG@x
zb1z*qKmhhasON{f-Fv5V0;slh>~~6$voq*_RI+(N@Z<$SODO7j=LxB9KGTnF{+$cU
z)>n0G6Os*8Q`9P|)t&^(YaHRvxU$1HL<qn2V_WSkXK=Qe^&=<X4BVrJ21AkW!{E{%
z3xG6?P;CzTHT!;{x!(G*QKG_43e(6-moK(vwwvZXKNZ}<5+F_L622Wxzu(G@)bG+8
zgyRV^ymR*$ICnQ9lTUGfYX*rY4b6?8c`(>e+%lLZShyx*GCbbkE|S0s$Sd2z*AsIw
z{fyDab1+SX)2<?ld7Q#Etz>n<QnsBE9d;UvlQZ&s=3`1TDNudm+T+uK7asEOq!rn?
zQvcYTT^QFPcAF?K#WmeWW{S^9nV#?9yBPwVxGWe-GtgI(bADJAt~)|d%@5_)C$82{
z1h_nndJEKg@`VU{`0JZ1r|lP{qxDrIhCu=&yySjio@kJhE5RtxFK~Y<h9M?`n8Hmv
z?iPH$D4Tnl@)Msa?y_(|0kU9Bt;{Tf14=HQBo8Ioid#neR-5<V@hg;)q=;l?REd&z
zjwzEGQPVOW+u$9H&2F*a9Eq@1ENH`AQ_P(fr-ag^x5<cp?8Jnb00!=})hb~h*KW*&
z{&Kp96a16wMF=qT2In8#Tmn>Bp3+%kbG%~u*E7ej`t4L))T=8F1SJCT$gF(Bw#UP8
ztR2#C-kc)fcOYMQn@E(To?8b{ZaQm7`H7@IW6h;Q@v8xOf#QNMqnZ=hC5dznkT>&d
zQi-~R#GRkTx!PJ!VjP@+L|vFoXdFVb55i#mkt2lOaS*OfsA=#1ER&0Rbw1KfPsvZ;
zp`8+=&(><PHi#?h-u7OE74pVeJkX{WQ|O*49k6uBv#AX=trEJHqHNP}Sjb6MGKGrw
zRSaEw5!9J~RgisVH$}iB%(AZWk~k({$%n~y0W}MHyB)4ViqVPrLMJbeiLkZ{i^$n<
z2P)Y&?N1(@772U>KfUG-@m!O)AP5sqn#R|XhnW3K@dV&?*)f|<GnBpFpP29H22v~~
zJ8vZZ)?ipjd&~F3d&MP`ui{~($<@l=$#w%Ss%2Ggr{pV+;=Z$0B<Z8um35X3chcId
z5f)&cE(aigoH<@q+@K34baRfcu@J><pWj7ymYJTett&wrO4rv;FW6}r@M3I6-p*)w
zzlQ+(F*t6GC-i`!JU4XewQdUOtTAiQy&81P2-G!&>(*31K;FC8C-@Va|M|=1%@#<D
zWRhxJs947i*3Tjehf5`-a)M<?UL>{^Wu}kZs|t@v!1taKw1`TpZa2a<u5Hs-9<j|3
z${tCvnovim|1xRH5+?36?Pnm1pS_lN<6^vqRbhnRR?QmJeKTn1Dw`IpCvJaTF^}!N
z3+Kul`d)($x0xS<AxFM{@aB#uMW<9ae`84`k=po~n-Of6=<``7ei2{E?EX?Es8Y%@
zg<m*$?Q{o9IGlfyl%_Ir1|fjSumbQQyp=e38k??VXFiQhcsC-Ud%Jk$%p4+AzG#`|
zfq`G+&r3Z}xt+X1sO8n{aR3)7ydJGXU`&$x>RaQQoZrl)l3*D}+;@|EVSh&_(bW-o
z>kxq161p2q23AkvxP#ua;jn<y)qQ(z__Bw%Y^c>JUh87DBzL8j3_Q~(J7#BR8_}vT
zXEJf^I{d^b|A(WR#p5vfl(X~3?-Q2G<jEy2cQ<YSdmhSbW8(%mhZrarhsC%CC5yh#
z;3x;eTRfj=lmmkKtw-KoE}GQAzO1~Dq?_cdtgK_&rQTApPNpS>KJDJTvV?n^m9I@y
z2Z&sJd=NpigWa5M;GaDd<TZ+i_kRX70nQ?-^*UKRVH)MrUY0xpQb#W$vAd$F%jL7A
ziv@dNBabKY;<Vk!>?M<aB`S3w`bfFZPZ**s<&z!m{9oBBaL}zFnVmS-n*W#x8ud$R
zXyWJH&ek}jpffYYQycGnu9Q50<(C9K1#P3K79U$xA8l`Hz(nh1&j_fbz-X@^KKqAN
z54!HcmNx^*qVCcg;YHVw&HH^Hr^+A`tM2&q!b#pqyFTr-<n)h~^^WD=Xvs)h1eG26
zlyyJXnrz@~w-LVL^BQKDWeI%o?Ll=DtY(n`58VVZPG1xUdGDrQRR?!#dpdIIAPwhZ
z?aO8-RzTd9xle46TYB?H-4P(b%!Z4*l(|_aP#7UmR5TMt69JSv`G<bi-mwb?Q__D?
zHvFb)c#Chj&pvS=QGP(;FZzpK_t-H#WpZpb#GMsm@pFHZ{58jWfS#vWK55wJvPyB;
z&SzExl6A&^h;pR}W=Hh`n$97%DR;`+wvv@m88hHT&+1D<bFLTtMSW4q*450{XVlb3
zmR)yBH#A;{sK%Pia|S5-PXdzmt~E`A#PN7_4|)NB(Ese{7Eo^PL;X#<k%)0E{gHPE
z@Ht3S>-Ebj5~I(aoa3{U0p<$8e*kF#+2uZX7G$fw#NF^e&ESk_Rz^E<YRFLZdN~^J
zh2IK(`#=Q<Xkwsbp%1*LYVr@GS@_s8-E(LnJ!Tsqk?|_ml7&L-C3r3Uayi1Cn87!x
z_W_rW_pfVuBhmc4mcn}arX{#2d;eFV>!167CXQ|7wK&bQe&LK{;m-o<+ImqN>UaWi
zz2(o{K>u?;{+n`y2P0?DTmyA%Xc@r??y1$9tN=ymt#Ku-SwXTcRwnP(i)BISp45Dk
zZw5`lyoI)Wv~niOol-vQYowhe8fAXK#fmzzgiNiz;&7>ChcuvYt=|YVQC6oeY)De|
z_JPo-h>`%y!hrqz><C=uv~L$(c<`p2*NlU&P<E7lscxu6z2wOY-}(ajU^)wJPm$4=
za9SEww1*#vYtiZii;h<H)>%{UPWHi0ghlL(+Lk84VpK6@y1%4BS54SygZM&%%$K1&
zi9<hZgBp5{Jr6eS{w>;mO1^S#u9mK&ZJJuCs{C~cq;6orOk?a5h!uIr1)ms4p=(Y?
z1#=;5`2yQ~M|Y{)xGss%-i7TaYv9uivjQHdK3SBlmA1e$LghY$tS<uMgk9Fy8FB9b
zy2isG_xu*(O!TvOWQRjMk|*^J@s@c(x>YAX!zadG=#?Bo5}DV3{CdZ)Zb2TlXEznx
zecVhw%~E2irlP95>$+bxn_o?OU$N(lwVX8O_s!rY9cvpu2{P;1F?66yBqkLY^wmm!
zj29!0B|pyJy1gUJi=_!hXs?Wa8G1IR5GmyB)Q~SV`w!^rTzo7j3biqa_XRGOZR+~S
zz75QbNI7R<P<H~Y*%B0-WEc_kVmvW8==t>X=7_-IUF01yvYaV5`<bxxg4~4Iz{{=a
z2mQT_tiFtoa{el=+3Sqa6O%-;YuSQO_T};0Xb`)00=BcCO#xQJyML+mrTp!T!4o;P
zvT(QU3=bK6qO@14ehS+ly0@+vbs;A6tz%PIRkLg=>Iyq3&`WrIO9Ufj=~=m{m!8@{
z*yw(gFTRJ^Z4`e~DiCb&b>mvU|Eub<a>}+T)PKLfAbSavv0mcfqjkgPpOXKZHE-gz
z0K>h@s<-F~`>MVEqtip3g*&_!6p@tVGvBQt`^}!k!BX;C3JkH5FB3s}LEx)iew!b#
zb6yMBKY!{*lvnTycFkY=`KtWCPqr{m@Y|uGHPKMG24OW0Gfvc2p5q-eXHFO$&pvkL
G-hTn(D%RTo


From 831708343307203163d12b14e3b67126dc1ebbad Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 24 Jun 2016 10:47:24 -0700
Subject: [PATCH 12/69] Updated to match the SCCM topic

---
 windows/keep-secure/protect-enterprise-data-using-edp.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/protect-enterprise-data-using-edp.md b/windows/keep-secure/protect-enterprise-data-using-edp.md
index 1603119340..abdea7db70 100644
--- a/windows/keep-secure/protect-enterprise-data-using-edp.md
+++ b/windows/keep-secure/protect-enterprise-data-using-edp.md
@@ -60,7 +60,7 @@ EDP gives you a new way to manage data policy enforcement for apps and documents
 
     -   **Copying or downloading enterprise data.** When an employee or an app downloads content from a location like SharePoint, a network share, or an enterprise web location, while using an EDP-protected device, EDP encrypts the data on the device.
 
-    -   **Using allowed apps.** Managed apps (apps that you've included on the protected apps list in your EDP policy) are allowed to access your enterprise data and will interact differently when used with unallowed, non-enterprise aware, or personal-only apps. For example, if EDP management is set to Block, your employees can copy and paste from one protected app to another protected app, but not to personal apps. Imagine an HR person wants to copy a job description from a protected app to the internal career website, an enterprise-protected location, but goofs and tries to paste into a personal app instead. The paste action fails and a notification pops up, saying that the app couldn’t paste because of a policy restriction. The HR person then correctly pastes to the career website without a problem.
+    -   **Using allowed apps.** Managed apps (apps that you've included on the protected apps list in your EDP policy) are allowed to access your enterprise data and will interact differently when used with unallowed, non-enterprise aware, or personal-only apps. For example, if EDP management is set to **Block**, your employees can copy and paste from one protected app to another protected app, but not to personal apps. Imagine an HR person wants to copy a job description from a protected app to the internal career website, an enterprise-protected location, but goofs and tries to paste into a personal app instead. The paste action fails and a notification pops up, saying that the app couldn’t paste because of a policy restriction. The HR person then correctly pastes to the career website without a problem.
 
     -   **Managed apps and restrictions.** With EDP you can control which apps can access and use your enterprise data. After adding an app to your protected apps list, the app is trusted with enterprise data. All apps not on this list are blocked from accessing your enterprise data, depending on your EDP management-mode.<p>You don’t have to modify line-of-business apps that never touch personal data to list them as protected apps; just include them in your protected apps list.
 

From f81b48df5c92798c9cc048796ffab4ed8fe65e91 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 6 Jul 2016 07:11:48 -0700
Subject: [PATCH 13/69] Added intune changes

---
 windows/keep-secure/change-history-for-keep-windows-10-secure.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/keep-secure/change-history-for-keep-windows-10-secure.md b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
index 812c222e48..656a34637e 100644
--- a/windows/keep-secure/change-history-for-keep-windows-10-secure.md
+++ b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
@@ -17,6 +17,7 @@ This topic lists new and updated topics in the [Keep Windows 10 secure](index.md
 |New or changed topic | Description |
 |----------------------|-------------|
 |[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
+|[Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) |New |
 
 
 ## June 2016

From 34ee0febaad3f26964e438ad0d80d87ad6232f0b Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 6 Jul 2016 07:13:27 -0700
Subject: [PATCH 14/69] Matching today's build

---
 .../protect-enterprise-data-using-edp.md      | 51 ++++++++++---------
 1 file changed, 27 insertions(+), 24 deletions(-)

diff --git a/windows/keep-secure/protect-enterprise-data-using-edp.md b/windows/keep-secure/protect-enterprise-data-using-edp.md
index abdea7db70..851776710e 100644
--- a/windows/keep-secure/protect-enterprise-data-using-edp.md
+++ b/windows/keep-secure/protect-enterprise-data-using-edp.md
@@ -2,7 +2,7 @@
 title: Protect your enterprise data using enterprise data protection (EDP) (Windows 10)
 description: With the increase of employee-owned devices in the enterprise, there’s also an increasing risk of accidental data leak through apps and services, like email, social media, and the public cloud, which are outside of the enterprise’s control.
 ms.assetid: 6cca0119-5954-4757-b2bc-e0ea4d2c7032
-keywords: EDP, enterprise data protection
+keywords: EDP, Enterprise Data Protection
 ms.prod: w10
 ms.mktglfcycl: explore
 ms.sitesec: library
@@ -18,34 +18,34 @@ author: eross-msft
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-With the increase of employee-owned devices in the enterprise, there’s also an increasing risk of accidental data leak through apps and services, like email, social media, and the public cloud, which are outside of the enterprise’s control. For example, when an employee sends the latest engineering pictures to their personal email account, copies and pastes product info into a tweet, or saves an in-progress sales report to their public cloud storage.
+With the increase of employee-owned devices in the enterprise, there’s also an increasing risk of accidental data leak through apps and services, like email, social media, and the public cloud, which are outside of the enterprise’s control. For example, when an employee sends the latest engineering pictures from their personal email account, copies and pastes product info into a tweet, or saves an in-progress sales report to their public cloud storage.
 
-Enterprise data protection (EDP) helps to protect against this potential data leakage without otherwise interfering with the employee experience. EDP also helps to protect enterprise apps and data against accidental data leak on enterprise-owned devices and personal devices that employees bring to work without requiring changes to your environment or other apps. Finally, another data protection technology, Azure Rights Management also works alongside EDP to extend data protection for data that leaves the device, such as when email attachments are sent from an enterprise-aware version of a rights management mail client.
+Enterprise data protection (EDP) helps to protect against this potential data leakage without otherwise interfering with the employee experience. EDP also helps to protect enterprise apps and data against accidental data leak on enterprise-owned devices and personal devices that employees bring to work without requiring changes to your environment or other apps.
 
 ## Prerequisites
 You’ll need this software to run EDP in your enterprise:
 
 |Operating system | Management solution |
 |-----------------|---------------------|
-|Windows 10 Insider Preview | Microsoft Intune<br>-OR-<br>System Center Configuration Manager (version 1511 or later)<br>-OR-<br>Your current company-wide 3rd party mobile device management (MDM) solution. For info about 3rd party MDM solutions, see the documentation that came with your product. If your 3rd party MDM does not have UI support for the policies, refer to the [EnterpriseDataProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt697634.aspx) documentation.|
+|Windows 10 Insider Preview | Microsoft Intune<br>-OR-<br>System Center Configuration Manager (version 1605 Tech Preview or later)<br>-OR-<br>Your current company-wide 3rd party mobile device management (MDM) solution. For info about 3rd party MDM solutions, see the documentation that came with your product. If your 3rd party MDM does not have UI support for the policies, refer to the [EnterpriseDataProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt697634.aspx) documentation.|
 
 ## How EDP works
 EDP helps address your everyday challenges in the enterprise. Including:
 
-- Helping to prevent enterprise data leaks, even on employee-owned devices that can't be locked down.
+-   Helping to prevent enterprise data leaks, even on employee-owned devices that can't be locked down.
 
-- Reducing employee frustrations because of restrictive data management policies on enterprise-owned devices.
+-   Reducing employee frustrations because of restrictive data management policies on enterprise-owned devices.
 
-- Helping to maintain the ownership and control of your enterprise data.
+-   Helping to maintain the ownership and control of your enterprise data.
 
-- Helping control the network and data access and data sharing for apps that aren’t enterprise-aware.
+-   Helping control the network and data access and data sharing for apps that aren’t enterprise aware.
 
 ### EDP-protection modes
 You can set EDP to 1 of 4 protection and management modes:
 
 |Mode|Description|
 |----|-----------|
-|Block |EDP looks for inappropriate data sharing practices and stops the employee from completing the action. This can include sharing enterprise data to non-enterprise-protected apps in addition to sharing enterprise data between apps or attempting to share outside of your organization’s network.|
+|Block |EDP looks for inappropriate data sharing practices and stops the employee from completing the action. This can include sharing info across non-enterprise-protected apps in addition to sharing enterprise data between apps or attempting to share outside of your organization’s network.|
 |Override |EDP looks for inappropriate data sharing, warning employees if they do something deemed potentially unsafe. However, this management mode lets the employee override the policy and share the data, logging the action to your audit log, accessible through the [Reporting CSP](http://go.microsoft.com/fwlink/p/?LinkID=746459). |
 |Silent |EDP runs silently, logging inappropriate data sharing, without blocking anything that would’ve been prompted for employee interaction while in Override mode. Unallowed actions, like apps inappropriately trying to access a network resource or EDP-protected data, are still blocked.|
 |Off |EDP is turned off and doesn't help to protect or audit your data.<p>After you turn off EDP, an attempt is made to decrypt any closed EDP-tagged files on the locally attached drives. |
@@ -60,30 +60,33 @@ EDP gives you a new way to manage data policy enforcement for apps and documents
 
     -   **Copying or downloading enterprise data.** When an employee or an app downloads content from a location like SharePoint, a network share, or an enterprise web location, while using an EDP-protected device, EDP encrypts the data on the device.
 
-    -   **Using allowed apps.** Managed apps (apps that you've included on the protected apps list in your EDP policy) are allowed to access your enterprise data and will interact differently when used with unallowed, non-enterprise aware, or personal-only apps. For example, if EDP management is set to **Block**, your employees can copy and paste from one protected app to another protected app, but not to personal apps. Imagine an HR person wants to copy a job description from a protected app to the internal career website, an enterprise-protected location, but goofs and tries to paste into a personal app instead. The paste action fails and a notification pops up, saying that the app couldn’t paste because of a policy restriction. The HR person then correctly pastes to the career website without a problem.
+    - **Using allowed apps.** Managed apps (apps that you've included on the protected apps list in your EDP policy) are allowed to access your enterprise data and will interact differently when used with unallowed, non-enterprise aware, or personal-only apps. For example, if EDP management is set to **Block**, your employees can copy and paste from one protected app to another protected app, but not to personal apps. Imagine an HR person wants to copy a job description from a protected app to the internal career website, an enterprise-protected location, but goofs and tries to paste into a personal app instead. The paste action fails and a notification pops up, saying that the app couldn’t paste because of a policy restriction. The HR person then correctly pastes to the career website without a problem.
 
-    -   **Managed apps and restrictions.** With EDP you can control which apps can access and use your enterprise data. After adding an app to your protected apps list, the app is trusted with enterprise data. All apps not on this list are blocked from accessing your enterprise data, depending on your EDP management-mode.<p>You don’t have to modify line-of-business apps that never touch personal data to list them as protected apps; just include them in your protected apps list.
+    -   **Managed apps and restrictions.** With EDP you can control which apps can access and use your enterprise data. After adding an app to your **Protected App** list, the app is trusted with enterprise data. All apps that aren’t on this list are blocked from accessing your enterprise network resources and your EDP-protected data.<p>
+    You don’t have to modify line-of-business apps that never touch personal data to list them as protected apps; just include them in the **Protected App** list.
 
-    -   **Deciding your level of data access.** EDP lets you block, allow overrides, or audit employees' data sharing actions. Blocking the action stops it immediately. Allowing overrides let the employee know there's a risk, but lets him or her continue to share the data while recording and auditing the action. Silent just logs the action without blocking anything that the employee could've overridden while using that setting; collecting info that can help you to see patterns of inappropriate sharing so you can take educative action or find apps that should be added to your protected apps list.
+    -   **Deciding your level of data access.** EDP lets you block, allow overrides, or audit employees' data sharing actions. Blocking the action stops it immediately. Allowing overrides let the employee know there's a risk, but lets him or her continue to share the data while recording and auditing the action. Silent just logs the action without blocking anything that the employee could've overridden while using that setting; collecting info that can help you to see patterns of inappropriate sharing so you can take educative action or find apps that should be added to your **Protected App** list.
 
-    -   **Data encryption at rest.** EDP helps protect enterprise data on local files and on removable media.<p>Apps such as Microsoft Word work with EDP to help continue your data protection across local files and removable media. These apps are being referred to as, enterprise aware. For example, if an employee opens EDP-encrypted content from Word, edits the content, and then tries to save the edited version with a different name, Word automatically applies EDP to the new document.
+    -   **Continuous data encryption.** EDP helps protect enterprise data on local files and on removable media.<p>
+    Apps such as Microsoft Word work with EDP to help continue your data protection across local files and removable media. These apps are being referred to as, enterprise aware. For example, if an employee opens EDP-encrypted content from Word, edits the content, and then tries to save the edited version with a different name, Word automatically applies EDP to the new document.
 
-    -   **Helping prevent accidental data disclosure to public spaces.** EDP helps protect your enterprise data from being accidentally shared to public spaces, such as public cloud storage. For example, if Dropbox™ isn’t on your protected apps list, employees won’t be able to sync encrypted files to their personal cloud storage. Instead, if the employee stores the content to an app on your protected apps list, like Microsoft OneDrive for Business, the encrypted files can sync freely to the business cloud, while maintaining the encryption locally.
+    -   **Helping prevent accidental data disclosure to public spaces.** EDP helps protect your enterprise data from being accidentally shared to public spaces, such as public cloud storage. For example, if Dropbox™ isn’t on your **Protected App** list, employees won’t be able to sync encrypted files to their personal cloud storage. Instead, if the employee stores the content to an app on your **Protected Apps** list, like Microsoft OneDrive for Business, the encrypted files can sync freely to the cloud, while maintaining the encryption.
 
     -   **Helping prevent accidental data disclosure to removable media.** EDP helps prevent enterprise data from leaking when it's copied or transferred to removable media. For example, if an employee puts enterprise data on a Universal Serial Bus (USB) drive that also has personal data, the enterprise data remains encrypted while the personal data doesn’t.
 
 -   **Remove access to enterprise data from enterprise-protected devices.** EDP gives admins the ability to revoke enterprise data from one or many MDM-enrolled devices, while leaving personal data alone. This is a benefit when an employee leaves your company, or in the case of a stolen device. After determining that the data access needs to be removed, you can unenroll the device so when it connects to the network, the user's encryption key for the device is revoked and the enterprise data becomes unreadable.<p>**Note**<br>System Center Configuration Manager also allows you to revoke enterprise data. However, it does it by performing a factory reset of the device.
 
+## Current limitations with EDP
+EDP is still in development and is not yet integrated with Azure Rights Management. This means that while you can deploy an EDP-configured policy to a protected device, that protection is restricted to a single user on the device. Additionally, the EDP-protected data must be stored on NTFS, FAT, or ExFAT file systems.
+
+Use the following table to identify the scenarios that require Azure Rights Management, the behavior when Azure Rights Management is not used with EDP, and the recommended workarounds.
+
+|EDP scenario |Without Azure Rights Management |Workaround |
+|-------------|--------------------------------|-----------|
+|Saving enterprise data to USB drives |Data in the new location remains encrypted, but becomes inaccessible on other devices or for other users. For example, the file won't open or the file opens, but doesn't contain readable text. |Share files with fellow employees through enterprise file servers or enterprise cloud locations. If data must be shared via USB, employees can decrypt protected files, but it will be audited.<p>We strongly recommend educating employees about how to limit or eliminate the need for this decryption. |
+|Synchronizing data to other services or public cloud storage |Synchronized files aren't protected on additional services or as part of public cloud storage. |Stop the app from synchronizing or don't add the app to your **Protected App** list.<p>For more info about adding apps to the **Protected App** list, see either the [Create an enterprise data protection (EDP) policy using Intune](create-edp-policy-using-intune.md) or the [Create and deploy an enterprise data protection (EDP) policy using Configuration Manager](create-edp-policy-using-sccm.md) topic, depending on your management solution.
+
 ## Next steps
 After deciding to use EDP in your enterprise, you need to:
 
--   [Create an enterprise data protection (EDP) policy](overview-create-edp-policy.md)
-
- 
-
- 
-
-
-
-
-
+-   [Create an enterprise data protection (EDP) policy](overview-create-edp-policy.md)
\ No newline at end of file

From 36d31e4aefa148e28abea056b2b46567f6713e0d Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 6 Jul 2016 09:36:44 -0700
Subject: [PATCH 15/69] Updating text and images

---
 .../create-edp-policy-using-intune.md         | 574 +++++++++++-------
 .../create-edp-policy-using-sccm.md           |   6 +-
 .../images/intune-add-desktop-app.png         | Bin 47883 -> 0 bytes
 .../images/intune-namedescription.png         | Bin 8789 -> 0 bytes
 4 files changed, 353 insertions(+), 227 deletions(-)
 delete mode 100644 windows/keep-secure/images/intune-add-desktop-app.png
 delete mode 100644 windows/keep-secure/images/intune-namedescription.png

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 15a048cffc..8d593d6ed0 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -27,319 +27,433 @@ We've received some great feedback from you, our Windows 10 Insider Preview cust
 Note that if you exit the **Policy** page before you've saved your new policy, your existing deployments won't be affected. However, if you save the policy without reconfiguring your apps, an updated policy will be deployed to your employees with an empty app rules list.
  
 ## Add an EDP policy
-After you’ve installed and set up Intune for your organization, you must create an EDP-specific policy.
+After you’ve set up Intune for your organization, you must create an EDP-specific policy.
 
 **To add an EDP policy**
 1.  Open the Intune administration console, and go to the **Policy** node, and then click **Add Policy** from the **Tasks** area.
 
-2.  Go to **Windows**, click the **Enterprise Data Protection (Windows 10 and Mobile and later) policy**, pick the EDP template, click **Create and Deploy a Custom Policy**, and then click **Create Policy**.
+2.  Go to **Windows**, click the **Enterprise data protection (Windows 10 Desktop and Mobile and later) policy**, click **Create and Deploy a Custom Policy**, and then click **Create Policy**.
 
     ![Microsoft Intune: Create your new policy from the New Policy screen](images/intune-createnewpolicy.png)
 
 3.  Type a name (required) and an optional description for your policy into the **Name** and **Description** boxes.
 
-    ![Microsoft Intune: Fill out the required Name and optional Description fields](images/intune-namedescription.png)
+    ![Microsoft Intune: Fill out the required Name and optional Description fields](images/intune-generalinfo.png)
 
-## Add individual apps to your Protected App list
+### Add app rules to your policy
 During the policy-creation process in Intune, you can choose the apps you want to give access to your enterprise data through EDP. Apps included in this list can protect data on behalf of the enterprise and are restricted from copying or moving enterprise data to unprotected apps.
 
-The steps to add your apps are based on the type of app it is; either a Universal Windows Platform (UWP) app, or a signed Desktop app, also known as a Classic Windows application.
+The steps to add your app rules are based on the type of rule template being applied. You can add a store app (also known as a Universal Windows Platform (UWP) app), a signed desktop app (also known as a Classic Windows app), or an AppLocker policy file.
 
->**Important**<br>EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary and will encrypt all files they create or modify, meaning that they could encrypt personal data and cause data loss during the revocation process. Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your **Protected App** list.<p>
+>**Important**<br>
+EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary, and EDP-unaware apps will encrypt all files they create or modify. This means that they could encrypt personal data and cause data loss during the revocation process.<p>Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your App rules list. If you don’t get this statement, it’s possible that you could experience app compat issues due to an app losing the ability to access a necessary file after revocation.
 
->**Note**<br>If you want to use **File hash** or **Path** rules, instead of Publisher rules, you must follow the steps in the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic.
+<p>
+>**Note**<br>
+If you want to use **File hash** or **Path** rules, instead of **Publisher** rules, you must follow the steps in the [Add apps using Microsoft Intune and custom URI](add-apps-to-protected-list-using-custom-uri.md) topic.
 
-**To add a UWP app**
+#### Add a store app rule to your policy
+For this example, we’re going to add Microsoft OneNote, a store app, to the **App Rules** list.
 
-1.  From the **Configure the following apps to be protected by EDP** table in the **Protected Apps** area, click **Add.**
+**To add a store app**
+1.	From the **App rules** area, click **Add**.
 
-2.  Click **Universal App**, type the **Publisher Name** and the **Product Name** into the associated boxes, and then click **OK**. If you don't have the publisher or product name, you can find them for both desktop devices and Windows 10 Mobile phones by following these steps.
+    The **Add App Rule** box appears.
 
-    **To find the Publisher and Product name values for Microsoft Store apps without installing them**
+        ![Microsoft Intune, Add a store app to your policy](images/intune-add-uwp-apps.png)
 
-    1.  Go to the [Windows Store for Business](http://go.microsoft.com/fwlink/p/?LinkID=722910) website, and find your app. For example, Microsoft OneNote.
-    
-        >**Note**<br>If your app is already installed on desktop devices, you can use the AppLocker local security policy MMC snap-in to gather the info for adding the app to the **Protected App** list. For info about how to do this, see the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic.
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Microsoft OneNote*.
 
-    2.  Copy the ID value from the app URL. For example, Microsoft OneNote's ID URL is https://www.microsoft.com/store/apps/onenote/9wzdncrfhvjl, and you'd copy the ID value, `9wzdncrfhvjl`.
+3.	Click **Allow** from the **Enterprise data protection mode** drop-down list.
+
+    Allow turns on EDP, helping to protect that app’s corporate data through the enforcement of EDP restrictions. Instructions for exempting an app are included in the [Exempt apps from EDP restrictions](#exempt-apps-from-edp-restrictions) section of this topic.
+
+4.	Pick **Store App** from the **Rule template** drop-down list.
+
+    The box changes to show the store app rule options.
+
+5.	Type the name of the app and the name of its publisher, and then click **OK**. For this UWP app example, the **Publisher** is`CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US` and the **Product name** is `Microsoft.Office.OneNote`.
+
+If you don't know the publisher or product name, you can find them for both desktop devices and Windows 10 Mobile phones by following these steps.
+
+**To find the Publisher and Product Name values for Store apps without installing them**
+1.	Go to the [Windows Store for Business](http://go.microsoft.com/fwlink/p/?LinkID=722910) website, and find your app. For example, *Microsoft OneNote*.
+
+    >**Note**<br>
+    If your app is already installed on desktop devices, you can use the AppLocker local security policy MMC snap-in to gather the info for adding the app to the protected apps list. For info about how to do this, see the [Add apps using Microsoft Intune and custom URI](add-apps-to-protected-list-using-custom-uri.md) topic.
+
+2.	Copy the ID value from the app URL. For example, Microsoft OneNote's ID URL is https://www.microsoft.com/store/apps/onenote/9wzdncrfhvjl, and you'd copy the ID value, `9wzdncrfhvjl`.
+
+3.	In a browser, run the Store for Business portal web API, to return a JavaScript Object Notation (JSON) file that includes the publisher and product name values. For example, run https://bspmts.mp.microsoft.com/v1/public/catalog/Retail/Products/9wzdncrfhvjl/applockerdata, where `9wzdncrfhvjl` is replaced with your ID value.
 
-    3.  In a browser, run the Store for Business portal web API, to return a JavaScript Object Notation (JSON) file that includes the publisher and product name values. For example, run https://bspmts.mp.microsoft.com/v1/public/catalog/Retail/Products/*9wzdncrfhvjl*/applockerdata, where *9wzdncrfhvjl* is replaced with your ID value.
-    <p>
     The API runs and opens a text editor with the app details.
 
         ``` json
-        {
-          "packageIdentityName": "Microsoft.Office.OneNote",
-          "publisherCertificateName": "CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US"
-        }
+            {
+                "packageIdentityName": "Microsoft.Office.OneNote",
+                "publisherCertificateName": "CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US"
+            }
         ```
-    4.  Copy the `publisherCertificateName` value into the **Publisher Name** box and copy the `packageIdentityName` value into the **Product Name** box of Intune.
+4. Copy the `publisherCertificateName` value into the **Publisher Name** box and copy the `packageIdentityName` value into the **Product Name** box of Intune.
+
+    >**Important**<br>
+    The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as `CN=` followed by the `windowsPhoneLegacyId`.<p>For example:<br>
     
-    >**Important**<br>The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as “CN=” followed by the `windowsPhoneLegacyId`.
-    <p>For example:<br>
-     ``` json
+    ``` json
         {
-          "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
-        }
-       ```
-       
-    ![Microsoft Intune: Add a UWP app to the Protected Apps list](images/intune-addapps.png)
+	       "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
+	    }
+    ```
 
-    **To find the Publisher and Product name values for apps installed on Windows 10 Mobile phones**
+**To find the Publisher and Product Name values for apps installed on Windows 10 mobile phones**
+1.	If you need to add mobile apps that aren't distributed through the Store for Business, you must use the **Windows Device Portal** feature.
 
-    1.  If you need to add mobile apps that aren't distributed through the Store for Business, you must use the **Windows Device Portal** feature.
+    >**Note**<br>
+    Your PC and phone must be on the same wireless network.
+
+2.	On the Windows Phone, go to **Settings**, choose **Update & security**, and then choose **For developers**.
+
+3.	In the **For developers** screen, turn on **Developer mode**, turn on **Device Discovery**, and then turn on **Device Portal**.
+
+4.	Copy the URL in the **Device Portal** area into your device's browser, and then accept the SSL certificate.
+
+5.	In the **Device discovery** area, press **Pair**, and then enter the PIN into the website from the previous step.
+
+6.	On the **Apps** tab of the website, you can see details for the running apps, including the publisher and product names.
+
+7.	Start the app for which you're looking for the publisher and product name values.
+
+8.	Copy the `publisherCertificateName` value and paste it into the **Publisher Name** box and the `packageIdentityName` value into the **Product Name** box of Intune.
+
+    >**Important**<br>
+    The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as `CN=` followed by the `windowsPhoneLegacyId`.<p>For example:<br>
     
-        >**Note**<br>Your PC and phone must be on the same wireless network.
-
-    2.  On the Windows Phone, go to **Settings**, choose **Update & security**, and then choose **For developers**.
-
-    3.  In the **For developers** screen, turn on **Developer mode**, turn on **Device Discovery**, and then turn on **Device Portal**.
-
-    4.  Copy the URL in the **Device Portal** area into your device's browser, and then accept the SSL certificate.
-
-    5.  In the **Device discovery** area, press **Pair**, and then enter the PIN into the website from the previous step.
-
-    6.  On the **Apps** tab of the website, you can see details for the running apps, including the publisher and product names.
-    
-    7. Start the app for which you're looking for the publisher and product name values
-
-    8.  Copy the `publisherCertificateName` value and paste it into the **Publisher Name** box and the `packageIdentityName` value into the **Product Name** box of Intune.
-    
-        >**Important**<br>The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as “CN=” followed by the `windowsPhoneLegacyId`.
-    <p>For example:<br>
-     ``` json
+    ``` json
         {
-          "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
-        }
-       ```
+	       "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
+	    }
+    ```
 
-**To add a Classic Windows application**
+#### Add a desktop app rule to your policy
+For this example, we’re going to add Internet Explorer, a desktop app, to the **App Rules** list.
 
-1.  From the **Configure the following apps to be protected by EDP** table in the **Protected Apps** area, click **Add.**
-<p>A dialog box appears, letting you pick whether the app is a **Universal App** or a **Desktop App**.
+**To add a desktop app**
+1.	From the **App rules** area, click **Add**.
+
+    The **Add App Rule** box appears.
+
+        ![Microsoft Intune, Add a desktop app to your policy](images/intune-add-classic-apps.png)
+
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Internet Explorer*.
+
+3.	Click **Allow** from the **Enterprise data protection mode** drop-down list.
+
+    Allow turns on EDP, helping to protect that app’s corporate data through the enforcement of EDP restrictions. Instructions for exempting an app are included in the [Exempt apps from EDP restrictions](#exempt-apps-from-edp-restrictions) section of this topic.
+
+4.	Pick **Desktop App** from the **Rule template** drop-down list.
+
+    The box changes to show the store app rule options.
+
+5. Pick the options you want to include for the app rule (see table), and then click **OK**.
 
-2.  Click **Desktop App**, pick the options you want (see table), and then click **OK**.
     <table>
         <tr>
             <th>Option</th>
             <th>Manages</th>
         </tr>
         <tr>
-            <td>All fields left as "*"</td>
+            <td>All fields left as “*”</td>
             <td>All files signed by any publisher. (Not recommended.)</td>
         </tr>
         <tr>
             <td><strong>Publisher</strong> selected</td>
             <td>All files signed by the named publisher.<p>This might be useful if your company is the publisher and signer of internal line-of-business apps.</td>
         </tr>
-         <tr>
+        <tr>
             <td><strong>Publisher</strong> and <strong>Product Name</strong> selected</td>
             <td>All files for the specified product, signed by the named publisher.</td>
-        </tr>  
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, and <strong>File Name</strong> selected</td>
+        </tr>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, and <strong>Binary name</strong> selected</td>
             <td>Any version of the named file or package for the specified product, signed by the named publisher.</td>
         </tr>
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>File Name</strong>, and <strong>File Version, Exactly</strong> selected</td>
-            <td>Specified version of the named file or package for the specified product, signed by the named publisher.</td>
-        </tr>
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>File Name</strong>, and <strong>File Version, And above</strong> selected</td>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>Binary name</strong>, and <strong>File Version, and above</strong>, selected</td>
             <td>Specified version or newer releases of the named file or package for the specified product, signed by the named publisher.<p>This option is recommended for enlightened apps that weren't previously enlightened.</td>
         </tr>
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>File Name</strong>, and <strong>File Version, And below</strong> selected</td>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>Binary name</strong>, and <strong>File Version, And below</strong> selected</td>
             <td>Specified version or older releases of the named file or package for the specified product, signed by the named publisher.</td>
-        </tr>                                            
+        </tr>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>Binary name</strong>, and <strong>File Version, Exactly</strong> selected</td>
+            <td>Specified version of the named file or package for the specified product, signed by the named publisher.</td>
+        </tr>
     </table>
 
 If you’re unsure about what to include for the publisher, you can run this PowerShell command:
 
-``` ps1
-Get-AppLockerFileInformation -Path "<path of the exe>"
+```ps1
+    Get-AppLockerFileInformation -Path "<path of the exe>"
 ```
-Where `"<path_of_the_exe>"` goes to the location of the app on the device. For example, `Get-AppLockerFileInformation -Path "C:\Program Files\Internet Explorer\iexplore.exe"`.
+Where `"<path of the exe>"` goes to the location of the app on the device. For example, `Get-AppLockerFileInformation -Path "C:\Program Files\Internet Explorer\iexplore.exe"`.
 
 In this example, you'd get the following info:
 
 ``` json
-Path                                          Publisher
-----                                          ---------
-%PROGRAMFILES%\INTERNET EXPLORER\IEXPLORE.EXE O=MICROSOFT CORPORATION, L=REDMOND, S=WASHINGTON, C=US\INTERNET EXPLOR...
+    Path                   Publisher
+    ----                   ---------
+    %PROGRAMFILES%\INTERNET EXPLORER\IEXPLORE.EXE O=MICROSOFT CORPORATION, L=REDMOND, S=WASHINGTON, C=US\INTERNET EXPLOR...
 ```
 Where the text, `O=MICROSOFT CORPORATION, L=REDMOND, S=WASHINGTON, C=US` is the publisher name to enter in the **Publisher Name** box.
 
-![Microsoft Intune: Add a Classic Windows app to the Protected Apps list](images/intune-add-desktop-app.png)
+#### Add an AppLocker policy file
+For this example, we’re going to add an AppLocker XML file to the **App Rules** list. You’ll use this option if you want to add multiple apps at the same time. For more info about AppLocker, see the [AppLocker](https://technet.microsoft.com/en-us/itpro/windows/keep-secure/applocker-overview) content.
 
-## Exempt apps from EDP restrictions
+**To create an app rule and xml file using the AppLocker tool**
+1.	Open the Local Security Policy snap-in (SecPol.msc).
+    
+2.	In the left pane, expand **Application Control Policies**, expand **AppLocker**, and then click **Packaged App Rules**.
+
+    ![Local security snap-in, showing the Packaged app Rules](images/intune-local-security-snapin.png)
+
+3.	Right-click in the right-hand pane, and then click **Create New Rule**.
+
+    The **Create Packaged app Rules** wizard appears.
+
+4. On the **Before You Begin** page, click **Next**.
+
+    ![Create Packaged app Rules wizard, showing the Before You Begin page](images/intune-applocker-before-begin.png)
+
+5. On the **Permissions** page, make sure the **Action** is set to **Allow** and the **User or group** is set to **Everyone**, and then click **Next**.
+
+    ![Create Packaged app Rules wizard, showing the Before You Begin page](images/intune-applocker-permissions.png)
+
+6.	On the **Publisher** page, click **Select** from the **Use an installed packaged app as a reference** area.
+
+    ![Create Packaged app Rules wizard, showing the Publisher](images/intune-applocker-publisher.png)
+
+7. In the **Select applications** box, pick the app that you want to use as the reference for your rule, and then click **OK**. For this example, we’re using Microsoft Photos.
+
+    ![Create Packaged app Rules wizard, showing the Select applications page](images/intune-applocker-select-apps.png)
+
+8. On the updated **Publisher** page, click **Create**.
+
+    ![Create Packaged app Rules wizard, showing the Microsoft Photos on the Publisher page](images/intune-applocker-publisher-with-app.png)
+
+9. Review the Local Security Policy snap-in to make sure your rule is correct.
+
+    ![Local security snap-in, showing the new rule](images/intune-local-security-snapin-updated.png)
+
+10.	In the left pane, right-click on **AppLocker**, and then click **Export policy**.
+
+    The **Export policy** box opens, letting you export and save your new policy as XML.
+
+    ![Local security snap-in, showing the Export Policy option](images/intune-local-security-export.png)
+
+11.	In the **Export policy** box, browse to where the policy should be stored, give the policy a name, and then click **Save**.
+
+    The policy is saved and you’ll see a message that says 1 rule was exported from the policy.
+
+    **Example XML file**<br>
+    This is the XML file that AppLocker creates for Microsoft Photos.
+
+    ```xml
+     <AppLockerPolicy Version="1">
+        <RuleCollection Type="Exe" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Msi" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Script" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Dll" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Appx" EnforcementMode="NotConfigured">
+            <FilePublisherRule Id="5e0c752b-5921-4f72-8146-80ad5f582110" Name="Microsoft.Windows.Photos, version 16.526.0.0 and above, from Microsoft Corporation" Description="" UserOrGroupSid="S-1-1-0" Action="Allow">
+                <Conditions>
+                    <FilePublisherCondition PublisherName="CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US" ProductName="Microsoft.Windows.Photos" BinaryName="*">
+                        <BinaryVersionRange LowSection="16.526.0.0" HighSection="*" />
+                    </FilePublisherCondition>
+                </Conditions>
+            </FilePublisherRule>
+        </RuleCollection>
+	</AppLockerPolicy>
+    ```
+12.	After you’ve created your XML file, you need to import it by using Microsoft Intune.
+
+**To import your Applocker policy file app rule using Microsoft Intune**
+1.	From the **App rules** area, click **Add**.
+    
+    The **Add App Rule** box appears.
+
+        ![Microsoft Intune, Importing your AppLocker policy file using Intune](images/intune-add-applocker-xml-file.png)
+
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Allowed app list*.
+
+3.	Click **Allow** from the **Enterprise data protection mode** drop-down list.
+
+    Allow turns on EDP, helping to protect that app’s corporate data through the enforcement of EDP restrictions. Instructions for exempting an app are included in the [Exempt apps from EDP restrictions](#exempt-apps-from-edp-restrictions) section of this topic.
+
+4.	Pick **AppLocker policy file** from the **Rule template** drop-down list.
+
+    The box changes to let you import your AppLocker XML policy file.
+
+5.	Click **Import**, browse to your AppLocker XML file, click **Open**, and then click **OK** to close the **Add App Rule** box.
+
+    The file is imported and the apps are added to your **App Rules** list.
+
+#### Exempt apps from EDP restrictions
 If you're running into compatibility issues where your app is incompatible with EDP, but still needs to be used with enterprise data, you can exempt the app from the EDP restrictions. This means that your apps won't include auto-encryption or tagging and won't honor your network restrictions. It also means that your exempted apps might leak.
 
-**To exempt an UWP app**
-
-1.  Follow the **Add a UWP app** steps in the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic, through to Step 11.
-
-2.  In the **OMA-URI** box at Step 12, type `./Vendor/MSFT/AppLocker/EnterpriseDataProtection/<your_enterprise_name>edpexempt/StoreApp EXE`.<p>Where **edpexempt** is added as a substring, making the app exempt.
-
-3.  Open File Explorer, go to the location where you saved your new XML file, and open it using an XML editor, such as Notepad.
-
-4.  Copy the text that has a **Type** of Appx, within in the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
-
-    ``` 
-    <RuleCollection Type="Appx" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
-    ```
+**To exempt a store app, a desktop app, or an AppLocker policy file app rule**
+1.	From the **App rules** area, click **Add**.
     
-5.  Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
+    The **Add App Rule** box appears.
 
-**To exempt a Classic Windows application**
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Exempt apps list*.
 
-1.  Follow the **Add a Classic Windows application app** steps in the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic, through to Step 11.
+3.	Click **Exempt** from the **Enterprise data protection mode** drop-down list.
 
-2.  In the **OMA-URI** box at Step 12, type `./Vendor/MSFT/AppLocker/EnterpriseDataProtection/<your_enterprise_name>edpexempt/EXE`.<p>Where **edpexempt** is added as a substring, making the app exempt.
+    Be aware that when you exempt apps, they’re allowed to bypass the EDP restrictions and access your corporate data. To allow apps, see the [Add app rules to your policy](#add-app-rules-to-your-policy) section of this topic.
 
-3.  Open File Explorer, go to the location where you saved your new XML file, and open it using an XML editor, such as Notepad.
+4.	Fill out the rest of the app rule info, based on the type of rule you’re adding:
 
-4.  Copy the text that has a **Type** of EXE, within in the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
+    - **Store app.** Follow the **Publisher** and **Product name** instructions in the [Add a store app rule to your policy](#add-a-store-app-rule-to-your-policy) section of this topic.
 
-    ``` 
-    <RuleCollection Type="Exe" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
-    ```
+    - **Desktop app.** Follow the **Publisher**, **Product name**, **Binary name**, and **Version** instructions in the [Add a desktop app rule to your policy](#add-a-desktop-app-rule-to-your-policy) section of this topic.
 
-5.  Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
+    - **AppLocker policy file.** Follow the **Import** instructions in the [Add an AppLocker policy file](#add-an-applocker-policy-file) section of this topic, using a list of exempted apps.
 
-## Manage the EDP protection level for your enterprise data
+5.	Click **OK**.
+
+### Manage the EDP protection mode for your enterprise data
 After you've added the apps you want to protect with EDP, you'll need to apply a management and protection mode.
 
-We recommend that you start with **Silent** or **Override** while verifying with a small group that you have the right apps on your **Protected Apps** list. After you're done, you can change to your final enforcement policy, either **Override** or **Block**.
+We recommend that you start with **Silent** or **Override** while verifying with a small group that you have the right apps on your protected apps list. After you're done, you can change to your final enforcement policy, either **Override** or **Block**.
 
-<table>
-    <tr>
-        <th>Mode</th>
-        <th>Description</th>
-    </tr>
-    <tr>
-        <td>Block</td>
-        <td>EDP looks for inappropriate data sharing practices and stops the employee from completing the action. This can include sharing info across non-enterprise-protected apps in addition to sharing enterprise data between other people and devices outside of your enterprise.</td>
-    </tr>
-    <tr>
-        <td>Override</td>
-        <td>EDP looks for inappropriate data sharing, warning employees if they do something deemed potentially unsafe. However, this management mode lets the employee override the policy and share the data, logging the action to your audit log, accessible through the [Reporting CSP](http://go.microsoft.com/fwlink/p/?LinkID=746459).</td>
-    </tr>
-    <tr>
-        <td>Silent</td>
-        <td>EDP runs silently, logging inappropriate data sharing, without blocking anything that would’ve been prompted for employee interaction while in Override mode. Unallowed actions, like apps inappropriately trying to access a network resource or EDP-protected data, are still blocked.</td>
-    </tr>
-    <tr>
-        <td>Off</td>
-        <td>EDP is turned off and doesn't help to protect or audit your data.<p>After you turn off EDP, an attempt is made to decrypt any closed EDP-tagged files on the locally attached drives.</td>
-    </tr> 
-</table>  
+|Mode |Description |
+|-----|------------|
+|Block |EDP looks for inappropriate data sharing practices and stops the employee from completing the action. This can include sharing info across non-enterprise-protected apps in addition to sharing enterprise data between other people and devices outside of your enterprise.|
+|Override |EDP looks for inappropriate data sharing, warning employees if they do something deemed potentially unsafe. However, this management mode lets the employee override the policy and share the data, logging the action to your audit log, accessible through the [Reporting CSP](http://go.microsoft.com/fwlink/p/?LinkID=746459). |
+|Silent |EDP runs silently, logging inappropriate data sharing, without blocking anything that would’ve been prompted for employee interaction while in Override mode. Unallowed actions, like apps inappropriately trying to access a network resource or EDP-protected data, are still blocked.|
+|Off (not recommended) |EDP is turned off and doesn't help to protect or audit your data.<p>After you turn off EDP, an attempt is made to decrypt any closed EDP-tagged files on the locally attached drives.|
 
-![Microsoft Intune: Add the protection level for your Protected Apps list](images/intune-protection-mode.png)
+![Microsoft Intune, Set the protection mode for your data](images/intune-protection-mode.png)
 
-## Define your enterprise-managed identity domains
-Specify your company’s enterprise identity, expressed as your primary internet domain. For example, if your company is Contoso, its enterprise identity might be contoso.com. The first listed domain (in this example, contoso.com) is the primary enterprise identity string used to tag files protected by any app on the **Protected App** list.
+### Define your enterprise-managed corporate identity
+Corporate identity, usually expressed as your primary Internet domain (for example, contoso.com), helps to identify and tag your corporate data from apps you’ve marked as protected by EDP. For example, emails using contoso.com are identified as being corporate and are restricted by your enterprise data protection policies.
 
-You can also specify all the domains owned by your enterprise that are used for user accounts, separating them with the "|" character. For example, if Contoso also has some employees with email addresses or user accounts on the fabrikam.com domain, you would use contoso.com|fabrikam.com.
+You can specify multiple domains owned by your enterprise by separating them with the "|" character. For example, (`contoso.com|newcontoso.com`). With multiple domains, the first one is designated as your corporate identity and all of the additional ones as being owned by the first one. We strongly recommend that you include all of your email address domains in this list.
 
-This list of managed identity domains, along with the primary domain, make up the identity of your managing enterprise. User identities (user@domain) that end in any of the domains on this list, are considered managed.
+**To add your corporate identity**
+- Type the name of your corporate identity into the **Corporate identity** field. For example, `contoso.com` or `contoso.com|newcontoso.com`.
 
-**To add your primary domain**
+    ![Microsoft Intune, Set your primary Internet domains](images/intune-corporate-identity.png)
 
--   Type the name of your primary domain into the **Primary domain** field. For example, *contoso.com*.<p>
-If you have multiple domains, you must separate them with the "|" character. For example, `contoso.com|fabrikam.com`.
+### Choose where apps can access enterprise data
+After you've added a protection mode to your apps, you'll need to decide where those apps can access enterprise data on your network.
 
-    ![Microsoft Intune: Add the primary internet domain for your enterprise identity](images/intune-corporate-identity.png)
-
-## Choose where apps can access enterprise data
-After you've added a protection mode to your apps, you'll need to decide where those apps can access enterprise data on your network.<p>
-There are no default locations included with EDP, you must add each of your network locations. This area applies to any network endpoint device that gets an IP address in your enterprise’s range and is also bound to one of your enterprise domains, including SMB shares.  Local file system locations should just maintain encryption (for example, on local NTFS, FAT, ExFAT). 
+There are no default locations included with EDP, you must add each of your network locations. This area applies to any network endpoint device that gets an IP address in your enterprise’s range and is also bound to one of your enterprise domains, including SMB shares. Local file system locations should just maintain encryption (for example, on local NTFS, FAT, ExFAT).
 
 >**Important**<br>
--   Every EDP policy should include policy that defines your enterprise network locations.<p>
+- Every EDP policy should include policy that defines your enterprise network locations.<p>
 - Classless Inter-Domain Routing (CIDR) notation isn’t supported for EDP configurations.
 
-**To specify where your protected apps can find and send enterprise data on the network**
+**To define where your protected apps can find and send enterprise data on you network**
 
-1.  Add additional network locations your apps can access by clicking **Add**, typing a description into the **Description** box, and then choosing your location type, including:
+1. Add additional network locations your apps can access by clicking **Add**.
+
+    The **Add or edit corporate network definition** box appears.
+
+2.	Type a name for your corporate network element into the **Name** box, and then pick what type of network element it is, from the **Network element** drop-down box. This can include any of the options in the following table.
+
+    ![Microsoft Intune, Add your corporate network definitions](images/intune-networklocation.png)
+<p>
     <table>
-        <tr>
-            <th>Network location type</th>
-            <th>Format</th>
-            <th>Description</th>
-        </tr>
-        <tr>
-            <td>Enterprise Cloud Resources</td>
-            <td>**With proxy:**<p>contoso.sharepoint.com,proxy.contoso.com|<br>contoso.visualstudio.com,proxy.contoso.com<p>**Without proxy:**<p>contoso.sharepoint.com|contoso.visualstudio.com</td>
-            <td>Specify the cloud resources to be treated as corporate and protected by EDP.<p>For each cloud resource, you may also optionally specify an internal proxy server that routes your traffic through your Enterprise Internal Proxy Server.<p>If you have multiple resources, you must separate them using the "|" delimiter. If you don’t use proxy servers, you must also include the "," delimiter just before the "|". For example:<p>`URL <,proxy>|URL <,proxy>`<p>If Windows is unable to determine whether an app should be allowed to connect to a network resource, it will automatically block the connection. If instead you want Windows to allow the connections to happen, you can add the `/*AppCompat*/` string to this setting. For example:<p>`URL <,proxy>|URL <,proxy>|/*AppCompat*/`</td>     
-        </tr>
-        <tr>
-            <td>Enterprise Network Domain Names</td>
-            <td>domain1.contoso.com,domain2.contoso.com</td>
-            <td>Specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected.<p>This setting works with the IP ranges settings to detect whether a network endpoint is enterprise or personal on private networks.<p>If you have multiple resources, you must separate them using the "," delimiter.</td>                
-        </tr>
-        <tr>
-            <td>Enterprise Proxy Servers</td>
-            <td>domain1.contoso.com:80;<br>domain2.contoso.com:137</td>
-            <td>Specify your externally-facing proxy server addresses, along with the port through which traffic is allowed and protected with EDP.<p>This list shouldn’t include any servers listed in the Enterprise Internal Proxy Servers list, which are used for EDP-protected traffic.<p>This setting is also required if you use a proxy in your network. If you don't have a proxy server, you might find that enterprise resources are unavailable when a client is behind a proxy, such as when you’re visiting another company and not on that company’s guest network.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
-        </tr>
-        <tr>
-            <td>Enterprise Internal Proxy Servers</td>
-            <td>proxy1.contoso.com;<br>proxy2.contoso.com</td>
-            <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
-        </tr>
-        <tr>
-            <td>Enterprise IPv4 Range</td>
-            <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,10.0.0.1-10.255.255.254</td>
-            <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
-        </tr>
-        <tr>
-            <td>Enterprise IPv6 Range</td>
-            <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:<br>ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110::-2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
-            <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
-        </tr>
-    </table>  
-    
-    ![Microsoft Intune: Choose the primary domain and the other network locations for protected apps](images/intune-networklocation.png)
+            <tr>
+                <th>Network location type</th>
+                <th>Format</th>
+                <th>Description</th>
+            </tr>
+            <tr>
+                <td>Enterprise Cloud Resources</td>
+                <td>**With proxy:** contoso.sharepoint.com,proxy.contoso.com|<br>contoso.visualstudio.com,proxy.contoso.com<p>**Without proxy:** contoso.sharepoint.com|contoso.visualstudio.com</td>
+                <td>Specify the cloud resources to be treated as corporate and protected by EDP.<p>For each cloud resource, you may also optionally specify an internal proxy server that routes your traffic through your Enterprise Internal Proxy Server.<p>If you have multiple resources, you must separate them using the "|" delimiter. If you don’t use proxy servers, you must also include the "," delimiter just before the "|". For example: `URL <,proxy>|URL <,proxy>`.<p>If Windows is unable to determine whether an app should be allowed to connect to a network resource, it will automatically block the connection. If instead you want Windows to allow the connections to happen, you can add the `/*AppCompat*/` string to this setting. For example: `URL <,proxy>|URL <,proxy>|/*AppCompat*/`</td>
+            </tr>
+            <tr>
+                <td>Enterprise Network Domain Names (Required)</td>
+                <td>corp.contoso.com,region.contoso.com</td>
+                <td>Specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected.<p>This setting works with the IP ranges settings to detect whether a network endpoint is enterprise or personal on private networks.<p>If you have multiple resources, you must separate them using the "," delimiter.</td>                
+            </tr>
+            <tr>
+                <td>Enterprise Proxy Servers</td>
+                <td>proxy.contoso.com:80;proxy2.contoso.com:137</td>
+                <td>Specify your externally-facing proxy server addresses, along with the port through which traffic is allowed and protected with EDP.<p>This list shouldn’t include any servers listed in the Enterprise Internal Proxy Servers list, which are used for EDP-protected traffic.<p>This setting is also required if you use a proxy in your network. If you don't have a proxy server, you might find that enterprise resources are unavailable when a client is behind a proxy, such as when you’re visiting another company and not on that company’s guest network.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>
+            </tr>
+            <tr>
+                <td>Enterprise Internal Proxy Servers</td>
+                <td>contoso.internalproxy1.com;contoso.internalproxy2.com</td>
+                <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
+            </tr>
+            <tr>
+                <td>Enterprise IPv4 Range (Required)</td>
+                <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,<br>10.0.0.1-10.255.255.254</td>
+                <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
+            </tr>
+            <tr>
+                <td>Enterprise IPv6 Range</td>
+                <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
+                <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
+            </tr>
+            <tr>
+                <td>Neutral Resources</td>
+                <td>sts.contoso.com,sts.contoso2.com</td>
+                <td>Specify your authentication redirection endpoints for your company.<p>These locations are considered enterprise or personal, based on the context of the connection before the redirection.<p>If you have multiple resources, you must separate them using the "," delimiter.</td>
+            </tr>           
+        </table>
 
-2.  Add as many locations as you need, and then click **OK**.<p>The **Add or Edit Enterprise Network Locations box** closes.
+3.	Add as many locations as you need, and then click **OK**.
 
-3.  In the **Use a data recovery certificate in case of data loss** box, click **Browse** to add a data recovery certificate for your policy.<p>After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the Data Recovery Agent (DRA) certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.<p>For steps about how to create and verify an EFS DRA certificate, see the [Create and verify an Encrypting File System (EFS) DRA certificate](#create-and-verify-an-encrypting-file-system-efs-dra-certificate) section of this topic. For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.<p>
+    The **Add corporate network definition** box closes.
 
-    ![Microsoft Intune: Specify a data recovery certificate for your policy](images/intune-data-recovery.png)
+4. Decide if you want to Windows to look for additional network settings:
 
-### Create and verify an Encrypting File System (EFS) DRA certificate
-If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name EFSDRA; however, this name can be replaced with anything that makes sense to you.
+    - **Enterprise Proxy Servers list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the proxy servers you specified in the network boundary definition as the complete list of proxy servers available on your network. If you clear this box, Windows will search for additional proxy servers in your immediate network.
 
->**Important**<br>
-If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy. To add your EFS DRA certificate to your policy by using Microsoft Intune, see Step 3 in the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic.
+	- **Enterprise IP Ranges list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the IP ranges you specified in the network boundary definition as the complete list of IP ranges available on your network. If you clear this box, Windows will search for additional IP ranges on any domain-joined devices connected to your network.
+
+	- **Show the enterprise data protection icon overlay on your allowed apps that are EDP-unaware in the Windows Start menu and on corporate file icons in the File Explorer.** Click this box if you want the enterprise data protection icon overlay to appear on corporate files or in the Start menu, on top the tiles for your unenlightened protected apps.
+
+5.	In the required **Upload a Data Recovery Agent (DRA) certificate to allow recovery of encrypted data** box, click **Browse** to add a data recovery certificate for your policy.
+
+        ![Microsoft Intune, Add your Data Recovery Agent (DRA) certificate](images/intune-data-recovery.png)
+
+    After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the DRA certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.
+
+    For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.
+
+#### Create and verify an Encrypting File System (EFS) DRA certificate for EDP
+If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name *EFSDRA*; however, this name can be replaced with anything that makes sense to you.
+
+>**Important**<br>If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy.
 
 **To manually create an EFS DRA certificate**
-1.	On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
+1. On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
 
-2.	Run this command:
+2. Run this command:
     
-    `cipher /r:<EFSRA>`
-    
-    Where *&lt;EFSRA&gt;* is the name of the .cer and .pfx files that you want to create.
+    `cipher /r:<EFSDRA>`<br>Where `<EFSDRA>` is the name of the .cer and .pfx files that you want to create.
 
-3.	When prompted, type and confirm a password to help protect your new Personal Information Exchange (.pfx) file.
+3. When prompted, type and confirm a password to help protect your new Personal Information Exchange (.pfx) file.
 
-    The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1.
+    The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1. 
 
-    >**Important**<br> 
-    Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
+    >**Important**<br>Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
 
-4. Add your EFS DRA certificate to your EDP policy by using Step 3 of the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic. 
+4.	Add your EFS DRA certificate to your EDP policy by using Step 3 of the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic.
 
 **To verify your data recovery certificate is correctly set up on an EDP client computer**
-1. Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
+1.	Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
 
 2.	Open a command prompt with elevated rights, navigate to where you stored the file you just created, and then run this command:
 
-    `cipher /c <filename>`
-
-    Where *&lt;filename&gt;* is the name of the file you created in Step 1.
+    `cipher /c <filename>`<br>Where `<filename>` is the name of the file you created in Step 1.
 
 3.	Make sure that your data recovery certificate is listed in the **Recovery Certificates** list.
 
@@ -350,38 +464,50 @@ If you already have an EFS DRA certificate for your organization, you can skip c
 
 3.	Open a command prompt with elevated rights, navigate to the encrypted file, and then run this command:
 
-    `cipher /d <encryptedfile.extension>`
-    
-    Where *&lt;encryptedfile.extension&gt;* is the name of your encrypted file. For example, corporatedata.docx.
+    `cipher /d <encryptedfile.extension>`<br>Where `<encryptedfile.extension>` is the name of your encrypted file. For example, corporatedata.docx.
 
-## Choose your optional EDP-related settings
+### Choose your optional EDP-related settings
 After you've decided where your protected apps can access enterprise data on your network, you’ll be asked to decide if you want to add any optional EDP settings.
 
-**To add your optional settings**
+![Microsoft Intune, Choose any additional, optional settings](images/intune-optional-settings.png)
 
-1.  Choose to set any or all of the optional EDP-related settings:
+**To set your optional settings**
+1.	Choose to set any or all of the optional settings:
 
-    -   **Allow the user to decrypt data that was created or edited by the apps configured above.** Clicking **Yes**, or turning off this setting in Intune, lets your employees right-click to decrypt their protected app data, along with the option to decrypt data in the **Save As** box and the **Save As** file picker . Clicking **No** removes the **Decrypt** option and saves all data for protected apps as enterprise-encrypted.
+    - **Show the Personal option in the File ownership menus of File Explorer and the Save As dialog box.** Determines whether users can see the Personal option for files within File Explorer and the **Save As** dialog box. The options are:
+    
+        - **Yes, or not configured (recommended).** Employees can choose whether a file is **Work** or **Personal** in File Explorer and the **Save As** dialog box. 
+	
+        - **No.** Hides the **Personal** option from employees. Be aware that if you pick this option, apps that use the **Save As** dialog box might encrypt new files as corporate data unless a different file path is given during the original file creation. After this happens, decryption of work files becomes more difficult.
 
-    -   **Protect app content when the device is in a locked state for the apps configured above.** Clicking **Yes** lets EDP help to secure protected app content when a mobile device is locked. We recommend turning this option on to help prevent data leaks from things such as email text that appears on the **Lock** screen of a Windows 10 Mobile phone.
+    - **Prevent corporate data from being accessed by apps when the device is locked. Applies only to Windows 10 Mobile**. Determines whether apps can show corporate data on a Windows 10 Mobile device **Lock** screen. The options are:
+	
+        - **Yes (recommended).** Stop apps from reading corporate data on Windows 10 Mobile device when the screen is locked.
+	
+        - **No, or not configured.**  Allows apps to read corporate data on Windows 10 Mobile device when the screen is locked.
 
-        ![Microsoft Intune: Optional EDP settings](images/intune-optional-settings.png)
+    - **Revoke encryption keys on unenroll.** Determines whether to revoke a user’s local encryption keys from a device when it’s unenrolled from enterprise data protection. If the encryption keys are revoked, a user no longer has access to encrypted corporate data. The options are:
 
-2.  Click **Save Policy**.
+        - **Yes, or not configured (recommended).** Revokes local encryption keys from a device during unenrollment.
+        
+        - **No.** Stop local encryption keys from being revoked from a device during unenrollment. For example, if you’re migrating between Mobile Device Management (MDM) solutions.
+
+    - **Allow Windows Search to search encrypted corporate data and Store apps.** Determines whether Windows Search can search and index encrypted corporate data and Store apps. The options are:
+
+	    - **Yes.** Allows Windows Search to search and index encrypted corporate data and Store apps.
+
+	    - **No, or not configured (recommended).** Stops Windows Search from searching and indexing encrypted corporate data and Store apps.
+
+    - **Show the enterprise data protection icon overlay.** Determines whether the enterprise data protection icon overlay appears on corporate files or in the **Start** menu, on top of the tiles for your unenlightened protected apps. The options are:
+
+    	- **Yes (recommended).** Allows the enterprise data protection icon overlay to appear for files or on top of the tiles for your unenlightened protected apps in the **Start** menu.
+
+	    - **No, or not configured.** Stops the enterprise data protection icon overlay from appearing for files or on top of the tiles for your unenlightened protected apps in the **Start** menu.
+
+2. Click **Save Policy**.
 
 ## Related topics
 - [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md)
 - [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md)
 - [Create and deploy a VPN policy for enterprise data protection (EDP) using Microsoft Intune](create-vpn-and-edp-policy-using-intune.md)
-- [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
-
-
-
- 
-
- 
-
-
-
-
-
+- [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
\ No newline at end of file
diff --git a/windows/keep-secure/create-edp-policy-using-sccm.md b/windows/keep-secure/create-edp-policy-using-sccm.md
index edfc06c2ec..0b357dece8 100644
--- a/windows/keep-secure/create-edp-policy-using-sccm.md
+++ b/windows/keep-secure/create-edp-policy-using-sccm.md
@@ -443,12 +443,12 @@ There are no default locations included with EDP, you must add each of your netw
 
 5.	In the required **Upload a Data Recovery Agent (DRA) certificate to allow recovery of encrypted data** box, click **Browse** to add a data recovery certificate for your policy.
 
+    ![Create Configuration Item wizard, Add a data recovery agent (DRA) certificate](images/edp-sccm-dra.png)
+
     After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the DRA certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data. 
     
     For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.
 
-    ![Create Configuration Item wizard, Add a data recovery agent (DRA) certificate](images/edp-sccm-dra.png)
-
 #### Create and verify an Encrypting File System (EFS) DRA certificate for EDP
 If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name EFSDRA; however, this name can be replaced with anything that makes sense to you.
 
@@ -464,7 +464,7 @@ If you don’t already have an EFS DRA certificate, you’ll need to create and
 
     The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1. 
 
-    **Important**<br>Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
+    >**Important**<br>Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
 
 4.	Add your EFS DRA certificate to your EDP policy by using Step 3 of the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic.
 
diff --git a/windows/keep-secure/images/intune-add-desktop-app.png b/windows/keep-secure/images/intune-add-desktop-app.png
deleted file mode 100644
index 8d8186398a295dc8be866f2d15bc9e7eab20b735..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 47883
zcmZU)1wd3?w?B+1q6{I53<%Ol$<STWDJ?nD-3;AGcXvvIbTg!MgLF4TcQ@bQ^SuB2
z-tVqq4s+Jtd+k*x*6-{SC@U?BhVlUg0RaI`TuewF0Rbr*0Rge=6(XF|f|_6s|M$#B
zUQ_^~WC(v7zVpJ6|0_QNLU}mgP8$in|Jq7S)dm3pz5VI?tlKhQ56;A~6;`oTur#oB
z(1z$ESZNzu*n%wdZHbsc^dJs1CU<EBgnCzTA$~>2*}a8e83kp0<f9LSa^hC|TJi*8
zoOZg@ATLYI4(uO4hs1^TteYw6Dd=d5?B|x6*FcMkg4mzQv99k<UjNvz0$ip<rO>r3
zCf6-GkVcBx;&Wm1K7(tJk4#(;a1taG1E$Q0k(Z!)+DzzfL*Y#bJ58G;uCA9;d`~;)
zL_;)WK==>O^(T|RK%Pd6f#4g2f7t^6m-XL0|MvPF9|Ml*^H8QPxx2pWJR80woX2mR
zaL8&YEtOcABMjmDJTTDooho**_~X0}d<M_;Ri<!xjdxMLwS_r}P-SA<tpPoB0`5A)
z;WVLd)s{=mdW<t;E-OO|E-gH6yx$Y<@58UJeaYXwgzFU*OdTCeR3$dw%mX<y>i_W^
z`BxaN01FFC>OL<UH>30MDl9BaciVP1k;(8D*&>M^J|+UJxMUOQag|@V+x^EJ^ZY9_
z3tMgW7#^mG-?25sdUd_m%zn#N#?n+>{T2Vk!Gg<rkMjQh$4{t#{V;I}o+ls>|D-@{
z^va*p^~x%MfYtF^Fg;^Pcy#cQ{wscgOw4ZFm4w^NLpE*r2qI{H^QO-7hE@+S^D;17
zUQ_1&X8rtbRKzDz+cgCYZgRfgt^{UalDd=OU;N1s{GVxjk^?*9Yp11#g|8T}vE$px
znO2{zkN~}FEB>ob0I^&!O1EkQn#pyRUdKQF)Op7Ptd<7xqR|b^42?uP@x>;lfnna!
zS#F_dfpJ3z0wYwjFMVA>&VixBuGhi)u(k5IF263@jpKo!0%Qb)-cC*)V6s!K*q}2=
zB8Ng@Exul+wuV{x6De9~fz?#h*i@Ij`OhQqCO+cSyqn6)4dp)d`oxfQp5*kx;nT|c
zilmlkt~tA391}R{sY&T6-=n~KE@7n&vubmkbZF}a*b?gX)2oJuz0z0e7*8>@a|T8A
zt~<Kx)YCU$YU|->_NN6yoOawxXct{el+*WYcC_2)&%fU)SyD}X1yQrcZm$Gx7tcwB
zVSF#xObgz8m$lMz#--D`x4fRIQ~ez;5lm}2q2rQBDE&9fdpjS`z&^JLe)O3I1x}=G
zJzE;Ts<)w(?{9}a2tQKqsaKG$RhGuDp^c8Nu0|J#-p3E!TRAxbEvTlVf~72B-jczk
z2jQsh(^YKipEgX+g}97r9~skw-5=wIO3M9*<AQQ15!DlDQ8B=;U9@_It9v_-1v-N-
z2TxAcG)1_^Obb?hGkU+*O~aGDehWHXvkQ(1QkM3>+y70ccUs7`zJoKD3>I1hNg2vN
zrq*4gFUFXj3UL`Qsip+GUs_6^f#N1jgH+uY_-vIS<=5-0g3%)<*VPk~$3=Dh*mwvC
zW&JLogT<{donSNfuDFxRs9>!V&5NOZDr>T!_U1ejLV10q@de=!l&k;%B>JPiY64;(
zCMF$e2n{tvj$fIIcHrT7E_<7mIW>abI%Y=KjqW+IcsjlxXA5t<6xLGLVvbI~Zx?w&
z5n;}8n?oNTM8EY`4)kWK^K)~eP{u_IgcY9Xe`!&2s5AKt>X`qrV6N`nLkl`lHa<Vp
zk#ci?=O>3o>$*GS-XFjII4w4K^TM}17d`1G_&-A_fm!R|#$K~XTOo5xV$gR75dgS>
z82c9>04dIT*xy$yw*@Q5`^Knmh-&`L3WfD(<p-*XL+Iun%L3SHl<NKJdJNwrpFF?u
zmcsykz$I3WYl0v}$EDv(uO5P>gWlNCzD}EcF=eQ1Y01a>A8~XplNduK1IW>8T&J#q
zF0YrQ%O8rkZwwmxu{S2qsXYmX09Q~m7|m9?L%e9d4f4*P1S<5UQNF=W(O&46cGGdZ
z2PgS#w!PP`pHIO8rV&a_UanG#gk;WPg^@yQ8W|##u*&gn#q?hEFqZ8~vTlZ}Vf_Gz
zc4w2hEGXdACI-NjVxBLhz;)~O5@W>Be{Tb<BE8X^Sz9ydE~g3kcK$$NtgPsfa?}Yp
z5_~$xKG9l|&GAb&5N9X{OWcvghUfys;oE`fY1HqJ6xI&kG_0)rV_&t(m~BmPFHI%O
z6N|Nc)T}9{28zjCyN$H+SP;jsE)BJ-K#k&Rjyafexb}CA_GzU37egQF@$pcL;XU*F
z{T9iO#O>Eir`>N^+{q;m5i-?BTCojkR?{sc*xiNQKm*cz=HF7#Q&(8Lm?`6By?-VG
zy-SG2AV`70RQrg_7~}@aMiu$7@VM*SvhqQ8KYn`4-llyykQ&AG#>if;DSL9Oj$C|b
zg7Ri^o;%CX$?LUsQi!LcYu0a!*Z)|F5MnyyOWWt0lLBbUpNoQEzN(9;C{r(DB3^nY
z$NY!Do$>LUKQ#3LTJlnyP1b+_IV`D4fm#-&>v)qrOoiNGz*Vduh;iTZ^NQPwRfVU_
zmDQ4zpHdOJ5xo+~S)Atn>$~mQ2IcV050^5I%8hayfaoKcsCFp@8Oc5*o4}jzGBd4$
zGD=yv#dW{wK(Yi)V{Y~D`=AMOc{)k($m_9k+Y*EpNMW<^<#07_oW`r0MN4mHChQgq
zp3n#KO%sK2;C?(Jj%hO(=k1uO7NRC|c<(Q}<HxP@OM>3zc08)}K-7oG4Yc4wDJ$-a
ziF7tU@XKW`6C9CC-F9%j2KUc_Ly&v&C!bic)yzdaZXf@&I#;|MhGO9nv5Q&7roola
z_R?4X@su^(Qxha{5D+?_?=i@zTz}?G)!?%r_Df>{pHB`vJ8@TsQIr9R-Eus$;@ExO
zz)Uou#ExgWFs~OA&&@^OljBCvq8ZW4g0@utG-to}uD(nTdmTkf3GCA?%j*|&0g6<=
zmaENIrWdd+Y^I<7aNi4%zPzzMpOl5NZ=jcE_)-kmyLs*%4<pOFrOU_oED4wP8=z8!
zKjZcmJY#;J)_syR(%kWwSvX6uVKBLHI~NPcrdh#DIq%Xe(k`srcFQZ{_9=;^1fwfg
z)FF|QslS*af4b>-BKi^zV2$loRg4Wow!aq#%uBs`k$a|<*o{o#gKK=482uQ@%JzvT
z-sA@=V6g)J8m&mhOMUcYXfS4MuymdV$6QbmN@LrLq~5lUAny#8ck@Zgp!{e4pdZ;=
zHtVlbXh}fAEym~;wcSDz>Koo?fc{VdP8JF}HXll0$_=84o<(q+4y&KC+w`*I=P8;h
zr3sNKFk9tFlRphG2%=t^yEdXBi4G<`<s9nz{`tNcwU|nGHrJ{`xae~1KPD`@!NAju
z?<eG+@)?PZo0JM;EYCbkY(lZuZ>aTUAJS{Eoq(wDaiL)fMh@KToF3ALqPc;dBSWWO
zW?NXRSWCfYtLjYFM8^7UC{kp#nry4ph$dcTUj<C%6(Z`H2(xy$G0ooaqucNb<eFI#
zlB7=m`uNRsuYAWGJX|PgWod@jkeGTfs0_ODP#Bu9F|So?NDXaJ(P4XcPlZMP(;4sA
zs<uY>=fDu{|EP@9pAvkywAqFZYg1kEmEu?Z6Uy=Ewq5r7HP;Bb&FPJmB_Hl1>H6i@
z;ekJn2{RFFvLNT)eJ}8oDi8#nYT|j<*SS6(!gja0)VTVp(SGD3(`@R-pgc<<7)K=>
zd8k;+)TZoQDt;hgoNlz-?xvCKn(ygC6-tJ(7AK?hl><Xj`~_;Ok>XoR8u3Qi7s|x^
z!H$3+Hs%s#dZMy7@#NJWx2ywa?9X|0hv~h`cM5NKs77svTYsINb8IFL#?3%23RJkI
z^4^y7@eTPS@}>treC=NhP2oZVv$~g~X*y<pPb<nu>imt$w7X(14kfan>Zs7WJj-q3
z>{`^)wU``_7giEi>uLt)`J&%O{ga6Z!#NuQJkxF1mYDj@o;N15*^t(u=b^h;2_j_K
zNV+sNTchPbh8!@CCb-s-L}eR$#qpl>0>5ZHNgYZrHEZ`y`RgL($4HGOAqvGqh^<79
zJ;`%(+GD6tiK8PYOyIsKQQLsLk=7yDmSGx|wZ8$V2FS9&iIi?0YbN_ggWrd;Hpg2j
z0LIv{#UucXG0tYy+q+Nr-Y_AzA=6aL#Dcgya+ZtpHj+-sbPxZ1A5tEKf5_fI><@E@
zA}EP(OB^2?|2mCQSGKx_rMGPFHAz6pvMpsz4K#WvLR2b*Bf-Uk8Yb|)4FT4c0y*Ao
z+1iu*+WrcSZ$s+MzX~uFLLJA|I}SbcEeAVW&R2c(+O!@xV??2^20Gc7LeZo4UKiIm
z$&AA<B0nN%9U3QN07HlmjyIDPkXAmHFV63Bw1qg$O*epzsifw9MSWLYk+MZ<Ykj{P
zios>|+^A7b4@dTD&@vjh2TU7ZtbH|V54f8*-<SON+Q+RrD15mIep3@?n4^B=$Z47d
zA(lxxlD66Cq8arO+1RZ__7aDA)i>>+%G#<xe=4ws_<b71&HTWp_V7COBn2sMsvskb
zh%H1c8sI3&`Z?}<RUZvkA@PF0fT*s$F!awkLhc$4vw|c%7Oah_3ZOkS)~vw~po|~r
z9<d)p$dq*fFp7VC;ki`4(S{9c0}l#kSrc)M+P)#T2&Sz;N~Ht_;cj+aO8D;}*on|*
zfGMYLvFo)sl|eBW7x{Afk_CVkNXFLJl<va(_o04~0$rWP??+yrP-8rNc*z0PA)S2>
z6R0)k?<-fA_QN$WXrJSNwJmBf%@+k)M%zY(`eCX~z!Wv#{-ecD01HsGo8sj@@ym$j
zx97j5`&ocK!3%XUn}7r5?b8bQ1r&1l%aC4fzzw6+tZEWmHRGyu2=f2F_c}G`l$?|*
z6BHs8*1L`ag}HG&5;yKdKr+^Y^sdMCg&((ks<Ya%0y$4p4*NGpf1<cIi4XBLjTLO5
zxfWXHI9)^)swbvcAN(Q!NSK1u-oINFV-!udc8CFN*idQYE+ASmTK>m}se?+nMpgSq
z_Z~k-GuWz=ZR_d&z05BMK&&5Sn(i)#=gl8>I8EupD^ru_!`r?WIBU|x79#t1gW~)B
zl7c^ZxCJZ7V6503-5+d!E09-E^lWfFUN_?7<YOw2SpEi5^a|L*l|D%AwNxoJq#Mcv
zFzIpFP1>e}i1ptt4W=(CCB5Fi?_JDYqOGIwdS(zN@f}s{!trZ`!>anRoq9R{x3_Zq
zXF@FpOR<MJ>G2k&Z~MO@zl*k^k)j0tn&>?_?N3%UKHpf}%=2@xmA7z*31qPquuY%E
zeC;9`3pV9ci=t;<H!pXW_1N<hEZ9<o-xS1@fSctQjZW`!DZ@+hCoB|Q6lGR>3|X@=
z_AX=y!0ULIkJYo++YfVHOz2@q^;5K~_5i)`@_k)K+^USQZ`2**BH0pue3b(K(Cjn3
zUqq({*1Sw!G*FMLqw0J6+PZe({(}ckWj4h}bhM`N5Wgqv0Z!aN7>OpOo8&&yQZwF}
zBPzG-9Io5xhJtOP7*4V}*Sl6NP0e&#7T{ao<mg^c|0S9q-37#z&`eVZbwH$^h+FBc
zc1U^s7H$ir<}NJXRFZ$cpM~&~O9fAU%blLjrNq1!WQ2YA)Z0^Z_(9=H*Qvox$d?M1
znZcGbwczzyIk=;(?ryhc7TbJwAl8mAhTiI+TqE2A-w?^m9}8e>BVf3}IEadx$&X(Z
zON+xyp7_d=A{Kz>J*ZWw_qxTR3YW!+V=?~4Kekv2Km)p4gm{H-Z*N^(T)v`J;^5-m
z-*Ft1m-BM4&<17R409DhWg-3jW2gniM>j7gI8e%|&Tm{hx)_^d;pbxJIUY#)k;~z-
zXVi$(bKQ~Y8#|Y9!Qz@~?AL#k>tEijOdI@|55il|KfjSSJMQ#Uq@@dc8Gka1A;^g-
z_Do<|o2w15^tiXME2Dsn->v=njm9*p0iu}_MQ?U+JSf-#-?Sa&oh+`pP!{?tFTG$9
z;YKso3bxy^%dF05YTsCC>YQN;nO6+_KZ_Y$IpQPrbezwR3%dy8HsXSJ9I#p<dD%Fl
z9$dMuIwuVub(<QyDNJ0U`S^5Y$BS$@7?v<RSH(lDsIwEoYr;*3+kLmSZg2-bLvXEO
zH>k5vf7g3-F7@E%PARQ4=X$1+bWYQ}u>|zKwq+c9Nu5j@7!(g%4jiu0e1FWc)TqGo
zBI_8Y<3V@m4F>T}2AdyRvZfthVHt{6Y*+H63~ogC-aIBPE;wEG-}yYkE4iQdalz3P
zmG}40zk>ZvPcHd7>=;1cy1LVLU6ku1qu@_*fUv4ONt^DamJ1<KV=L3OEJ{B05`s**
z%SQP1YPpOK=;r1&NDK5W?DRKn@vz&Fx<jk>AVAjaP$jdIet-P#1B=8`>Y`Kl>wY9;
z?b{2shLoqc<6ppZw3bgdEZjI*?P0Bb?IYj=$4?4e>K%!sV@y*YZCcY>o@@Tn_*2bZ
zJDM2o3CpxwTyTN89xI2#p`a=l1T)X2!<^sQ+4-UYyned0*lfcljxw`Xu(-HbQc`ko
za3J-Gi8Cpf&tU+`C0}EZ`CxUVyyf{LS--F|EZ~tHv*=)gb9Pb(Hq>xzqHb#rN9K&i
zU^-6vEEd@8?95e5$0P^B@|0K}>MB8nYN%)!%0ryn!?5PSnbnz_uE)mOSE3h2!E7*f
z1@Utfpn?OT-QJoO)Tnm^+Y-2uSEyXau44nokZdO*$0z5SG=-*YhMN-aqOD~jx(2~5
z)`t&mH>bekl}f%x#_O@_x(Ts)Efxc~yuq_Yl4@@4)ID#!c>61vs3B})n8@ilY`dZx
z7Xe|`0qQwf#}=LKaNk&c*Ab=*WoHjRToOC%;$(UJZ3e%uivv6zQ~gh839Y}NU)kT9
z`@h(pu&1l+KWvr1c;DaN|FD1m#r*zZfBuUO{_Xt_yG$2aCr{boa(pqd%lC8-iSBJ%
z${t51-Uzg0BNLB;|DlU+Ypj@Is;ysl1y?6ML_TqiFC}v1_ui{p(gIaLf4jv2J_F+b
ze+R%2`+c8yy^v@BhocSs4IzH&RRPw5mVw2dCiwh6GX5{8AL+kjzywC~wk+YptG}(S
zt(7aAHC4mKM2r*ncW!KKsKXoX`xj^KtG;zTtMfqVwWuSSXSU*Zo+_g;YC|-q_QhsJ
znXdHend<T%YQr~^c92^&V6zqZ{zV|TD5%|>VN8fzsJF%{gW)r$7Hs_1iNV9ad{iJK
zwyG*;IGVyICcb?If#cBWBuy|(iyo&+gV>S^C<aCF<fZ~b9(JEX;EA76R3zo>dl3iu
z5d%QzDTG*mfU^-GKSoF8`;g>82t*$JzJKFcf%pIRQ(mP$b&6PsiHVT~MZn|b^d027
zR{I7M6O(}}2TTMH7$r~*nvj4x-|)yo0w;rTM!~Fq8`NO}(xG%u5{Qx`a6iBhselMy
zpaE1sk0;(2`!CQheMkthpw;-`iE5T_Xr%D*I=L~|IREyXt^^xx_8;*Dz$t-Yg8pCj
zPcRX@qde%%UvXcA;Ph8xxGGOQV*v17xYQ>lBmY{9(1-LSxzFw9Y@~?K@w(}E=LqV}
z8rss5WQ*Kiv*4P*rOdNd-8q8cMW{+8zf7_D_L^x7ARC_2|H!IEJ-d`(Ofa&!=Quzc
zzMi;U!f#$_;J4eD^mZ5u8K3bt*;R^n&jEMH8JFRpzVuIq+lK(38ioj0<g^E1cOL%{
z-EPO=s$p(tzc+NaRR1>}-|Jxya$d(mb;drK^su}fF#BM)9TNF1I8q4*jjQLE)EDRz
zj`ddo28>wwH(MqcONldAdpnhqZi$SxFmpQ#XI%*R!qDE9jK>s|MC%d@@Sh=*``I>+
zbDs&#oS*+A@~@YpY_*+>Dk>_BwLTv&BejGub08-KeUv)%R6t)oL-Z$!zTo;A=z)^l
zvLk*kM?|vv09%#H`;em6GG6PRLE+uE3V<34&80gG=hcC6&bw{vb%zEa8O4o%wnH{1
zQ)m!l0DYaUj?WRou!Azi%8ZPSjg5@*OG|6jiXkG6Odf2$Fp@32(F!kBr>hVMKlC?N
zd~jkoH-*%v`0nm!LPB>Qu*_N}Zmx3P`9xL0=1YAx*8WbbHV82jb7EevS#e#Rihz$s
zsZ8BQX7!gmxu1Llx6aAdQzn2uB!V2s$SVX<K*4*~<gd~{CMG7nef#z)T6`$LW@#v|
z1kAl{osvJ_!PO)N6?>@r`km0UrU58lKNBn3;wXBvkX9(#44zM}UtBbknR2K)ncn<Z
z-oV451{!s-dV^_`1GaU@|3No7Tzz<WqS|@L`F^V9<pN#zXZscchc8FA3T^xTyp5C%
z8T-T689p!p10zP6=ovL_?Tqz+%*@OeFr8guV8xyQw&vczGnfQpe9=MIKC%|h*M{1%
z`-G7Ea1jgcKv$EqkCZ3%<!vX7;zIVM8`gMSEpK36@FQ-XHfpg!SjjyhqW@P|7&>$w
za_0I4DmL5sDKQ}-rGOUb@^Lgv85H#k0hyJj#nRutR?Ha#okVAddo%NE+8-$E*6h**
z|5Ple`uwAT^J&cYmv`<p=PA{!2cAxsy*_goPX79AdSxEd(KnmmEr2b{;4BvljQj>7
zDWx#|{=<dZ;hR8oHL&BkYH7V-HkDB@d$wo?_Z5@9l^&NGls--rBkq|T;EN8c@ZVI$
z7l0l)VL?Ss-0p1*o523b-WY=L%s_(M@*^PO8giWLqPyCqrYR{9-;nY=Zb~G!#v`52
z<CxH8^EP_&eb;eInVYq^5mf8FH#%aI_fXYGos3nL5q&e}cy=W6&WS&^t%Q<+MTsoc
zK?9NRtA&)cwVprUnN1)c)UexJd>-#IjMS)Ls=4QM(kRPunX<{fd9`{yf5^eS*E}4~
zsoFg2aw#$OQ$)G%k=XUj#Q@;OJTsP)eVVis+P2)&*>mI%&8Up+@AXw7B>wV3h_J);
z*)AQuCy|!WTJvzdr$8892kD8foxH2ncku$`2mldKOH1nuh!_4aCigaCRbWu>(fQr^
zf>37^7Y;Jy**anmQUt)t%IYXw8nj`y(SG~RW09Wn*rx!G=WX&U6vx$chr>7hzh{HU
zJO;4mmPAF<c*g=nk_orIjoO^=s#BtZ2rl=-#X%ivft=7~4qq%>X3Oq~bT&-Vm#zdt
z7d)TNFZM-%W6|huUf}m2;o#sz1Xq#+3r8$ve=r|Se7=EJaQG9woUp0<Q*TX+iI#|}
z7DO{e)zn*GS2I;IApLmu+k`QnvgBrTYw!|#>b+7_>}abinHHn%njux}?9Nf{W#1|*
zgMGd`xo9=M{=$dqU*9G1)4WsHyfL;|Oh7Ls^eZ^uZu97DEu884PZTN1)v=8m=;uxU
zPz6VP_(5+!R;c0szPpQ@-}I=0sUc^!e87vIxE2wbzg{Cd%+6;Lnik4iQYE&g@n`pU
z*4p($N-qr}!yRIVBA9KvAov^x==1wx$C7q9tCOEhsP9<ux^Ywn=p&U`oXL_f(<4wI
z5eM@LEIb=sv@{B9Q~Md~mKL2?a$)N(GHozOzUJ@&$~hX^eK>scLJqyDm2jP-gJBu}
z*Z2p2I<H(SMhNk&KkY;E6;2hpW!=xu9LsQeB!wIoY#$M*6Ku(Cy;H6uC7#h7L(Kld
z8O;Ax`Ko{9lB8WNBpWKJT{|Jih2kA-IBn;?E--*O8wpt9ex)tZ<GVhJf*WGg&XRN!
zHgtk!^>2m@#ep4hSbouF4O<0j*r?adKHR={>eRq<NbEI<$W(nyNC9_reUGUs6BR7m
z`%b=&IJM~`S7lvEL;<9-@1ew?itFpA5xIMXEB~3iYCZso5<Z8A<~GCn>PVI7BAznB
z?f@Qi*0`s$9TpRr8^AhrOxSt9m$&Myibulqv8U7BBrLaQIaKgRPzab?!pGN`weMs$
zW^>k8DVM3?qA;kZQ-u372EzU`@tt2z;l;{}uWR+XBZ4O}-@X$P|5HHegm*g=5v&$m
zJU7kv1@ybMwKaL&>w5kCtX4l+I%5;3__o5JuG{Ktqxd&f8lSo#3E;Rie^ZsGxN&YL
zb(az~4a`0q4h|T0y8{ji=W+3JnSx%K3pWT-egS!cJ%9Z8k;(+kH|w5|kL(<+LXH*3
zb_g&Ed>qOM+LDh1qGM^AIqw@}){8U`Dp%$!Q`{0MuVcN*(P3pb=_WrYU)P!E@vM5i
zy(bA4$&|CeF+Tfg$jKi8@Y6QBufC=bf6#ZQjRse2L*q>P#e~%u)Nn+EFGV(#t=6GZ
zqrJeUOv@j%t6aQyBjlgaC^u?IcrVv=ZeHXG`=Gk=e&}0AzhZ1?e9&txT3cKk3(127
zjgh$B-#aJMoUbAvZx_h;aP5szZad%*s855RaXS|zgkSA_oM6t}#`%m|47oAzG0ZYc
z6+~L&l80!QsTfuD=`aZErsp?iAT{2I2~~0vwqbc5`-Jnnk(-hJ6QlR|)A;5p^;0vi
z{k;CV9d`YO-$0WPV#-ET^~lxoE2?_750(e`jm*tkA0h=~cI=A26~y_frlf(flnkJu
zvx6NTy*d$*;w7ja8`C~xBu`2G0$PTn;lZZV?5ql<xCLb(=QY=zHpe#caNF8%cQYp`
z$4U0x7S)-<Pd90EwL_8Msur_MaS*4wjfo*-gnul<2YeKTMg)Wh9!^8v;N@UiGLnln
zH4M$Q66_9I2M+x%VH4_d!B-4-7w(y2f+XmO%vv5>gxoVt&u4@Za1f&bC*<7J&Nc<S
zyhDCI*%}Nr5qOHH7w*;hD);eCHn*XfVXIes+O9|9gi;|_0#YABfB}?Z8MO<XeX~W9
zX8k08u<EO~g^gzGdIi|#s;GdznP(zeco|5_C|I*PK6dIfEV6&R%tOR5ok)0Djt5c}
zG!5NbmIj6_;#vG`AOzF<LzeFGPRp(vDTgCo_HK7AFH!;X&vcDFU7d|100gc^n>iTP
z42+wMua>jbTnVDhKJZ2grEsLB65wlr2P0oyq-;g2zNJFFpVdSij%8*)JX03ip!ev`
z<BdOvoawY+r=Kk=XYcVF@?{lVaZ145RuH{JI(MOD`~>bC?L~6OvJbZf_4M}kI>8qL
zWJN7`r$4Awd?G(|Eqzsziu3VZZ|4XPf3<W+H7MtqN8#*?F;BoPo=K$yNad@4ViXe1
zDm}d~+O>TTQdm0+8_O9sgPtBvQsDB}K=2zV5h*EYKMFLVP%ewVIZ-UXOV{xcmDr&w
zy<eXmt#UIfhZ<1}in>ktsZIUH61nYT#uqocoVky{#y7pbI9lG9Rf_HDYR;n3C;?$-
zFB5+wzqoin0d7!%(;FJdAPihPtaCp)&gxdfVtRa4evhu&6n-Ncx!oi6+0g7hkeo7g
zGBxK2J4s--0mn2rPvR)s;FG0E5V=TCb7P=B=;5ZA_R>{wEKjb$urWN(PyLu;crY9_
z53?`Ii%Vkq8B{X`C`3W4PULDY#|Te_{`%-^Z|BNg^_n^>I;~4zv#5r1eR<idD%ywo
z+dMH)CeTlN`kux{{)3I#cXX-epuK|mG;;_su#z60t$bQ%#JJEm;~?912@~<EDnM=)
z{{#tKESxF?LGEGrLriSt8zh+P>V7k716_;X^Y}r{9B-{SPiWT(P*GCbU|=a41(BFx
z*Ns`>&$ynR5F7pWg7RMGUf)i1l>@!mCSmqW;&0+w2Dtll)V80#Qz-?5Q)RU69GOw6
z6JKn;eTFIL^djCYk&nb<F<XK}KIe7Z(lL7v(v_7Z%{y%KS9{5CqC^A05z*1nh3lC|
zsngwf!?Ye<&9x<N(Ys_Mx!=dJTRe0+0T<nkDVHcxg5*Fhnuq5Qerf4-uaJ;E@lQbi
zq*_%G>tHAjj>AOt`5YNA$8LW+GI)BKzZm7Ws_Me{dvuS-wKKanjc-<eXRmwdW0R2s
z7rVS&OM?apSJBO8SJD$@qQN~5zabQl$m=ALQ9lo9bv)n}n6DV+_8>_zIdQLhZ89d3
z1E(Kz3Q0XvRkdvHMW4L*H-Y71@aAq>uTu=oorizLulzdD5(}pu`iSA(=-W(AE#}Dj
z{(b78)6hm)JV3+SIDb9!S5yxYM<jrek+I@)6abp$`^;qACv2^|x7FLg>4l1S8BX@s
zG<%$WlsX|dQ^=2sU~pV>!U|n;6B~_qSr1|v<-AtKPcB4Jg-^gS!62yK%SA=3XT3zw
zKS`aGhIwOGe3>=)r<FF2c!VlZ07Wu6>N|{qLSasS3$>S<N$A3it(fC&Ws4$I(BHUf
z04dMI3r;Br=Xhq6R3xCQKQqz-i~N4)?kfp!9ZoMHD`1SC<+j4%xnri%mbyZf<9PEC
zhqu?T*%&nf`4&@c?H_Kh%@tPqFXn5_!dz#{-}VZZS|UdRAS6INIL(j(^Z6;?d#Yrk
zehv^$^mZjT%d{!Lqac{w)-2ww<}U6<5;2``util6hGfJ{*>GTHqUwP&6sTl=!Fo;2
zjYbK2P1LhdQjdo!<b9<}B}qO<sX~7IDx5U_IEj*KVAw4dhYR(L!=ICS&naUf$=2f`
z=4}(Bin&2FLn4>S;uMB~$hG1WftXuSZ!cZ8W>UvP+9WI_il%sv@o(1A3Iv^Y)yATh
zsu^@YN5Wf<;$q9i&A8eeAw|HI#Y0>Yb-p<Z#JRua^QQ|hR@F9KKV1BdHYVFEZ1?{E
zS*c12Jl;}Mvuf?&I^V{?A=q^m=WTpw7u%nF8{bdfiK6qUc$br!0<ir0Mjax+H4xU7
zN)Rq84Z`Z2uBvc}p6r!R*ZzS?diVAwPozX@p<Q`C{$-iRuWn$7e{T6$GM{m?qyF3Y
zmv1v7=`JA)%-M4)%D?>Li`{fDJCcA~yNO%0LEq($bGvS^Y>YBv!cB^06v%<W--QJi
z-qo&VzvlEy+nH5Xnn=O#_-%kY3>vRf;F28<0L{in2e%NS;~RC1Vc2aqWOjx7^;_{1
z57bZUI>+`o%BY(AsMoG>S=~;OVJRuHR2C=C6_a<eOZF}Qkg^qKVXY7@pLWf0*z<eU
zR+bLZc$LRwtxxtx)|#l?zp^}fTF}QX&i7jiXJhxaEi?vo9gOO_V#$~?G)|z&K@m)|
zfDeH{PAEdb_;M&+wGDJlP22?zC7Nh0OASqLO#~ANO>R(|_xjzka_BK0tT&7<TlN+-
zEfw?;Jdf%0b)?R^04#6b;NbD>;?Q7ajF)}TlFF~6XWm9i=5ICj<9}vHrWcv;^9y|t
zBe}Y_5FHUQ85#QY-J7&Zg}xbQH3I?GS1lC7orvFW)A)c~GQ&<wHy*xx{*Mr?dp|-A
zmz8o$Ud%=UbW&=divtZ%5rm)>*e7f**ZXN#lWh0P{U}ePCQ;gNMsde$wg<a*G(;wc
zMLK(0NBsnDcYKe#F_L4p)6-l6l_@6+?t9}%Qi@@V^acXy(Qo)-ive;CI^2+7+zuJZ
z*~NudTfvu5$wA*r0_KvO+4XW?q)IX&QhZ#Mcvj7Juaz9G)61a_`w2GJNEk^yi`JdW
zP96o}r4hrhaHGrSVNgxvb*&sT4N!X!7nd@3h(r$mYL9<5l+SJ_d6L~TLGMhQhj{bQ
zf7Y3y`fGl=Ba_1i8NY<}dWuj{`XZ{>QV@5f6G)z|%;wgm*CuObh`4vN5Ue*TeSUG*
zxY{}C-f|M_w#(*IYH91Z|LX_|sN87#vloC~`u%?TGJQ)87o9YS=-#alDHedBk_o}&
zlRdgvK2}<~d$e<JjRvmxcxA;x=-D!~>WBoEmdlgJD!0Q~2j=ncir2lut}<)?u;I|A
zmeo}YKiqAb6+{Fds`k9U0r}S|GN)(Q+)SQ(yLCE-`Vl3UhNLA*tM8LE>YyTf*p`)M
z(NZIR<gWp9xZ60hs;ak@o}JG8tSOO*Sg^6GvxfRt^;sF_gMXnBO{J%#W;nyZP{j~F
zhWXdm0>-v`qu!k#f6h$}b-(lVYnkS=y?Kla{*yc*8P4l=UT@~m3^^Nb{A$4>xVh(B
zu6w)!z_86wY?f`BxB|;WLyoO7#{`<2?L{)G4EJ<))MzX7{QEI5Bo5?tEW&m=na&+v
zIS4p3JD#mWk&xNaRw~@bGv8@Fu=?3$foGMt;&1$cDe32$X1lLYj0<}QLWzNw!9>a-
zY%75=!E<cxr7@DN?NE-&>s8tIf;pYdh;<u9kXKEC{6RdMriKOuYcaY%eC371CH3E&
z>`lXVsxdFG5!>;3MGG8X)|td67Kd>33D-2$(|F|EPr%N@UDfTT;_|_Jhwz0NU<6MH
z{D~=$O#D+{=Rxf!=gGSdjpZTI7Z*|o^H{OLC%iB(I9>=}nc@rKkJ4LzxEK)2HHTbI
z_Byc2tWP~oHkoWU%~o#Ah7A?)%z-RJb9=82{_y|rK`Um4P#zn7b%S4)F4Z30jLyYu
zm%=qXpMeuhOO#J)e}T$^VgONOq^0hRRi!+YEj(9MH0+VPH<13WoXd`lPzq;Gz5%^9
zGltPh>y3l&|66=ZW#zkckGqlFgEGx*kWsy!`<oX_2RrwhUFS;Am7Z+;M|y9b^520l
z0Vt7plp;tBhUf`5iVXhz`mc#_OuG-M0F2-$-PhT4dzs}3Z|l`(ymOI){)9aH0yR>5
z!sw5fe}ZM92tUEuaHJUi^pEGS1#kz!fqu9+Y9PX2{=as?d&vGX(GyDl??mulPwsr0
zKI7?`03|T{Nk04+TmT$2{wo0H1$PYP6YwwlPnh5We!?U5m;3*ljGGjuv$^p&&6U2;
z5z3CRsqeg9?7tYHucwXs0~N6|5*YL41=8!cQD|_eOz#{V2;5>i`wci-1oq&aJ-c~X
z%%h9%GC)}QBh=xV_u310I0Q}Z%I#**Qo^g=MiM6+N)&*IF!1+rXUY(GAY}AI`%o!u
z%0p2Czuf{Q?m5jm;szoD{gbW;M{Wth-dXo)y73aR#tZ^mR*c3gUeMogGvQs}L=Ws_
z0pceB5T00Y+Ca4V@n6l0?O>@}WqGObP_z4BA-RwUWe+)-#tgBD<>H?ac}E}Rl%<>A
zR$)FDK08oIrQs2p%Kgxy^!nS7A??5g)R*)n5?9o{XsV4CJW@7K9!Ef81@_|bq8>&+
zYe}*pMit2X@#ak+cR-m<R@A&N89lI9QlL^xF{CO=tSTKhaIvGhH0!XyrrgjXk|wZQ
zo^$hmG)FN3MXCE!{t|GadPiw*#!J#6BmtuI`VyA^E7aWdi_oUEL5GD+xuwOg7^<rp
zsssQ#F2?&v;q%|o|N73Abb}<;foM=b0=tnl02{owMc?2m_#OpUGlB)!n?v5)#WmQu
z2-U~)F^od@UAv_RVmwz?RaYEk9;@(o2p96yGy>g03w)=Txkw2JpG<^j#P1Cq$tW)!
z5EjrX0UEHQYDQok51r;?8|cJM4rU3(@FvCB804~OFk_Lir8}L;Hdh}cmATcjv7WM-
zgjtxS(|`CUZn9vTNV?5c+6{rPGd-4|9(YW$2ZcNB*O-De`82rDaGjT=fZZRZx=tzT
z<A2~`$5bykumYv)P>aCDe$_h84g^1#|5d4MLuV}PS0X1+lo<#ijBwr1Ih>~lZkmF~
zYL(BI8z**jK<JFX2Un~jtdW6@^$o_l0W<qo+0Xt77(6}jE)T_Syx5Y06*-2_rSq+I
z^(~w(u;ny#KtnU&ln%y}AJ7OJBfIVvCkO3OUxOi421Iy5!HGQ)8espDwzw9+GYzIp
z)gyVVorFd-M0YR^Fo!M0G7YS&?j_)DtnLl^(lry5>%SQ#HrwEHm}Qakl)r`P&R;n>
z?k9;jnTE=2f5sX`S+kz69oV8N*cNH9X&_#g!N@kQ*RS2wSO;LqqqKV*IL!K$2z!8X
z?YNx!>>sbK&D3*qg>C8@32yuo0Wx<Zv3WY70jB=(oJ|dbtU~kd^g8BlQ}x>RH@c4i
z^^(K#B2n``kp?cJkZv&ixcUr#EZ<7#ac?u~u~P^m!_hxK;pL<1FjvwTf&s@R&oVT?
zQgMYgx7U=-#&dkT@!yVA;tJy*;bx;4fY{lGrofJ4$@I>(YC+Jgnj#f6R3YX=I)iV5
zOA2c?;n1UoVv`HEG5hG&>zW^4#(S*5Igl-K<vQ)~OTsF&)Vk}z&OB@7Y(|a~nCtj!
z7Lk2OGE`;Y<xN_{(88$ZbZ+w;+Ov(-y1VOJF~2$vL8v(XJJI!tXQB*1C?{q{!P|1e
zDKOTYx6f=Qqbjx@tLCGs_EUn|wEloz)eQK0ye|=!*xRKV_ts9Tw>azWMN_zsd;fAk
zZ3bWZAYGVjpEiwizdj_jVeNWxf@IA?^3&Th(F)|pZFjx6YTGuiDSFtKSi8!yg#5W8
zG(!7Q>_7t}MZ8NHKxEQ#Xvs%ns*pO*Tt347x|Uh1bnG-U*1f7J5NSMgi+S)Yg-><m
zd{*o`1Bt6p#8rkV+NK)%<sR*gg(6NhQxf4Ugu2fphW2(Pn&Oo1fTBHV;nP0>5d&IT
zAD=Eg9)t!cw<$`+5OL&%{|38~Tb8Re>skPw&S&(%1OWPgu)7VWinn;>rxR4$(^iFe
zmu#sH&VC{z4)uIfpkC-O`!nqZXv9hrZvt(UA&_L7R9YpV<^zjKdiuTh4!8$*C%0JY
zXrlr<rKK^kFP<@;Og+-p-X(Sl+|!25-{0|tCl3^-bIv+3G%XuNdiv+2#<jTgSwgTv
z68sg6+m-J0l;q>bz0_gTHKjM*m!&=C;n0{nB=T3UiM4gtd|0fl-lh<CR0Aojqe7#J
zLUw#Fw$wAq@<3;@M#MRP)Fmw?sQ{Abel_unvx3gk0xrG!G%X|HBQ7#BGS~d94NO~a
zx<?zGvcMbBiHCR|4|lu6t}h9TDuH|<e8(TYnO>~Svuy%z$c>gmdypal|5SN;LZATf
zAK`U@V6fOg6&DUUf^8Y~JaM}0BSkUp_K$a;L{|u?dyztN#C%vqG&&^+kOu=cYEX#8
zdXa=Ed0*|;189DmCh+=B<1>sZZ@s8#`}k>f--3Qw{ydxaJ|vsmX|m~*Qb>${sgGCO
z>n*g72Xef`=g|_x-r1gLwX?Rehy1Mnm26kx(nEa=Pbc-CG>x1OU!#5|BE7ct{1nzx
zr}mcm2wAL@*aSmdO5P*at&2hE{PYEK9xim1wXCv|X~t88u^RL6V<~+ke`3*e$IV<M
zj9)CW(GytXX$ffWy6(miqlgXycUnp@&5b%x2RLL`tgv&_h!?Zmv!2I47k9xx;(r2F
zdj7g$^`N&?ai)A`RUJ=DExUez2mOn-TX!_4p{5#FS`b(-Gx{vy<)K6}_=`{CqM%M2
z!jIqjK@k9t5f&^!#<K{_$%O%R=|^dgCb>`_N!ngKGE#_j)<t*tFp1T%R>^!r-GJ!Z
zKE&|%5&2=AW!|K~BL)yrhIANTn_7N-3j4tDxiiQra43*JpJZyA^v(13CJY8yv8nw)
zWbE%J40$rdP5deWxB1d?%Y^X<+b{u?2r`PMl!)Fo=v#u7Xu27?hd7s(JyHY0oq33d
z@jqzMzlIIjfyge!EuVwRCN3*`eN$bXzC*Mx@8PJ6{X`2j^eCLu4}!O?5dtQ_Wc#(X
z#8JI+%wMU&)FwMnEuG%yNCK?o2Z88@`fU`fMm})c8RT^u-LEI!V6JGM^JJL*PJHF|
zPL@2^^wzk%Zz9N=g=RADS63+Fx_}<qisg9Z?zgqOFsyMufPC8rJ#|^x_j`}jV<ZL7
zPy&BbESA<?W<uo+1-o;3vrw1QJK2(B)swJ^;b<T!DTE&w8GI`W`a&Q8Dn(dB6*2yq
zg8l3xiky~LrKl9DZZQ|71c*rB+&gO|gDZVx40EV)Jt7#D2Y|}*mPJ-L7<r)Vh2ZDT
z!wyMwu3~aeU^ud3&pT)x{52+ygV?+??Tz;M(xtmQn1UaPLDy2+CU0*znUEbR4Kew<
zce0TiN>kRY1%IgOj3Joy@}ea(q7gUx_1tm3sR)SW7elY8nCJ)4nR}7gLb5&q+1+~=
zW9RuBHEWjcPGuSMRh6m|Q+#`naGxj=P#*xESB5-8_K<kb`GYju84Zq&5SbaXXCjXz
zQ&uHPg1)%76@Us2DdH0HMeGti^oe{D;dbjWv!_oevxiT7(OnpX(Uwq<aE~HkzPaae
zQa2d=Xrljykp!q*1{~(|L$ul*D@D*t8Q;uJH|%eDRR4{!Q<Z)c_0sqoBKSTi=)H;+
zKLd?5*E$IW<SXQdq)rKYyx+&lK#i`G6A6u=*W(}Yaj}RB7Ehf)WiqMm@9avl$H;>s
zqu*5gw2VIMtN79D+d=ym{bGdAX^RQ1%UdVmEgG-tzfv4mdLFjVJa?P_{r6$z7+Xka
z>W^vcX9V0<D;OA;&gW{z<e<hTx0<0wm?Ec(|4Ko=%*BT-MMZYx4y#|!EdyK#rZe(e
zt@A>g+TVQvw6<n8*%z)WUifCj`fhAcxwvkjc~!!p8|IT9;Q-4NHEjH6&N_9$yc?Jz
z^b^{wY+PmfmSsySl$CGxQeO;jEkf&6jH_lT^0aHb2NY9`m+=}1zMTkxEE+dg;}4rD
z2jewG{4<)<Ts5hS@6UGAk?zTSE$ovKG@A+wcWbjY1@u+T$baSMabU(`p`3&B-?^uz
z0eY=O37~azX@E#xB8(`rBOc)YI=sFU14$pN4%Or%k#+Tx53w9yU=hDf4ER0{R-ncx
zAC=a_m%g1FwbQ9vA+#%xue&C3{4*e%{)Ghdq0fsZt!#A1Vsi(~tm5E(=NbFQVVV=u
z+DEntF-a&!e5^@<dUItmDSK3WeKih?6QKIW@58%%J934IhKkA99r!hHjjcZGO_Yh!
zS5Q#ed}61PK>2`%jKU0mE<)xpNlBhf2Kpz3O~hS^9$U~Eha!J!aEc>i#gF$=Vw-Rz
z7EV1#--SSn?;)+6WMS%q_2#~=zv+wnR!3WpWrH|Oa>}}D3MHpIH>gjv5-bWP7kQQm
zkdY+%QJ?wgHw-G_rDu#B7IAs9q3RmnGq}@lEz|4nOZ5MmNEYyMcd(hLZpSgJ9pzyk
zQr_}023`mL3M>ZI8`Y6cE}$xz%^KiXmFd^4ije`K4!kqB`AU$id)yjzwS~R6HAIl(
znh1a>&QH%ZYN#NIk4Ks0?&;%9L;Pa?F9grE)9)LAGUK+ei8C(S-LL@(KJQN!0pUJh
zG6ASB<z)K=0mSkd)ITZTBqkz$R5v$8iAth2H#Qy_ORPzOhHqCP?X6w*e`WF=<8lCz
z&7W@aG7@aP;SnG?HjBJaMz+0aIosbD-mhtFuZe1iXWST84QDh?)$%9oy-z5X8B@8e
z6s|}c9LWWfr6ESo!(WPXv8^aoOTR4dsuX^ESa)X?9eW&jUOL~BwJ)g0t^NYOay%1U
zW?JQ>)8i-FHc1N{rU=EYwSyOPlcy{vlatPLA?pgXr;9uc{Ing)dPV1ak51}~8w0)_
zmC}!c93M&DG{esn`B-xAIf!U4Hv%pNMe}kxTzFjv#yNnm_b=p;Z5{^P-j^B<O4_Zq
zYID7t^6c;+Z~G<h@#2_*`kVYFyds5Hsn{??cvY>n83UM%a%=HB*TASi;uA0xqJ&O9
zm9xQ+AMj5G*o@D~R{&n;!rFA?K(g@9biIxH--0(-7z$ry1aJBREu#ef1V63o`3Y8m
zSHkdSt%kT@9+wLr<&|C2Ba}p;XHVtt$JpQ|mrFl5Z}*6Cf2l<i`nPVL{0_R<p95<6
zmZF<D6$muSf}SM6zc9on@v<QJ_Nl&(0sJHT33~XSK5*s!cO!ftycIqSzI|$eweiDW
zDfvgcr)u02GNSXaJ$6f~8{hnReR>)np0Wq%F90atlr9!MvNo5MZ5=%=w~7hIUijWA
zP~PwUG}-FJ)mm%T+9t^DYCC>qx6{({&URBn1%!Hc)jLz#PM5aVaJM|78KwoFP=^#o
zB6XzxzP}+K923m7MM?vo^tk0!o*L@>73`?IlHvv=bH|ZLK;MkTa?|c<T5AFT0K#;i
zhAzM|rzaK|SLm>uSs7w6Oaqkbw6z86>s>TVpp=)kz@W~f9}O;5fF~na^DkE&{KHbO
zS1y)US1X}Vs6PfFItGSvVYP|5m7X4%D;FOhp;zZb@`N{G`om80?mu%Vz%rdaw0(+h
zwWk7VOF0Gut6Te!euF*(Yfa7__&Dtx9GM%_Qc{W(3u7hpjf{+3U0u!0J~zHvQZlVB
zC@7#`9%_oDuTy$l$Uuch+$<Mt#>!)s43Rr9PWxVAyWtBEi2;0ps<ae%<SubJ-wfoK
zuAFyt2nArB-;`EXRt}ReF);}Wo*${NtOwKYbzJ}O?jGVvOI+~vr)xs)ThUxx40_H1
zkAQ|Al#;D9+eky;EgDTXTer$SAoN9qTYrd^j-a#a;_PZ`=!9*jdIPn!ujt)@w!+kB
zpyXi%H_;k%G%WQ`KHm1AN-@F0$V+k%M<AOW(`ykZ!gK{}b=~*JWq4Xzq8lR*&&OFI
z_Ff%^?yW5&oHx{6OW}r#94DPK54(5?D}<EsD8BNB?;a&^)F@+X^`ZG^tdHlP3AgM9
zkP-TX4WI#e$C9P(p+u`3PE2pO(}UPHjsm&#vlV(ygGO-DZ`WXH6H5}QHY3vsv5|xI
z<@MhKE#tif<{+4*e5o99yuu6*oe%~MZJWw0p0Rn)2}|`0le3H%fagaAP_AKmqtlh+
z<N4gm`SS8Y*?_N$9q6+GD8pjh#QX99!?)E<*`o2j)lj<(63JJjNNo<?M@FcTfEo$;
zl?<pvyu*r97XhQGxo0!<hR=!WMz!EGjvBhIH_6>86wuNEnPi-d6hKPSNj-P3dS{~^
zhyov?1_)svU8iK8GAqeqYR9tCZVUd#Q4L!VHOg;~0!=9o{(Hh^A!6ZzzyPn;L@(dW
zYf*hWejb4NF8M}YXPlCRLH27I$;iSacKsao)~I>y-2Q=mZMEv~fo-0{LH}Nr@5|cZ
z=;T4$jiFSo(}K%hj?LVIoPJnEhk_nsCCGfG+V&>HHrgarepA2#wZQ(Ea-cI>Ovr}V
za)x*XJ39_unreX%Y3{xlh!|B5Eqg7^eq{nm$oplyMlHb90ZHkuCL@|=1Ra@SuKjw*
ztugs1K{)5|Cu9J-)~FSJYT{nmSlwAJZn8|J#fpbOQz!$$yqc=l%BC>bd0eVygvGTh
zFH?Lpp2t0D^Lv|>%YsyO!PpPS&OHJ}_GfldC7oXF+Z1@OKM+VPb+Nl6)1i}0FUjm4
z`F)d1#}gJQk|}z4MXQ}X2I!DYJ8059y6uRS5g3QBw*FF>0C3>{%47dK<g1YhC~a~)
zKt899A?e#U+gZ_qIb<gMtVF0)NG@uHuuVp@BTY`wUnFdW^ftNKHCq&&F)@TPuv0!q
zMdMhVcp5uisRB@~hEwqvpcmE?I^}+Av%4X%KZz?=s=@~BBEOYw)_Eln>W3t2iNT3f
z-GX08&3{TNH{i?3U^8o))ODOx-UV~4-f^~uyVJ<c=2%PzloX21vO%(?z^Vl*>gwRy
zZYk;q=g*K}+h}u-;MK(1fA4&P0^8Q|@C4~T9)PeUH3mA{p}yd9otkTr<g`In9nc1>
zt2Lvg)&exnoA&AG-n%}VjdQAmb==$840QE;jXjTI*#6aPx^vPB=qv7_5Nw98KAgFU
zUv)#-;E1265*x6_oV{%q?DJAdMZ~5cs0;^1a#FnPrvY<8hC52-knpmwnH>nM$vCj^
z<eZ1vja4OAv*C=(D1|YN)ZhYSCY#{cna+x8{S(-DlX2;gu+C?4w!XtPdZ0;>j}Cqc
z3F#Ks_-jXuiiBVhiGadYzo;TisV#UoP)C09EieOjXyZ7EYGU3!ImO9Fdr3Xpm}>Ah
zu6`++4fCcuVb`ZmCq(8<kzy{v)7jn}Hg2RUx)@mIhLg)LIMY$EdC1|w!q4-8PMvZx
z#MP5nyosAdlE9Tn<QW~#+U)9W=j5b8iVrTqt`CC~%3&8VH2rf%ptH}YgP*3Yl7fH9
z4GZ9XwLu#h6fUZ4=XuuvJ(~9!15cAkz_s~#KImI-aY@g4^^NSaFk#i{hS9F~^=5Uk
z_<pC*^Y92NC?ZYOy~20-_F(*DPW8TTMf$<{r*fLqW@&JI&2y3-C~%mkxzF{`Oc^4O
zL3E7e5EXs789%9BvtC<%9AirvD{%_AF3B<koq6Cf7O|iUsMlJKgRf{@X-itqKik19
zlK={A<NKaDr!NP5X?X>bX&IhCW3F+q=X>?k;C4UgbfD%-I1ZQqNKc%(=JA(Kzcu?3
zHnv?=7Z^Fh)oW`3DN!`76gKYN-aFb#04F6TMq1<zUj{;ZK<kAWJ8d<K=sp-`(_rSf
z|Btb^fQqu~;zun6MJZzt1(eRAy960RlrCWaX(WZAQ&Dp0?(Rl%NJR$e?#`jR`#uA{
z-}ip&fB)-V*J3#{&xw8ZK4+hO_WtejoEKL~dDoN!{y%SIzRQd1ucGXrfZYA@(5COi
zHsC>1kK9fSeYA%P?ZN?k+dpwQKm%&=ol{!;pLbB}+B^|1Z)SZ&JG9Q&IC%wmcm-c!
z?iiA>Feve-|K5+SNZ+0A)_U(XaB!-sUP|A#^F9h&2>B)yds6mm=<G`}l_kZ*+-MA@
zWAYTl=k?nulj-~0B<o#JE|5(q0SPnO6OQf`Eoo$j$LF2jQq?#KRn7}1D=Wt7^1;Kt
zdaShNBKOtP<Y|u;a;(6GdCte@WuQs>%talyMs1BU3QjXHQ5l<AIL9j7IlS9)&;9WV
zdq2IEpia97>Sa5^A+nv9FlU^lO)rQV=<N&O&ix1mJiT8KSrPQ%Qn!WpFHg3~Cl)uQ
z$GQ0Y#^deT4uY+ZW~&n++FNez8J0+W8dS=+esmgQJI0#zRm~zY$Jw$+wO#8%RP}~T
z2e@ZP@X`%zmqL=&;84sd0mE>jFX$Ks;4!~aI>qlLwmcMnaPL}9T>!P#oYY6ZDv<8E
z_A+@eVwIu&>OeVW5W3EFYyqeR!~*{P?Iu7kQ0#^gEv#p7kV<^#l;J051KIt*u?D;r
zXlX@7TkzS&`btU<iPl(|6BoczfY{4oJJ&+X$Cfwhg<di_@Kkzz`xzXGheZiQm?J#9
zJ>>CO_GWen=oGOQ1HJtp>o#8g@^VMk4GgN1_D4Mx&L?|3<y;)qRG!VFi?^HGqA?md
zJ-#tvYiny@J5<dcIlrqN)Hcz%);=!3c{&ok2{8Dz4ouE@rqZ7B;&k$qRF=j`WzyN?
z*40c#58x+M7VT!g_ENWFc(@~s$QR^W)2j=c^{%*eJrD1rQhrB~Y+80ez?;m^{!<*~
z?v7Zhgn)R4pbz5gJrI9mCur_HZiiqpltjJQ?65X;bi_s`_Y{}h9;rfbbMDP9wPj)-
ze|<+4|D2zvgZ(C2DF1Y$Q$LP8u9z~i_qDdm5sv))4Ef5?dTqdt>77l#BcAXiE%BEH
zdP;HY0ow4fVS_pzjNmbcx6<cR%9r!|z6k!IlafD{nRR|w!U4uc69q4)@zc>7<pN26
zstNBN4J;bVVx0dxAs|;U&H@7|-!|g{`K<kBV+O?^JXs57FkxA|@}B|@V&UYE;89P|
zYDU!$>Hyp-re57g_sV_jzg7{DIFY69PfwUY%@>=au@8%xw$*<Fvlu-JpxQ6!3p%Pl
zQp;ej-^eX*2^W^2{LA2t4jE}`@7yw$1gzx42B<ZWcsKOLO*HGT7aRtxhc=G1+1ddc
ztXVC4>7=tpdAQjR%M{b~GVC!(F3x*X5}bxl#`)CzPUwd_#_2?d$G?*+Yvd>+Lr)bf
zppyQta1O}jg_`YR-XFQYHt!38zL_AOJLu*D1?&~`LJ9(zU32mbdtQ8q=wfj4r-5l_
zEgguHWXsE$D__ube*Bi2<pz05JN^BDIQ(~lM2r9;JA)ypiLgd7jJ}n5eWAM|CNN4M
z7J+3g#sc!F^E(on4VNk0o<oy=%_+ZkwLmiXjOxX__ho0ch}JJ2HV)#$LF;)&mjx8;
zbD=PK!S0-l{x5ge3U2~QqFZZGD3OQ414<P56;tm`!1D&-&$c>q{d!o&u+4DKEgc4)
zOr&yw27PzhkBom>{IL|msfe~N3f`s7Y5O*y!M}nrT`^cn@@p;@lb$VA<B|4in$1D`
zeX8N;gkKp5!hE52>b{{*CSYYQk_oq?p+dW-q7FrShbO3~Lg@94Ue8G%!8pe$jvA`q
zq2AJ$Ufs5^nWmJl(`@$6;~XI4pV`%N76jPEw(vV^-|AGvZa!uO&3s!RQEP|z`TDoy
z)psr+w>w<#p5$r3f{lvqaq8UhvLF>v6>Fa88?c#;#XilRTYI|A%f@dd9R=@0UMSKz
zWrW(o$3LjX9izP3*kErFf_5e|!XAm}R2#G&1XiNgAQVVNV8-&p!e2)<=si?p2F1`F
zynD3W;W3oQ3G=dzcwjiRCo7mb0u@yZ<3sUacWDjp3&;JUQviJeH#q4rphN^c44!%P
zKeNCW<^M!b$3Sktq?~|V!S?Mpc>{FMP+{a^k&mJanYz9*G&ON?w6ZpyuZ7xVI<GEY
zuD$G9Y1%xz*b~ax;75t0?>D+$%E+(mpo0mrQI6x@*!(E$_Y=w;5ax4HIx+cgX(+O=
znm38vzl^{l_h?JkP1+%f$jrWlx({@2OZA_{)27_<4U1aaM>;$z{)jv)L_(V}m%!ye
zIg%)Pn5lEHG}L-ZK#Q$RhwSah5z`Xf(}YDG?P9Ct5=7gO#iUc^T5U;fZEaOmRe8B`
zzH+VI_xhvx-RCI`%F0K?w*dm9uv1L#qh`P0M<>Gyhk&GJsL>Eq^;266{Ai5wz`Vml
zh({(;jUA*#!)Fvyfbg~eryL}dmZC&rJ^Mn^c4_hu!{a%cHN2<D3ZWqqp^=FR4Nc7p
z#>UoG-=i$Gv1r8hTzWLmwtFJ$m6VbIAz_*fcx-29krkLs7Rbacl4T&6(+Pq)JScrU
zKS5rn{PFhO)fxWgaO!{J(hi$3$$)~RHrax<$f6P5ID>!*pZhUo2g+V>^K^fjTiSUO
zZ$qzo2kIA>Yq-R4-=^oL1K7a)!g_nu)ND~QUpY3ho}M3)E<Z9nY`^xSuCA`Mlwz``
zdduqwmaBHU)T*N8>K6NN;yN|BXa2}I=I*4|`214kJu(fxGz0hlR6P~->kg$|L#6ac
z7;$IZ;24(>WuD3-@LojTEM~K&E2mj5fxLTC_9)ANIv9cFf`Q*c^*}4D1xoWqR$usY
z&0CGt5{Mr?m1&8gR=~XS=Cc<#{Oa?-$!Q_epFCjh>^To?wX8K+9_(S>`fEEF8X8B(
z`1NhLBaI7IdLYF|4~npyQUMC3=SnWk^65D|^LV48boa8737IV#`kHXpxSPJvp646Z
zCPc?;IGNq2xNv31WaBH;(5fMI-Hr8pByI#2Yci~=Kc?lcfA{K18Y30e?`7)~t>+Z1
zP1IBpn%#>%Tl_ZnIv7X>EWBlzU&}BOHWbnVA_KOhBw$P5^uBke|1w@#Bc}r@5lu@Z
zlQRZNKKa1{Y8|tbS#8#rG3uwck5-}T-}+2PS26Nya;O7ZX>0u!N)|)ag%W863p2Lq
zEj_N6g|vI@!uZUp8DcPICfmdYKToZ+v?e4pxUh5HhcB<KF~q>(RR#42tv=-Ku%5$-
zLZLGQiAUv<-%BB`7BU|~Vq^PX68Ol@ssD1)y0ovzg9dfq{`H0#bW_8`s2c}j^1Zad
z<&)zLp*1w^QP__kM`2Gtta!uwv$$ntg*H@T!O3C#H%-9p5CnGvKL}1AY**;YK@iiq
zxT{BLq|$8e8u%9FP=0t~^S)0_O>OD+dCLmu>C^0I9vb|F_vHSR`G2p5Vr|*JdaQSm
za-iy?s{<ZpU7{t9pt%Aiv}4?F$FMKf`gY7U5Hsof>vBHi$RbUw><-LQmY<Ns>9luo
zTQ5eM;1wml427NTu3`ZcaY85Vb_vQ8d<s`!d+SwPQzuL;-jpE_1;15gdt+xdDhgYd
z?7dx;!nH84kVDRIQ%39}G>rE@?UX5~#j=Z>Vq|VS=^S>foBODlgH6v<)Fb;5ys}1m
z^zaGh);Drr_w6F_+o;*km3&88wX3LtWD1=o<=}Um6`@n3om?Co+o)N;sl<uN^pJN#
zsRq`Hbj0E!#F$<Q_8cIF9g$&8IX|SVsGfIZUI&#e?ALcJ4y+=XoSVl|2N<$iE2bPY
z7G%D)!wLAGeoF`^ES;Sk-!&zR`KpBv_&)&H$WAOa_0Y#CxPg!stYCnt`rZi0nov_@
zjgsS_OmiADubZQr_c*|pC<+@eqFxh!c5X**etQF|HdjTFCA6kh*!GUZ4?$ove8BE!
zmt{&Jg>vVeENp;AMf`G>Gu+%#W=mF)eApaG0egkCq|pVx3zvmzXy2=v7Y~E+Xpdkn
z_&KuNyepJS$;1GetusJ#vA+-@JB%62WW?tdVcc1!!v7Ju%AgAdn1(i^yqZY^#l{3z
z{HYa8E1KU@Bs7~UAoiB^C!u?Llir5q+1*t5<?4E$7~c|;UOp;lfEEp7X1ruqAC;D3
z*)mRI&+33~ku<j4qVb~3zAqP?_3lsIXubEwH_~5|@mg=9_t6yGK#9l|dRsF$fWwM$
z!LVOYwAK6*t`9~<D(~YKJ`{-l_>9*Olpxl}Lnrk-yKQ19W~y7denf;cA|>01PF&y7
zHbH->=5lDN-;#qM7YU{5Q+hnP@^Dj@KVB5y=c7%j33fW-<2~9mmbb!qbSAP?SSfKi
zMX}fyUuoJsjN7iRj98g~V#z(xY{wWgO?mJ~R<DCby2EjM|A6T9ZPd_5DJANDyhS>{
z53RGm>=gA5zaY>idw(tB<>V^KQuTS8>$YNlW^m&u>Zz7;sKEzS{|}idwr&oKbFmdr
z&wRZKtV9)&M#a0mJvoDL0WAx+F_q1UA`ICuIwe#C0nOVuWw7bTU;~EsSyS)<wk`U|
zgx<zKw|Xq=S9pgfDDaT4Hs@lx+7>#1(|jmCk##63zRE}rGEW{@^tz(uCv+Hb`1vUR
z(8=>p!(&@~92tL^cb$dEh({mjq_*Xw)km;^AKrJ#{zN7Qif6a|4lXus$B0bsJNL#5
z4`e=fcX*LaQY2Uz3;z~?kVT4ne|!0t2pYF??|nfne?-y3w6$+d(JA&wa+VHFO*FRl
zwit!?z@(ts%*!WzP(u1VPEt(tA*Ua}QdMErxh;m)8FtaSL2Oz1Azz;;z~CkHJ&67H
zbR}&)*&`UKR*qBvOjv&TpkT6YOsG0=Sr2@Nd^%?Q6(QF57tS{e`J*tVF^j#V6eAZK
zTF5I&j*L53gBC@arHr+31C-G~Eln$!oKrjGNoHKkg-CnkD>36R%ZK_M9<{X&nK=p)
zM-yZWsFank7iiO1RtQB#B(+3($MNn)P)$-ZcDb3Tj*Clt3ZwjTyW#nit@S<?XJ0}G
zWE%^&u5*Lf&miYPJlGH}@r|a#JqrJgWjR*;U9eZyt<294Ts2#uMN+`=%dXID!19LI
zY1e|eeY*9i(%67n-yWlhS;>1WGP?VgSY-Ay@gU6u$6XBM{eXuDBK_DFkF`8ipXqE0
zEPs-ATZ|0tJ1qT_=*6Tf1*8J#>GF_vN*z2FSRktx1W<DLFN}Kx_J7M2K#10of`tkj
z3qol?9)C(i7ZF&#exX;6c{$X^Z&Fmu=FrsH^u=6auX;$Xzp1%773lTE=;&LEk;+S>
zZGZI^{<G~x0T5w)3R%^fk@e7$`3GyGbtsfw5H7l@O~rS(W`5?inB1)8P`b26C_rDd
zh~PP03n;Euk#I$dr-bx6#XR`q1CS)=Y!*D>^&%bmT}G~`3wg7U(W+*F%#Hp1$OlL`
z_7}JYn859Fcds^3C|=F!bdWmHY}{#Yl~ks8EOa%{8FnaqkeYdUVK-S968H0oWE)eC
zn!Tqq5DuZK6>JV}gB*^){&>b2A!wWn)<xthogh<E>1fbl67+lBaAn0wr<aP#lyAoN
zhWON^lf7Vl2oRU~`GFpU!T0h-8k7PTm-IO#XfJRk1+3wip{GBqjss+tFZvcRhMcif
z-S=?;@RzR<!<m4Yvomr2XSJeU8g+`fJ_W!%_}wVwz&F193WKY1VVY{0ryk`!@&bb#
zwgqu|M!;6^4r%^iq3p#CMoe1J45f7M&=V3yf(wcA>!`|?J_ZoVlRlXah*|*0c`M7N
z%=xTmsZb#G8$dxKUsLnoQSsl^JFO&C5mNdatC?MU@m${8826u29&%uBj)E!Gs`4MI
zTAWQ`GG^w<YO!t$10#`CnFTf6EGK8GJ3_PZUG+N)=m-+C7=jzW!=R+DMm|=HwQ0@J
zAP3gRR-&SnfM6B0JoeZ&OstMO3$#D&jI4WshF><(fT(9jTUShSA8y{}R=e}J4LAz4
zYT~~-iHQyYg<<Q4!Ap#6UALP$hH7z>08M;Vu@wUi(xd?aiR1_%S_D*;1^WT9u4`=P
zRgv2?Ag=${8q=>Abfo{*0*Jl}PNDm5#rSWl=pX;-9|+W3ho@4ZP(7vVFAEKX3px^Q
zNHrI2Yf~%h6t%6N%gYU8!hjY=x8z~PGHk`d$)lvMj1GMPfe=4AaHkF;DyD#{9?TJg
z?#M~aVj!gO&gy!f!+~->E35pc#MxDgLTaY^LAAr<1Gl4W*Vl-yobZ~6LB}y6bsz`^
zbh*@qluu<5<m3^oO@jVJ(t_e|1(i(Ycj(fBPSqsj$hiv_X1U9Y$KnG^<)2Sl6`#+L
zTx3^V8u#Pu6_^WYLx!(O@l1iT_f09T`nxXZWGlZ9q?e=~7uGdSffY%9_F678C>c@h
z+;~Ck8**mqY$q4bcN!%NzFWT@Kh<QCNvtdM+#eVr0HRHT5&{88ZV#*CP&)Sjya>3o
z2^O80bypfx&w(tTVD3@1op+3c8vBn3e8&4>@S95&+li(yI?!(@IN;9~38R&_)y*$f
z+J06ndJ8(#yw-uwXnE8q@^MGZLGe~SC3a$!r(#xKuJHGXrH5xpNzeyYw+r2-mq;Y#
zO~TDaGWaa5A!9zvgSu2BD49q+y5aJ6CN_01bA*u>eMJ`slMnX@dB~IHi34e^hECq6
zVQ|~@O_P@Mtf^K}3%Sa(v%psP>uLgi$N`Iog;+I>yr@aSr88ffAM5)cKhLmR>YLui
zMc`~(e&2*uhB&PY;FF$*g~LA+H|UFAK270D%d?-qbbY#C=DrZ-9K&Zqz)*fzdy-h|
z^uc(}`xbLtB#bkeE*wJ=vG!Tg4@oJ;IgNeL#FS*W&8k$a(DG)BKOhA^HKFd4*vp?=
z=Qf;4J?~@=WmDYZ1&I?ls&rr|$HQAUV6On<l(Zc}PyCdYPy^OuF4`-)N)<CemJaho
zrECKU7v42@e?rG^bd=`AaNrg4VNu%$BaB>4GsAi+#w9N<k*OmN1rad(&J*6geaAL>
zTPo9*m$06iQX{>^0rRn(7NU{0FIkZhj2X>Q@U5dP`dJSGP-4s>4jZT>_C9s{L|W7n
z&s1G-1Bv=cdzckC1k=iLC>*moVj|S(E|>{_YG-c%)qG;4DL5oP((~?w$8jwh8}KZ`
zUPZwz;?7^8$lfI_<vooC<wr5C8o5G|&^t(`hL2!?W|2_{SK_N^X2Xn)^ZHN=Y1Nj2
z`lbOgZIe|-EmkF9N29oh1&5))E-cFyV5<tP_~S(w_=la`@})3JhxK%3mDe*hXiT2P
zyjB_BE<JWZ<t%k_AQLKCo;*^Tii(3w6`QidRJ5S!-Ca{3FmHcBd<5TtZNKh-sC$vI
zgXGj2S5Rb;Fu+Y!0jV)2j}oQSngmn%&xB>OrOTiS!b32J%)qG3oQkuP4u~Dm3sUE3
zj&4K8=+5F27j?$no;D~0)iB0w)<$UK)R}m#UHS~*k9(^o>;}X4%{*XyPav9D>d~ec
z(EfVf95G}BKr2>D$4fB(^2SRCJjy|SsWQS41<wkBxWTl|u%h66<}3y!sqjjj*LI&=
zxJ%yCD}OgRqVHSVkAhP&*4x5@2Q$5;o{J9fwqjHE^4ONcbIv(`LKUsJ?nc4KZ(!8g
zmCaOI!nQfGW#qPR^>nK!N_X|N`$?=)g~TwqsA1h`_ZTVr2;M*-j_eT{5+>jV;@6{3
zNOPm%sDZ7cZ?(6b;9n4xw;8B3(l`D4mX!};=Y4Ng`p3bER+|x7hw8Nwixp8YIZlwu
z^MEmCP*0g7s_nant~q$|7H|^9Le08H!{?r~BWnl^Ws_kWtOoT^hcb!E;k1X((G6>7
z94Zan*^d|JV;h@MqNWaQkzc^?B*Bb^Cp%?CbU=zlMDy<&TAlVh9L!NnBhVAD0b3#8
z^1ca;fiK<t-QtkU`@2S}kp0E)4oHr!Xa3XZcM*cMk%xo>^{VU)c5NlIRP=)g8pnr#
z0}Pmbr~2RkW7MsmZ`eVBA%5pn#I@Ch!c`Uew!P08*zR=><`Z|1$Rs;t=kU`#+OI-n
zRn%l6nm1m^0e4D`P_nBe!&(?4jl~o>jXz94o!=ik{p2F*0{2JFd@3Y}XQRDg=`llS
z4vv_#nt;wL2kf;H=4>z$fV^q_4XpRq5;%IM8ul3Fp06?9x}JAH__7^&u1#P84mmdG
z5zHuZnAcHL;#RMC+N48AsC=J>sZzE7EsaZNe0gU7P8}*`tbEyq-U%-1-)=rXQb8x&
z?Vrs>8~z<S0&OH#BAMFCTHZ{>z?aiXH!)Lw5io;FamsHv0GADrO<3lkxJ9|bB@29{
zJ~BM(m}g?$Eu|m^?$^DZdVmM`BbY=v9{Wax=l;tpxw!*N;|5?|1CH}{4?JM;qJ6jM
zLl3}5Y~UjrBK{M~47x7o4(w-u>+JhSa1{1+pa5O$x;nbKU(j(Lv33k}ec-?*!VIz-
zf!6Q|x#1>}Di~VY+H#Tv;^N|pr}lJqcJ4jeZkxJ1S-d)3;JG7IBN6ty2kXlt(Re8`
zF9QEC1q5b}&K??e+1lDA^1JY!ivsXI(#seBG`-3S%3LHZ*Q$LgvgbqXR^#l<e&KMr
zlsQpLTH$&+vt8IH(<mgwhW13GM}~~)KpstCzH02{=5>L6-Z?pjM~<C($s8WIjZDV7
zl3nPRp)Z?7Yu#cn%#xc6RCP->83-wUK>);EGYQ=iT7LoDL>K)9%zJ<%R}A<+i;+-t
z;cCSt)Ei#$_y2tU|Fapu-9Vk1zxjrfQ>Ci2rD<&<HFQ?rJ+uqA6I#H-@DXOxU-JWj
zUmH?CsC-y?us)D$Dr!h%W@cNhw>syx7B3Yr$BFlPQF%m<rSG9rdVa;NTNF$8c<Bob
zctBekL=r)<dk(zDJt6QsT-q{$a<<K{SVTVrDfC||bRl)@8`y(tS5lq4mY$eaxCoZ7
zBw4%p!ur>2P8a%8rUFjQS~TsBDOnc9abA(SI)poJZrCxs&pVB0FtA@?ygIT0KJ-*=
zuz52y?TfOfEv>|cdWrzO<DST#?i!=W2#ey{T<3$}Om@)D+2f^y;}JSF>DpGZE$ieO
z^P!eUep1$dnqsX_WBiPwAk|)(mW+g9+^m|EnYmH5d%UxU2~>1!FXzk_c;+BY{11j~
zH9+lOc!W-pHs0`3U!vX_zxnj|I?jc17yAtz_dy&P#KKur%YJt@*%x|~{P{TGx0os8
z0(<pFT;_*S->U$>z@nNK?$&tz4(Uc_X<GovhZ4bUjjA|F^1FB}-v8}~!`7rd5hPiz
zl(9F##D4tq=c7Wd0Y+4cv*U%V<)S4+b$ll~8m)j{Bu0SaR{-#_piJRe>x522hw&8=
z+LaTX93V#gjE&yY&6B=h3CiYR&s3c1<TvMmG4Pf5YMA=*Jhm^HK~@K3v7xmbx(Abm
zj3}6^wc}=P2V{$~{g2aHJ*VYAQ7wN@M5Qha->YLFX%u@czyIDT`LoEkn8h@U4eC+^
z&{cgU#a+SqOhXos@Y{x7;SnCt%xIiL=Ujn7A}<dJS(aI`?37Z4z#>+-ST@yceGKUD
z`0W$cGpV`bty!0gn&Z7syER)8UNZ?^ktzo0m2@r6NTC-neDP(6=EbMVkH0QF7RdPm
zyTF*_0);<$;hOHbqjDHgX$@xkRA7nq?rZ67LuQbrUfpL|h}#}7{9~DfK7(A7FCvPv
ztzj#p)EI31h=zJ`&yHoQBnr+{f5Cc2y1nUku|SHsp7Anuf`fqtv@HCq<!a3B7{HK^
zvfGjFz~#Ml$w!rlExRdI9q>-I$Bc_9IHi`qKpUKr|IRnLr7<)eMK+m~rkXxGaVCOF
zkyV?ALffEN3R_jr){!P-$g2i_Lc4)*G#rA`=`hA;TNFBXX^O)xONR(F+pR*))g$AY
z_d#4CFzte;EVdeQlj7^W@+_dH`#5DTJ_25y%w0O*e&gUDuGFa6yX}w(@jN!r>gl!j
zp6DUWk_nZfxkxs?Opa5cpWwk@Fr%btM2khVNg>a8Z-({;B44bm6QUs8J*aiMT9@Gh
zFvvQ;bz1qM4Y;Z{{gq#>P-~iBC@n%X9vcxO**SkE%>v@m1~-+$J9f2?R+%fkpaL~7
z5@en|3q=s(k_1=u@_^_Nx|+#WG}2CPd!oxMO^Y#!(lT)tu4~3C+MxkxS7<xNL)cAV
zGTB%J>kPFF@`6}{I!W=P;1TXgkTng{`41DGsrnPbz~hfhflu1Za-RPx$Iam{8Rue;
zco|*`kp|^#zO#W1ZgxiG8V;*dj4yNA`0;`cjlgO6G#jW`cprJ%O@~J|T&P&T`*Wp^
zlsw+Y3UfY##-OXUh;sJ?B0_Nk(6i+z?A6F)+dx^k>z_DpFueUXY^L8akK*OLc8Qah
znuz!Zx!%%ykVSyUrCQ9VgRC@87Qvj@(=8afk2`^j0v9+vKNzuq#H76@9=6q_AsIBp
zJCOq&9t;vaQLtAsLFEl>pbRh%7A#q%P-3CyNE8@6Aa0{5IDHfxarX7Wx>$U17N=oY
zF;n1ol#ZHFkovb7Dq%&aSa}n1lPSJ~9=CYpN`GWl`qK!|Q4u0ay6-d`{5)(TvE5N|
zXfEv#%<)x@>33^i^m!ybQQlezfVgpm_wpbzi(q1?oOJoAJK2;`aCj6vOpFENlD^&J
zUGQfZI79EDMkiT8b+8~~L5M~JT3KA{iv14ci~D!S<bgS)8y1V~CF6eFCbRRUd@3AU
zVK(pP`eR?dJvwgXCxnhnn7_uj=KW9&42jvB&}WL3@5tlF<t5YNUc@`;6fnoUwQ;27
zH#qoCO<Uuy+wkyx%>eihwoS3B%s2%JDJdxliJ;r$g(pH4$Peok&0_{7h!;Ka8TIAh
z1pP=7D-Nf>(%k<j?i*(hYN|uZQ%dHc&f`#fCkH6qA{q6ux8i{gq|@UL+CKP#Na|q*
z2{l2_fJk}s;Pgjuff0DeIFiu@jOvXAV9K*!cca5K)R>BJ>92<yg$?X}(5LOlg?7mH
za;Yjg8z_@eBp_oh>`{+evVy)+C8}YZQja@XIXScz0@Ps!v7^Bou$x~HN2D?Eiki|!
zyyMk4c!xpi>ib62?0coWEnA)el#ZZ|W&qkqxt28PuT5Z?|7#Nf_HncW?uuq0T?*YE
z`rFm20FV%9%m(@^&>hirZ|HA-p8_QRU!UG=Yex<>L;3fs^OMH*{VOJf_J1Fr_tkNa
z``gh<Uj)|fIs~VB-`cu(e*BFp6VYk&SWzq*-rh29C5vZ?7yPBM=m?wAbIDhXABzr)
z2ygEPwJ^J--CWEUZ?`XH8f+W``;)l^8_Paz2ZwUsyT>#%&a0fV4&N(v=rM39J86<I
z`HeCSVO7Tyb3}K}-_&+;hSWK@!W};qXph=XagN+TXatT~%a6%%4sQn42Pt!riH(Pi
z_e9$duCQ!kUGLOrXamMtJ2Xv1n}wbWB#3x_sI^cbsg|4e$ME>To`0~{l!<7zBh(Tb
zh97b)`{whr9cVAqJ~L=-xt!9ADpP`7wvXL6^`7yY{_a*N4M#P6eFCcYKdqbo3GL#q
z=x+Cjb^@{G@3`9B5s%}~O=TM|25Z}1-d72cnc$0sZ>R0B!}AbZP7&W5y%P*z?2_|u
z3?D*h*+ETTf|bLf;Df(k|3`=)!AbrI`;!qQwn`d;rmL5+v~X7C*gkHFjymTqRpss6
zGp*xL0pp}<gsLJ3^`F6zOHT!^SRhGiHQWi7%o8vFzUX|No&#joaAn(~WewQCwbAfg
zHL5Ar_4mfA>D4W&4|v$88CEsdlk_@ACB6%`dt|F+q$m-0KwR-e&xY_)KJgNy^+PM?
zP6#pO*wrbV#Q#O#M{$%68{*CR$|TgE_2NXJv+4H@Uq|J_YM&yAG|xS_u<_Kcg+5r1
zfTW^+U>>^z$}Zt`^fvX9`q8`AcE|{~w~r<Eqmlj^5yOpu>-h)l!a!icmR~y-&P}_{
zx&JcaR;($1Yi{@hHvuJz`f;)5ss+9KZ~|Dc-=h|w%&ttx!9_dd2aZG{Dy5JGG{WbO
z`0^0&jc#%Yo$Yn5GtoZ2?;(=>Am7>P&~WI{RlvUJIZW;lWCrWy{u(GQe+T<z=0|Vg
zrwHhTVVj5U9p83{i@VrJ6gH**rU7`~6rY87?kom-4j}O3Z<VQY`^D8w8EH~E8g#?Y
z)GS?Y9Aex>gKEBL#K1S&p5-Y_ok;k;WcZF#boYG}x!?+1Vecb&_8!s7=p&5|$SyAk
z^&+}MBB;Rzd~#A7IEb3fDF=-0Tl`$+lRSbhqUb}w-DXnUi_yy^0M!LZjE@Us<>K39
z0~R4j82+lHR1$rHoh{j$dtsUrtZ}FV<}`e~YMph@Asb<IW)@sjzyIw=2_!qDNI)vr
z2K-=5-eSG8<{oM`#q#`jSKy_y#8nU8tG6o?Zd}p*M;EMCXgkxlFUkHyCv;r8_uXV`
zMM>%t9n0=O1QtxJX@8d}Rr+m*hpKsB&1(*v)u-W-U)SA;nsB81y7K15^ge<;+ha+c
zZNH-x4k1MW?zAJ2Lwg@}%aIcV=F4BGjc3!I^P<kUc<$yR{XJf&+GT|YHbJ##0B%Sk
zFk@}A?<vjt&hz@W_#1}#p3-4)#*i72ox8s(Ug1*~pdzGSnQ8Lg$(XqkK-r;?fa8^7
zBTPfsZ*}kAxmw$M7T}$}*R9(DBC))3B@Yn$`0o9~XM-({Hy`kXk(+>LS9etO-p_71
zwZ0-?Wwj!8GM3acTl=Y|D|7aBTO`vTEcx!<^3HRX{kM-TLj&&u(y*wpn?_X<0O7<h
zH)l_76i@>@0Wbp=OCZy6mKnO>6Q&>?F!*s{{pmflj`>)GYWPdbNAO(~qd_0GP}NPC
z<uCj7^}x-<tI6&8FP;~mW@!Q4jheOGTDe$vLK|#fg#X*mmG<Tys<E0ItesPs1=z|g
z3bS-x`O8;e2}Z$T9c>m9C&cJoidh0m`tv{C11f$oCbD3vv;#R~RM@mLT{QLqr36Vm
zW)=ALt9NLPUQo4@EmOTS6y?{D7<xOjzBS?wN=jeY#xg~~VIp~9a9NZ%cLJ<YRcc87
zMv?Gqcb;?GLOMbLWg<&Hf+v<vusicXsq9nJj1iL;pUU}~<Sr4(=;yf*PL;s!Eaa|+
zM(W8~n8Mb0OpmPAGx~lHrlkEi@7qK9y(9^r57G~Ctk1FVEhVHiUaY6xRC*pBHN<rM
zIm|%-*+;U8B4^l?7$=;A71A_E<Hof=N)fd1V6q{&<Mx%<Jl9lp^{t<sY!lQOYH^Cv
z<cH1t<p*yp{23qx*fwG1kMYa>3!j1fFpVvodvC_62YWsBoCdUp`j*w)XLiY^1j2cI
z3V9||O0}{F4YA7}9p}ut7LCt7e{|@%n2J&@TiWA-yf*t*<1-*QvihXuH9<=Xv+rAH
zsW8*zQ5ZYX2g{=G?iQW~q`;7Ayt0)}g<{}qF#3`uPohCk7XNPuQ_``#cch{k0RWnL
zS#j}TTSXDu{eagRp}%ShH9%NN?T2L;hT+=oG>1oFUyXA`msIef;(}iK2_;jRvoCKn
z_Oa*)DZY9vd>+>8I~)XPn7@h(nD>BvX_DZ!J<3#1ynLLtHvC~ssvT*xaS{F@y;=(*
za0Fc2P(hOI`!Zlx;z)CM{@XU>jUv{{Y{M5k{~y@19J4kxZg?c`*~Nq!sczxlIVKrx
z8$YpDQBpaK8xi2!J<Zgz1sggVS9K|$S5>L`+BQ64w+gmVs+L%^v{d4}NJ5&F%Ia;~
z7tW`c-ed{sBJKLtvga?tjEC6;X7k1OD6JG&#NfrqdI_o%=7SqkePZUvvw9UUMrZZv
z7VYJo$8H&G+aC&hL6OZ!)*A(1L8FQ>et$6EbEOnu;P`wOAfW1cK+S@+KXgxd-2?jA
zKW`!+qi`=6o+BynOp>O^7iy%-0L^u?O786Y#xk!{Fn#-u%nd8yZ_t;`7$QM%?NGRk
zo9k9r9|Hy9C%L$7MV5~ear>XMr&U1$_H7(?;$MhDBoeHg`N%`o_y@=lTdF^gDvz?M
ztcq*g`~1wUic6yg-GmUIaYiAEq0W&VWT0%9xJR<sB_)}t+P8kwuRwL%Yq6FCZ>vg6
zU$Y<dCRd&Xe2{se`_aZqo9Kgnj3*279pz=3be$X{qMOhJ{$jp?u$P7mB=e2>1|mrq
z+?_K&J37fo<gaWxXE#~BcTf!~)D)_BIu4JYi0stDy2N)oKbPSTNhxsIQ4j+&SX4f@
z8K%6~OF0!Vb=JQ8Ad=Q`Yvoq_vNJVKu4V9WDA)jh%-rsbRv-la1EU=pwVaagX&~Ph
zJ>T%DNq*LI>-ndd&{(KFrrBO{Ja}IUOr>jLK!J^Fsx+el`3T27VkV(O5vm{Lu%$T9
zr*PWPPsOFzqQX8r60Kom5ZQ)M2!?R-()NiD?{^C!y8WRtH}6>WFlW!jsxu;rnp8ug
zQdMr}bRdk9*2l!a?*AF0yI88jXq!qwBC(c}rQKPBNBm+}?ZNnn%5S$uE!WfAfoWM4
zf){cWAT?-Dxz3<QsgN~UW^OzQ?&P-{%2g6v0Y7p-j?&u~D}X)aTTbbkJ<M*h`3B4#
zu<y0%N~Ayi68|h%ldjsEu)vy+Jg|z+YUWuf5%`%{r-#zo&#ZbHoL9lABagb<d3;Zw
ze&8$r77At8zkh^1;`ru}r#f0Ni?PS9sYa9b4gGo4kf)+K)>A~cA2d-mDG1&w8Bfij
z7y?h=b_Zbk7mtG6gG1rd_g;gIg0TCg!RBidjW}4v>UzJMk?l4lf&0h<TPtnmTS5rg
zxC!gRuW;yI6s(6DL6ayQf?~BNko@s7Q?W&e*g!|3MA-_z-sGhr-1`ZAj1{=_!Ap}{
z<w5Wxja4#`6_wQUdex}e&lI9Ov^&gr*n@8chHy|zl#3#4R@-<FW#ZwSFGg7AidsCH
z>Zd_L*hKTUtZpJ+V_8{-SnsEjlJN8Xm>`oY&3KB0I#hTo-s+CU&#(WuQfJX?jz81v
zd3j%)zkK~^OP2%7U`ps`o%m`9uW;w~=F?y)m4j;aH0GPnZQ<4z&@OZQ-whM%9~1iT
zzFO5gn06LYRL(Dn<ENB=P;D*2h`{qVoe0n)KP*wFxPUEHL-H6%%7fZlkg1u!9({p!
zzXTaQu__KE#&d_}sjCQ{U0kHPoww=aDlYj=ym!fU!+pZL`{trXX~~&~{JBE1Le}bx
z#8g&cH*MJMAYO)HTbC!ip$QMPE4;0@J|{lmg+D5)5;5%cuU^gS9w|8oX;JKf>Di+1
z9E5Ds=UN?zgGI?#e|EkH$FyxoyG>R9QB79hnIC{j9o85)J$C-`S88|AY+^C;7diq{
zgAQ(nK9tVHS8=L1p`S!3PqDyT@<T6E!q&Eh?@0~=FcRrV=w)^mHa75?=-0gUy?#OU
z#-32~u=I%AON!6hg($TG*H;x4$(`IHoLGq-0@vYNj&laV^^T6IlWgc#cJ4bACJ3++
z@iar$KfKym4yTWMR=j3xH71GUJs_y_iEQDq4DJKtm!Op3%pv@$87dIH^h$e3of~E=
zXNu&hVB>}v1>H+JoDe~-eA7D!tb`l$?spNdgRsB91W^Y;C33fW-M4yzun~gJabR$h
zh2%T%o>2AL9-~8Pkh8VxurSf(;X82aQ@qolOYfBW$z$I1FXOsm+hp6%2Qa$U{GZG>
za2X*btm=kdp5IqCEy+-j>zgW$fwou7=#dZd-1J~d$ZR(nVaYVL3N}@gd*rrLsrLPS
z{^@%ICx@zuX3~E5u?4&s3*+Vyg-shUJ2|}_V~40!h{$f5=9=%@zHDeL2Sc^e%|?DU
zO8Tx(6Fm6;BL8)yg&Tbce7GK3n-<OX`K@g@HL0OuWT|q3$J>X>3(d}k)l2V8DEWsV
z;I~hgnx3zCI_o}jK6vkP)8Ut2D<q>_0Ju*cc>5>6lRB^;JvQdgdRD4K5$(mb5NE4T
z@2bSTPFPV;0`V26?oWE7o#u11=;&iWukRBweh=Io`g{T#-#iMJZn`Ew!Jc7S#f!~X
zZX*2h9y+CR=6uM=w35eOYf^U|kV_~h^T}8#7;c*4iiQ5q)*`&xyY3?m#v7Fne&?!~
zGr{lfc@8VzoE82f`H$+uo4@s{8CleVJe?YMJG#U7avmBZR*PBHh<NUC)@;OWIX^oS
z`o9x%ee&dlWd2q%dmPowtoJPq0x;);<KWMhv;W5wu60<Y2lhCuSEXh1WcIhNw16-e
zSZoi}Ko+j|fO-DvdwInF(hO{eF4uLC^E#ye+9pj5FX2wOq`H{j@kEU1Taa`AOI2<0
z;jxz68!(;-R<fDm*3G}F{d#;qTad*6G&+lOC1QVG%qw+7;dtI;2uxQzktH|Vjl;|w
zUYu#}%SX5_DBH`MyQE8)0(hU&2T;Z)os3*#HV+NeIb%DXz}2c@w5j<Yq%eHgbKzh*
z77tPU@428m;N9N>)(D~LyELKG`=g7$wyo+GFYK*5ofa!O^xZCVKTQcQG|+(1*}bMl
zUV#<FCtLGnLYRImO@t)_sEJhS0O#HUAdC-W>W0A|t~X7u4?bG&s<-?}sO!g~ZZ`X3
z`lRF4KP{lMgV7QH8|c4lBtaN98YY1TUwpMfX9!<~^U*jAH0(qho$ve4^Wv6PWZN~u
zqSb>101#Xy6t@B}lWPP9`ns@G07HaM@I_zM^*=?>IGO)zkIDacq5zOWE7E;rMC5Wm
zR_JiQ(D;I|QYk7HmT>0^JR%EDFh<w|sEvh`hQ0Q8W7!r$=0YW&pM+eLYtY~mG(BjN
zSF-@zf$G>0dFouQ2BDOW_T|31bT~RO8F-E!3DR*HxQr7sG2w0bA__%Cok=oJz4~sA
znU{BTY;0^~<QcXuLV@xxHU!O{V$G^TsF^^tkH1JVGe4_s=Em8ulS5ZRt))nJe}7op
zf{r$Wn<uGYsJXe3gnoP;fRp%Vm^vj9aO}uaoWvtKP7-P9hk<_5?*(Gi#l*$`l$(ta
zJ%4UjQR*i%uOrFex6nq+6D!H3D9K^*(<<1x(;6j&6KXC^sg+{<$DU^(&bAH<;ItgT
zd9?U#EHC5_YUi|?#5RO44kmhdM^cJuT>X=0f`@q`8XHvWX32sWHBW>()F~1q5m_sb
z0ePb#IB3bqf(LtWYwL;m2T7hk!ri$XM{udr^mk5ocLRyx<mzj~#dF%Ot`$By2yc&K
z=O>Vtu|6s>ebJX@2#NH?sbU>N0L1ezelNwsglZj@Qgsma-0aR42IaDR)wUeeT+q1s
z&#x|?RU<o#DV{d%3_SjNJO&O~J)^jz2UocWm(kW!(C>=uzvJOspCO+ukC2!w*qLCJ
z$_V}8rP5m#SjqrWrW5=;qRX_fkfJJ27gq03RcV4Wq#?<iWm6QARoEPonB1U^c=_MS
z%^4T4>7*&}nVoY(X8wZY1(0=|A5*Xamn`=tedR!DTdj5G21W}DcwtnLo(YYHFSWR8
z4J*?{+1Xt$`S+@lh-L=M>c+ECr3si^wVM)xW)rK0F9N4#D_qJfC5)L)EBkWaB(M;D
zCm^t1&~oU2f;*k<w!_cGb#zVn?R2*e`u9xR=Tngm+vyq2Pb~?yOr{3TQlq1W8Epe7
zi<u(|YoK9TzLDZyKf+{P`h<^>mkk2g18y205ULl#;R6xyoURXtpMsC&6&(9UyR<ID
zN6DFvQ*ZtiJ&=WNhgdQnnTiR6OR4-wbh$v9IBB_=FLqYzB7DyF5CsYIo^Th7T7iT_
zX@luO;B8fa2-6qH5XkANww-iv1AW1+3C<7u`X-`QB!QcYyOmsBS{0L`U{G%n%1Z7u
zOKQRb-PwP}_W>-OxITK`d0M<3Rm*qkpYz~0cl+i1dyDzIM90)MvfqfF&slwaW$yEY
zMkJh&z+DPDi}T(64uQ_SMmmD@vbS<ilh;cXMt@k}7N$9h=#$PY`50Y}`o7EWz?9K<
zO!a$wZ!WUL+WO+D+Z<_3Pi5V5Z==6qqLU!W(7-_a#&RHO=<>#MiB<@(Kn}s60q`ri
zWT+xPL&}z3`c!8<G%T*N_@|Yn;f6lb{RJ`}(zK;FgRbom52se;D%-pN(SftVOdziS
z&YFYH_-tKp6V3}$7yIL#G-#vNxrWmLb>Nih5Iei0K=iMkRl7E%Dua(l@!8};iW+{_
zdK5gS4LM5!lZ#U{XoGl^|M*e@p+kEpu9wr7_Hek1m#Z^spd!@DQjn|rK+5oyCdKR*
z_#;EuF})jzN;3ig1`@V`3ZZ9zY`{5Z<qgkX08_g4)$<OGUGqB&q}&b}t{G6pYO+uH
zLx`-;wh#Uxn^gr|XLdfbtist926vuXFfse%rd9l-4#?HF7!Rtp&bOb{m%NfNejB7^
z;>}z00=XSewnc@<lX@F&`-TNva_f_1kO5sy|D@4nMhI!;yi10Kk=ia`n7U1m<38Qw
zIej(`+>!B*HrGo5T;e+!_RPG3_>w73pVJm+2g(l$p3tjMVM49rR{Ra`!(2a8XmSc#
zasXNe0tP`YXPB08U?xawCK^Fh3OD6Dt^1{GAALjM;_Vk1M%ra~vfH<*LFF`sPuL{&
zg%6+7UUH5<d2-dGUNSTfjk%*KKddgN9y0gCtT2C{(DpEHbzKHEyd5B}oNw%C0-K3$
zXtV*FPt_3v%ABD>>EFsn3gD1dZ8@#O3jrNd=h>ZRBUZOK-uTrnkn1}t%^*EE9-z$g
z3H~w^y?Lq9dAS+8&8F|y9%CO?GXtYYU8gqvpZ!4|;X2oZ?XOOvRZ`&jp+tLiem?Dg
z+Yq@NuW^`H6>s}Re#l`aWY_xiuSP)cw}9siz1Ku<XZ?Tdvgo}9*z|yj1i&l*jc2^x
zh|ze;f8iOEfYQOzDq?@!1RR>sJN}2*;NpA#Z1-ssJ_?J1lMYw5z(`yH+hRDdBVN@p
z)><<=-!0Ufx_v{hyQO4;?|@YKuMGgnsl6PiJDY}}pUJM>)S*Tj4OjMs;@CwxU>J-r
zf{GvgV=_Q;%ubyx>Vco5A3J>+zK31`Nx)mfqR_kQrS__!(+L<b2!bHRnBMXKF)8HN
zCuHmnH3$y`ZoH-f-pR9e2R+@cNmCab0bXf&<7KE0E*{^_{|rWLSG?NlHn3&s{eV7r
z@JISTh|lcu<=^qOx8KxZ-e^u5zTNomC)?kMYaIaYvwi^Yy!juZ?Kfi+oWkG*5&CT_
z)z0s4Y`ydqc>QlOEX*&fs`H?w>|Fg^>@tz?6VLe;&lCL)MzXs%___a=wo&+MMg00Q
zlbawfvcKo4T^mG2YPTO(vh9o8NOj^+#wK^b+=Y_|kWSB1%CTyy+c#_@{b`lgP>p!^
z&l!i!^sjH!+Oxuh=_Mxd-^?PHwcq?IA6CtO={-GM;A=6So@A?B>fF4zJ#9meaK1M`
zL7j$?q|x{gFB0JAHR@Gz%wf9PqZ(K9IQ7yUiCqUIOPkS{f2jo6s&HkWNsMNmb}@`=
zT+~|?{~8j#kwn~vw1VDh^`O17Eh)^5E|*mz;NeqG9k%UwU4ZpJS_EyROoB#T8HSM2
z1)bUcwuJ_*r8{4st;j~&g@$Y6Fyx@+r~*5GVd!Gm4TAB76Aa2<_;<I{M=i&LE?qZo
zus-H`{ofALG{69g_J$r5_z$3=#s#sYfL@81d<XG>#rYDrqT^qqGg;#+fZljrzCZ>B
zCdA*4Iky&A0MY(n1X%*JE(5w1Q5BB1V=|#@0=)J1T`=GcWq_8h{TDTAE}K0(=sEx`
z8VKO!U+C?+ao=s*A3d!j;QuOG4fP`i5Zo`PtXOPC|0$YgM#`7>e-NU4de%KY8v>x9
zK19IN|EG;L9&S5v;H_y4ZOHh4KT(@XD72slmPLBy%~=9j@VhG<G}))xRDdb->fnF>
zmPpKfyt*$W08H=hfvLj47yPOJNTnAnbNRz;o*uZ(r44q?g{w7Gm5zx!XUxLJRx<vS
z>*on637W@fZ349Zx(Yof(CXy+YMyuhMNk9Bf~^<VhI)G#9C+1W;6K_b1DckTS?D&j
zq1|=!pK204KLPWwQzHRDYNHMQXsh59gAzn73*po=mJ%+&QJXpbfzfQ4&itfEcD!GX
zripsCKm6IBtCK|rv_`zzOWb&$xc2<ELHUW`O1{~7Wkt!TLXNdLL%7gzC66F};kzzg
z9JC$Jws3393?KaoPz?X{fA!(NzlflPbbVN9zdmjN8e-w^{Y6*5Nc84=3?f?+yR>4|
z`oQlsVl5`@sL_TEz#AkVCoeDW9r{Lfo&Cdiow%7jM*XY%YWYB3XLVIo>w=Xt*#$eS
zEM5>rD&T6haoRF6Wj<cXQ=fs9n)Lv}aD@u@0Gkud%gOX3{k-SO-W822o6&Kk(&_R(
zYI1bpzDS*9*`=i=Z<)qy(#)}C-HX6_RHx?A%yOThiHmj(g(l&>-`VJ6O$L<TaP!P{
zl<qfo-KEcS0s?Szj6?CvgJ1VN^{9xSU`OGloGs;bGJLB7vsE$5rA8AmQ5lT{33Gn<
zRy6V~(r3_Nf$)}oST7EZ5d5fg)6v#(G(mm|%#bLP06#3<JltD1UlMefJiNX~;3t%y
zY2)Hx$fNMIpS$V@FUa@K8|~04JGYwL-0I}y<jhQQcY?)C^ox8yf@!V;_`od;$lck_
zbIe61H>Pj?{vCgIXNpWOy$kg6JU*wTmXxHWrInTf{Cg|vPB3*!#BW}GR<Lz++=GVP
z0Rc1EO*DAmBUt`f_2J@3my>?cV~yyC;6|NdH#YqH9`jmnN+BOUj1<|4ih7Dt&}^I9
z9XO3+vTEBo&A*5HF&qFvw|eo3K^?nHH(pNQWt>+T)95QH(2ZV9`CXidA7-k|qI4W6
z@gA7zC#R=FN<GdVZyh_czNeA`XyW1mZM5$sZJ`=IUu75p=t-Ec_SL-#KcSCrPgc)m
zf?dhKAs3d~p+;=w;hIwidl3{%wupK8j21l~3EA0dRuJvl1ax@9y!QSTTI?zr8I3mp
zm;(uB=H8KNTb5!Cx(&`S__jPM5>P?I!~`;vlaqTj=id?aP678#cv7RCK6q9DG<p$W
z4GXU7Yn<&e1M_<ZvPEH6Q`)roc3NifNp$DOrfsCkJgf6wzW<1r64eG=XafYe0hC5N
z2D(qanW~{fRCb^~p2LqlBS%{oHiIl|5L31%yiLostQ<cy<P+-$GJ-JsUmYH-Sfly@
z0l=%K?CFR?-jYo~mo}3Uv)8$LB64W``c)F5y`l7tfbnrHX&{ydWTMmH-PY9Fbs}wf
zoj|u^WXxGr&a>gxEyPT7JNxx#VGigE9{Fb<G&R&F!a_dHd`ARLzXp((KZjSRJGH?f
z#CRj@UOtHKYJ%MfGTO}yx0GZ0;{x>k7(g@=bqjru#ZTzkBy{`)u{?pR&wNpRxn3Ud
z#!FL{_$hgXOYqVOb)ri$*y;4-caM$IBT3jRVV~GoxU&<OKv%ayq~?!seLXoGF+9kj
zkQR%*PwQxF2;R|r^}iz+<`5dM>RaMx`X+lMsjC2!3;_k!u^-#dObf&Pa<v3G>r1Jg
zK>daq6<<eV-+NmFL^#d(gUR|@9s_ydGsD>H{n%0~zr_!FVZn#@(eNwuRJj2w28|L+
zi#wSNUJg{0^Tp#l2ZW#8j+}XW4CiLIPK~-~Kg6AKotsCjADIUu>!~xRj5qt|Asx9k
z##<VfA7B2+QEGrPpjQY}9-?`;=cDH@C`DJ=*3!6WIdJjfFgo6OwOG(Meb0Mz%viTZ
za>x+?)63)YxUosAXlkvtRy5o*)Lb7-a>2$%tZ4@0ma<k<B8}Bl?TLJ+fD&=X-~yr3
zFgan#n#HON*)A_=3$&R~WSdXW`G6>Q0J(%}SYnJ(pBrtM8TPS8FCWvvxl_dA>}a5F
zc_;2Hij05@^yt?@OLr^ZW@1k}GQ4gzbXP8)3KhYQ76xb#N&$KER@S^M^bs#d=|kdY
zX5O~eOJJF$_F9nyMxYxYoQxJTb2^7Md04%XSvh){MPakSEMfhFGa<iLMjgkY?d|XH
zJWZ3fLx`%^$SdT669?Mk-l<Owd&k0YA{(*I!R2fMk$TiJ5RRHC*CLMt=THFwb&A9L
zR~O;@RVaM{*vB#J`5nex5>?@{VsBn;^7)}=m!%&eah`KAgCM40&60#7wR{^Jo3gSp
z;BAgbLvX?5i+qbs<+<jRJ%u~-rPxXu1tmjwJxisOa5HbgrP_?^?i3nuU4f0Rdx5uW
z5NsEIlH$}#bHv;)D8MHlFsI1#($q_vx(O>TY=_jY@1LAJ;usjnS)Bd6&@;;ha^Z6Q
zQ64`sI@-!bgMaS;H*j0w-i7YwhHGk8!wsC>u5}C_AG-`n9TA4}W_b=O|4%VAZz-E9
zf88hi_C1UJ^{Z)udMsDbe(YGn*Tq~$TceGHx-~<6&v=~-P}a#=`sKi>*`mCfuX-=T
z(5*ch;~$?^F~$eusKR(RmZir%9V_O+&apldWCh*PTFGqVd~9sHjS0kc>J+Bu_B)8*
z7GSNavt<?an60p_MlH9~33>EphR(;L0pS(_*I=-QsMLA4LUinWta?xY{>`AOuTR0r
z_QVG4o~u<TSY26aVQwkKW_PqyHt>8<@;?Wk;T`4R#(Kw`s$dE^u<^hfgpmUxYMCS|
zA;vimc!??6pN4inl`s3j8!35GNrDq$#h(xo>p<?@sB0(Sm_r}Z&`!L|3F+Xyp`-!}
z!j{!HD|x<0yr6UwJsMCx6KF&qY<pqzH`fe%K_}MqK;WfiPZmGbxL^Idv|hoT*j9*1
z8>G_B*wOK_vCiLWdnw>dSrL6ALpwu<>r7zE6~1Y<!SiKgATo$^Cq$0kYG$z$VYF)p
zzcV)nz#8J>qN0YY?KY2&j>tRz>&Og)qX?frr`K52Io#L+ZHLmUFkYD}S7)><A1nHh
z;&FA0<A0r^=sO*+J+XlK36wJWE(9bDwpm!zIBoj^eqG&B&LL$B&+xy8CE&c5(j$0^
zs_xUuOSs$y0jIpCQnLo4muHxs*B;ud64C|EkDr1|65T9-=TYSy2-1x>-pk^Dmxw#x
zI?La;no+rVBcI^n#Eav#>eX=#eTSqhm}otpjWiD+v%A#_fAEGjVEbPk`_L4Y&b37X
z?<O%aLtxQgoycyCX#@XUU0u!1&24SV$JRaTJ!Y76j;f91tYpMx4pq!2<iI4u1^-WH
zUmi}?_r;AunTK*ohAu^hi;{VYu7uo(OxIk7%vTvQX6BlwOQw*NdFB!#^O%sC%pp_e
z`Q2B2f4}eVdEdX@=i#xPv(MgZuf6s;>$BF{Yli?3nV}6^_5Cv%V5jYkn{YJ%-Tk|<
zc6bJp%Ys^EekG1IUmO0_KR7_5bWlZ49jC17=)xKlaU3NC2_(%6Qa+uTnoG-(|7u;|
z<*;EmKm+#uz$o_H%J%&O2sp`tziJMei~p}@`BJq$V$dE1jNd71PTt@;EiCDP|KSFZ
z{43VAPD`C#sj&cRd(p+A3yJ<2HlS3p#My1X8R3WqtST);`u@X3@Z1|c7zI-f27Q!-
z-itw(dDsrhn9Zb=sW^hO3E4cKW{sl5`&Rl>6S*M62$BuPpLs0C$JnN{VAl+vNd&Pr
znpw(uVR&P$cI7u4v27*f^tKQ)I9Y>#WN!Ma01gM^;krNm*6SLFKB9HCFLATopK*_4
z4n}P6vsngkNmiPZyZq)<lYQ2rs7kJ=tJThjsY^h)bKXb)x=!>m<A~@thErbv!H_B6
zw@4Sze!`>&#;3{$`8(G*UT5jM%`neF51kEa=i#DMvmA;~S!U2Zn{5PYp@f-s5rGu;
z^PJbi_wai=G7SWxB;EQjLmw_LBMPo^R1a(Cz$4Zz0cxUOL{UEh;1U#L(7iCoHs#9p
zQ>vBgHzjWkP^ZhP=FrDldN(5wvFL3%jf#MGVYg@VkCIyw^~B0T+1qASKULv27UB%%
zK!4wp*5oC|#1&9-LpGY26xBGy$sSM!kx<2=+n+>=aL-CB$Dn`11spT;^;M;HzI|ol
z^wflfQUjzwzk-t_Vhql<02J#`#~*%!AjR~=k|;zjT?UEI+yDxbbM9^f%dBdR_f?V|
z>@g_(&zu<a=)YL9x_RFpgPt9x+J;8BcNge4qe_;MTS64ad<71w*xY96U*meVj|s1~
z*iVoayvBS6C&tQCl?_TMvtGM`|9X{x2F6bn*Ti$v{7SlhJUyR`$>%A#F~fv5e%4!K
z?>}qh=!&0~GL&YSjcb{sMmG0nom5Lw^8FM0Y^xlE9zw<oCWjBagV0g$PaMH);d4Ul
zZ{Scl{#)dh6IN@va#8-aSuTgyj!vYbZRD&5`$%e1WkqYrsd9CN!hLabtcba#yF%UC
zgF_}=-3c|zs}IJk?%1CWmJ3t$IQgjn5QPKOU}08FNC*~NV6~L074FSs-Ar9bY!O=i
zTvDB0j=Y)?|C7SnbG6rFG5EXi*EwCvAX0mFo2WMj!Z(5}HQs$s*cRSAS~qU7)!76a
zlMX&18xzh<6TmuUVSAO!F%FH%Jd{)<_5mlh7+}yMz<Q*N1q-GaESQwDwf$T7taNtu
z*2?xdj%J*l%L^HY79kG2eFpmR=AeB$EFu%ts7PXfW8L*&)8H)YGl<t(IyiBtfP1U7
zT4VoPeRR%P>+GUEmj21#9<3+Wi;5Wga4@?Vsoe5kI$b9v#e~3{KnB*))c7Ll%%lK>
zhJg=qAMmHu9xIamhwV>Ca@O32cp#>xrg0Ua`gK^_A*X*DpB>vf%t)30#1EkNr<L`6
zbk=<(9KHlA_x<rn%kg7~V!@~F*9i#;bJq40{H_ZrI1A2SZyRo3`k&840t(DC&ItG(
zC%1pV_5WTuyM=RIfiGnI&A;2k|2Fmiy7K>5zsV~OJuooR`71f~y{W!=-FU5T&S3IC
zm>H0}_0^M`dj?Y{WpIFE<aXZ(b;jAi--BU*SG3&Y+Z8=wo>Fyt>u|~tx#`ad!_|Mh
zZn(L91ba0%!dKDlhQjVw>KABo4P?$KVwz}|mM2RB&&}9nDdN-!+z>e-HNTI0gb|^!
zGj~DKp~Ta}`X}Y<h}-&&uk9=Uc;#>(+ZeR|{%Xs|NYd0MACB0iu_NQM1KXM$XITkr
ztXe4OUPNO18QO2$KKoIM^1dooYv||w(eHDEI12z`@I8{Ou%Vkt+;R2FQuS_4&PMI=
zA;`VlR3Ur=kyL$&l9`Wp^3<}ZmT;rg8FiJ0xOr-^KwLZQv7c<w*nV_Yq><Cq+=&60
zEZiJ|#)`92H+3aXJ12?f(hJQvCw_lT@kT}J%7uEad83N-G(GmVe-5ijIG2_lE%^8i
z=veoGxWGH@@T>Fzwp;Cse#SHDXLF0Xd(d*y7;t3TYW@z`k>`xpJDM~#IVPk|>@$!O
zSmBDoVx7?!{~?O82DMor8@yuRyO&yXdoeU4aJsS%ZOf_2;_dchIxd0_i7K@9(rPq3
zk9m9HLNHY5^@GOWm$jfme(Zs~jZ}67YE(3}rbRR4)GfCiKk<E9T*}XXwVj>qD$%?%
zdpaoIxz(@F<}%S!pr1*3*h~^8U}g9CBxxyIUhr382P8C00OD?<vgY#Th75yJP<!F<
zCAOPOY+ODDuc^-8r8<wo_j!%{Rn#{*hfjO%0c9)Ud6a!>1lm^K!}DY|V9U6+h+j&y
zy1bV94wt;&M-q*9ODE;G<$t&~ggM9W^9erTPw;MLuyK)x4ULwv9G8m{(JB|3-i5JV
z@MgU*OF(oEJEVD{KPb~W)zJ#4dlQ+>!C<!$5Z9;EB@xuHCu_{~xJUv~(&F{_IfUCE
z6G>`f1@jaTUx-GDP%Jkk-LK@+z_c@t`?>upmAK45$jfV+=g{k2O)w8_c~u~~;7hZi
z6y-iL-X+{yeb^Oeq0yE37;Pog8aH0OXu+3zM>52h#WAYxn+D{&Uh2e2y~=e61g7V{
z+IYA%ZR0-meYUfGglPCTS4HN)OKbHIlE;^`6$Z|Q-u5;W@ZK5<WQtU^BgfpZQhI$^
zz4JOmO)omWQX(@*==05g4bQ2bWL&TJvu~$E9|bR|ouO^4iMDe&_KOAGciZ99wl2<#
z{_3TNdc5-uNy(Bl97F6hI<n{Z-K~U}Coto09Lrzs+j+_8>qEYFmuxqVQ9H~|hpqSO
z$jz~SvEog>lEq%TQZC))pEvk0+*h&)(^Rr3ioEbWv=OPUr*)jHDgX(W`b||Mx%K0V
zD0Z*5q_rtFjdtxO%6@Z4*~BH!LMd**I>R^^`3RoPY@T%Yd^BI72^;+N*3$q5Sn)Yl
zHOC(F4*7573CL1O3r?Io++~IEN05FXpM^To+~br}F+RDs*S~dboQ=`{%gup@G%Erl
z>`=k}s4RHYi?P+^TXy%5bSrS;tea(>{J~eRJX#4d^YNV+K<%48FXxFVEpOI2Z+3GG
z;e%*MgyqH$=vbgsjf}RDTNaTg6LMX5nJuEwB?cZ74?O34P6ZEs<zzXa1SBgevwww6
zeu#%c)FZQr6Bp_!4z>csxS*{FSh@BN$%KwP_t;mm!)riV0m-kCpAA_d$ttj0YwGJl
zqKQ=D=RR<8sn@^!0k0T)MxGae&eb+DoJJA^7*~1EHe8KryeG>&NrPQyK3I<=b$H)x
zfzEw~PfVY~PD5p4IM51z+9x?Hi*SIn!UcpL!iWxCE$9QH*|s1Xomr_bE@3N0bi_Tl
zu0zOWX-);7kmQgG=^8v}gJ&$Rvq-}SzN{=ir6Z9a(&jyI8;n0_C2S#gVQ56k;8t5J
zVJjio?DUBw?=%|(dW(}eIFfKjZvIwI+*m1Lw_ct&8-&7VJ#)&iwnhM>(CN20h3>s-
zs?|u*=J!06X@gS<R-DOs1>!?Nut~G~kq|{aymgw2q?e>)5F<WZoH`dkdw|~CxX%QK
zb?Y6iBxp`(%uY8qZfzYETRwK;{YMTKS?h>mdtdV>Mr<O<DAByO6>L3#u>Z1>SVV5Y
zrV*(?P5v-T!0nQ8g)z*V$v2$qmqjOhPXytMtfZ(L#!xNLps}2;Lhq2B@E4?14!tn<
z<Cy|P-I0n4?7dA7Z-S8heSR)*&@6ao^uo5VRF3-}NLmaruVQ+>GJx>Ez%{!yx{J}I
zW4r`^<&M6!Nh+vneIi)V<0Bs<VaKzts1$UgDe(at-}r^@bQ0_bN3(3flv^%9k}iOp
zMdf}(r7|!_!QY1EVcE0L;za?Js=s5Ia8DB?HF=RAwb8F++lM}AfL;qqEZM9$seu$S
zmTan98Er6Yqy;}~^;1!qBGURfiYV*URUHo`6BqU0z0z+TNBt!@3lHmsTjUX>^kBkR
zi_nddfoafPr3g|Fy+G%R3)L8QJ{~<2qe))lgQ8zVp(L-b(O_F;C6csVubO?As=MQ}
zeLeqTHB9jHLmkJ$t{UzKu%WE!6~@)Z;c+P4qqlz6ymDsFeI~Q%WGmT8GVG^2?M}dm
zRvUfNnR-0+JGx~e9m2?%ILPt7ARHkd`WtCwZLNxXI{{M#c(a}n2BfKJwf#Zw&|`d(
zAq%#v3%!cW2}4q)@#^1Xxzgh1wi4RwLL*2mzSlp^oagyK%`xAQ%J-#<n7TW7MAl!$
z0k7Y|PXe;DZZ2OxmO6e%Sf}y9mFYSc_LIhHz{&a>P!A2ql!MX=&%!4;a~0_)W7@OR
z7>=--kNULX<~%&zU4!T32``nis=~9wQWej>CSWPbz+_-=kGtHV0+;62bS3eq#gYXu
zzqxL`pdf$Ag{^!sH!{OlD<yU3aTyd$LdM`pGvYe#W8p0W1FM)7Le<(dq1<)V<%i;>
z2=uwU*nt6vN{Yv?pO(Bsy~0vMV`Gi~cYPMNY`bfutxb3PMh*^I2c+u`Y~Drboy_nV
zlKxNA;8k(94*$I6(5FM#!HLo(5wDp~5dCvKhk+2o17EZEk6V7&@$OoB%bSn|3Eb{z
zgv0YFDtL71EWep2eeW3aPb_{}^JwX*wHgck%wy#vdy2v@dAtF~O!aFVb;|83Q+7)h
zs9Moe{4*c37pk5gD68NH7i>ijlw6!c1ZZS2r2aTWg)=F(6Ut%V;&Q)$GN=zKoL!f}
z8sh4MA6$JhV4UHE^n6eCJa*r$7y7~<Y-(08{QTHtWlKUtWC#zh>7P2c^UAS@Cz%@l
zMlsz@%LdwL2nw!B_^<ocb0e5t;bl*}NAv6J>#}p3$u%u;9fWls@i>d?>JV5%pfkx}
z<6mYX3f7KK;w_bAZi@D<9#uWSg3E7_f5rnmj@_O(9WR=8MF`L~=Y2-`Bj8%5OFG=s
z0l<Ru2FFOA0kawmjQJ07pprmQ35%Y!L^=}hd0UX<CiDM38tt0nmbvkv&F}i#m?U%Q
ziSaYO;276*)G>#eQs`f%eC388&i4T!vl%ek<|fs%fe%_Ws!wD=4re0qg4=?2&i$v&
zd40h+kqkl!9T`$z?{8ej_6#np2JO+mHH+>=Wt?v(oHJHy+J&v1fI|@aqi9zSQ&|A>
z{}5}OVq3O;AouNtTfLoFGQ$LGtcp^dNMG0$Bb!>>U<D$DVaRL%X`5#69p=AE#ZBg2
z9P1o9@(9P?NYjKW#YO}hA=5wtbY}?|<!r|%8__FHuE*c_M2z1eAHh^s!MPGSYXFd!
z&EC_kllzCcXwf-JSnAHfb=B4x<r}np3|+G9G#6(Qtc1838>b%(YsE!K<T>qDCH)p}
zT>P!Ff6FluSfW2lJy8kx6z<;c{!)~wukM1%)|X;&PDsg*GAAza`!VS4;;!<-?w1_=
zOrpKDHF^Mj<7fbEy{h>B8=s5Y$=70gBU3@rpi3^a``>;-ieFpZ;8xV%+WVH!+4iLo
zulkE<;#~Upb^mxLYmaun!DojEou2q`>0`u^MI5OKCTyIo-S1gJQeCB_I;`C<(=Sst
z3(3R7fPnE1kvxME8Tuue3!By=1#>I`Lq<w>LNjmFA@IQzc&8zcq#u+=xN<)A3!J@Z
zL5nhqWBH;boo<^TzOvEbr2Q#Vw$60537x<VIUcNfmF<jrs076D5sc?T-K*6p6_Y(#
zB{BG+4QUNB7el(j7ZQhWh(e{iZ*=j-&ZTQdEj`Nq0E1jUwtfSSk@z!5KaoMtinGRa
zIB8;A?DbSml1bg8KE}MaK>6LE3^6OlCKZKR@#Mf&ur<F!%9>bTk^e+i^*Ces9Se5b
zW6)S6uPpWv@80iG#?ep#ZaB&KXrdNBfihgBbbwL%BR6El@e$Vp4Xqp<$_p(Rv}xIg
zx`)s56tQ@w_20jLuMv1&rjs*}j^rnslNB{!Jvt(_(dLIbsnMhFhA2=6-J^p*Qv2F`
zcJk;BHb1H>GItz9Htwm_3Qz@W@j=Fw+U<p(g&=c#(U<09IoLY<?0KJ8+1;sKj@ReU
zM{YUVRw6|naw~V{7#=ugbT}ucp?df4jXNzKdVMKyX(WMcQvY1d9+Yy<B?`AYt=_7s
z-d_O657m&5u%vCiTO{lfALAyd$zbObiMbed@aaCwM5O3^+m7Sm=Tp;iRTk?XX8ngb
z^_g;x#B&YBGE=`Uw)=%XgMJnSB7A)Cz6w?J<mQ8i5z=$gOYQKoL!ooRPLE(-W^j+1
z+}vC@5ycw)g%q^sus9}JB#e`+PLZAYT08eTURWam1HY616pf9kKh~=x)WIRn<=hj6
zA|w1Fwrf$jTCXBGwORGOn2hhDs)AQVUoNRXMC_LO{W{g;HLa?y%1K;=yB{s^2?|D_
zDX(!I#J|x^U!r8}9Da|`)6sqE>E?EHu@8g?jZfSPP}RHW{x+;5XPL0oZ;0lUi;L9v
zTtl~2mr4L~NIyUAEi0Bv_dM2a_l;7a54Nl^Y@)kH4|R>`3Cq;ut;*XCdDYbJeWIs$
zW^v(zk~fmu#C!N_S|LmHw>Uq0;=!<iA&RakMwEW1qf}lzQTgewU?0RMqmouidhWu4
zEmoFO)lv01aAg&aY&h$O%AauY{0Jm_CiJ2`e@dVw#+=HsP@zFF{+7za{ea#c%yBCr
zlVw#FX0w%0d^k;7)|RYI-e^+fsejn{$ahueA+O(h<>%+SS=~)RCyj$$KH$q+{H7pJ
zxeLbpZaArt*UEMJxs_F}$u#fC4N@O|Vi&;=GiqTUNbjUY_t1=sz7r3REtDBv)<nky
zsXn3=+rKP|ee}NCYMSY$jNz=TO7|VKqPw6B?CALg57kNLX)4-KWc;Qdb1enMQK%c)
zlH3nQw%z5y{zg*tR(-$&VreNvSzyfpW|I}-*V=^El)}o$a-0X?;*;~sqtR4wth|l4
z$O|P=p7_=f`gu!A>v-D$29Lno1U9);^Ay$SY=z?5qt3X*r;Waz51YR*1TgqWMo^a7
zz2H3W4oz>M3ghkW>Dk;R#LAq*dbPX4o?Mi9nnH?FE2Wj_y_|v$3c6VB-a|mKjE&dJ
z&AYULynyg^@Jdk0A?6q@t?@?2D0}wbSP0|r?wKtMvJcO@_r7Z}3298KzZNk=QEE=P
z6G$)%l`KKPN?R;X#T<22Q1z#8-P_=^9_}>MO1FDuLUuVmgrARB4@B<yv9m&&N?)y;
ze9)PFjbxoA@K!|Ym(Dn8M3OE(Hsq0cOM)iixwEb$k=t_Z`~{IbDtE#}D#)!D)9P?u
zf(KhfJyoY!MKl+@ePJ*dPq~PwXdA69KI%0Q3LhmPn3roy<z+6kYt>Cis9!3k_na|N
zS7O1~(v@R)VpZr(O%myn`JfuF3~Vn1!}69n$vWhuBN?HH4lu}$cJLTKV)j+AIG0Mv
zy=g}+ON}CT*1imVZ}bR7jcOrNgo)rUB4FOTx-1vT<gY`PY<;3hT~)(m4_si(M68_v
z{xy}N*1sIqoi;VncynE@F}IyKR=tQdlp;LM5uRGRY_3oz$71=VjPZ2QO+#F2{Zjbd
z$`)}#Hj6vK&p4SiZdRa3&byCQ)zwLhi;IhiRn^omePC-PywXaj{=_wJXSUOukjinK
zYO_?lKV?nGvSWMhfW*B}_f4KkdHIEFluHVxp=z@YojCzNv4*c>2&dq_$f1jy>k<&j
z0EMToDLreGJG|`d_<4HZlL3#vJ5bjebb-B3iMN$uF=81a*!2o8WDFE?2oy<mN$gNT
zFtYG%aEh~wf-mv{M9vqv-g?o4VZeJT8r`wXYQ2bmiS8S9-PQAVvsYJFf#-y1h45?^
z$nSz=rhS_a6wF$lYDFZZKZt-@=IL7szG;K9jkB*zCoIO=%8Pm}q|0;@zQkNi2FV5Y
z<G%3BU^yck1jM*##jL|_gtKltK;?F65V^nPV3*dZgQyt<7obOhpOVmDk0~ngtbbrk
zTE6r3`#_p}Q<z)f3<K4ZK1i8I1L=^Ju2Hc4j0V+4PWlB3@n|BJ)?$NvyqOWckbYla
z&-q88*IUXP5u}0<q~;f(N==Pq*I(v86HV@Ma$<C~4$%Hp=Ez81ZI%77<t<EIR4pF4
zz6dg+2WnksFU33*8F#59;3LWBg{oxc@<N|nyjZ{+^)ME`^K{l?R$I5xfb9C4ufvI{
z0l#Qgk5X-(d-<wt_Xx|#X4RDkRuEaYUWVphk88R-Q>vO98T+I^^?EDZh}WqOEXlXo
zaJ~_ca+5L{`7`%*z4ry|SMFQtsI*>U4=(8iZ%Sof{{zE@t9DE386Q;0aT@<u@XBJg
zS6OJE?L691Q6n<W5aX?5J@vC7uYT>=i=Q|u9({8Wp#Gz6u_fx#DI%8EpzLZ);+_6}
zA{&8LI4r%MM2dp`nY-H;g2`o57^fxrR{qqa;e<eSPI_}IVNVp5QciXS3)u13F0X>>
z-SxO%Gm4fVp=O1WIPN9<gr;BdJAEVyZ%?6=fIL%Qb|XdM-_-yM88AOp;~EbQHOff3
zIxX>F1S&N{rHME+ZQ(Qv^EF1^$cPb!7Q+|gA4iZ~Ai&DVox?hJrhg@&buN0an5a%E
zI}vPJVzEK!{<h#y-qOH2YSj3-BR+zx{c+Ln$hKMlbKtG;!@0w{lX|eqvadr{Fa@49
z^tZ75&F78Gs9vxt!kBAKZ_>PePE9QLK|dtmdE^T{jc4js7=pV5!qfMh-#VZFhkaPi
zS#K2gjrR*?5X`_Ws#^w~JpEDU=$`uutv3Sv8i792Apmo;1m=cMjstRL;xRX8g@iv`
zX4FMwEnGlQHECrRM1AqTlBuKI!}m>oq^zhcGz)+wFC<xZ(|2LqS}OYq2Q!Sb>CF<5
z&rUxUFyI*&<ZPQ>ED@Exd|KkP`^mcB9<OCnNQ_nExBt*1|KcaV8v^MYzGXkq;qYje
zGZ8PJQJ+rx8ibK0J(sS>)$S#eP0vYC#Q#>-0DpXM7$RP~IqZU$rSW_Jr|?j>sFXo;
z_9>s!d+9;VY1ybfL((iAyZW1uEI!DJYdc|Q4YG92eg9_=&J=y-)B@&ak)p(vo*2^j
ziaoe1fDM15<8gje6{DBCeP(sXHbxg6F4vh;GP~#e&ux8}j#KJ!Hu7^)2Yh+eC*Y6O
zA7BDt6rY}bqLX@*3+^@XjT{GL?K1)tbQbd~gRT4-mk4OlJ4(ly`_Fu1AcPOyH*~bV
zx#r>g-00%w<}Ml{e1%1Ne}e;OUq5qu0mAH!4cs>O<Y(ASI+131u4}0nK7<~~Xr}nb
zmAX-NIMY*?Za{A`FBo3u`Kro_Iz`&^g!FULO%Tg_h9Ggl0JyRL-5>PV74i4xU;6%J
zPW{K1fs4SyVb8M!u$oze%hux)HwT5j=WK5;H5)F)j+jbR*43@;{p0ZvXm8>!=`+vM
zSXz#Km063W&P(qN31YMtW)9)Iqf;G5^Vin_q5(d6Kjv*O>oTVu2+dQ;635=H?hEoL
z`W}8oSEcq}o!-{S?pKN(SxGik5BfmgMv~WSE|}O=N$s>tT<-KH6UBSr$L5c7{Q{s1
zVy(^Il^21TLf@mVs2;a5VYQ%38+d*_{MX7#6H(~Ajn!35L{i;Mp?XN&AjvanDoC@j
zQCgwaQTW{Sa>451pP)vN2=#vTN_W@xb8822?fC0mP-xRhd}ZPmdWcmB&8_%kFelk&
zm%ZRIjOX1YOt%y@*-l!av*TR)r%NDzAo7iKrL*b%x0OSleM$=jEy|+hI5dtExb8%-
zZG-}jyhh^!9l6KTxs#=k&%$6eTwSJ*HcOsG`uEcaXjk<FUI1LejR@zu_ZClHoj`po
zc5&sf5hi}MAqshHS}>?o9uzwBJaSG=lv#A1<hGf+$jZj%i?UYBN3d>QfMn0YM<930
zYG1l%UV?-)CR}Q3V!hoCSFRop>zY17n_3E|XiZ8S^udTuyQINJwAz^Js2(X1t&d?>
zZN!oF%t<ZwkK_)rG`DO+QU;_4jQ4)TSZa~@{mQ?=!4u*>`m23Euuncr8}`kXx8!&T
z_O4b?>{SLiN=adUk7J>3_G<Gd4foUW(3R0WYK2;ag!_v?e_M{13N5F~0Y>I-KJ{Ul
z6CRG5GmIgp*J3uqv|dfVU;RAQCS~IJqYoGfdY+z+>U$h6eL#NN{LV;93S7T`;yjFN
zr_;kNxic#d*!B&(ZN`>Xdg8kcODgl(Z5n9@bMBuY<W2S7M)Ew2ZknnWb7_xqb?f+*
zjj9anLeP9%OMpRWIo#ht_J<{VR;NxiVBbcSJ#LoVU>Rq+?lYWaqs-jgyK_7Jn~{L1
zo6kp0mdg?9S6W^9GOE91y$fG&WQ*pDto!29BD5KtV0}v(?sA>`FeA~0uNU?tU=G^Q
zlqp>B$IAy+fm>d_Mn3Ok)$Jpz?w@oeHwapOl<-3x8bz;cG=A%4c`0CNFH+mx$&=l;
z+}wZV)+qJwWtr7wmE5DgaigQ>k!{@fRUCp^Ktqj;EN(7#p6$%cRua|XvvKG)iBff*
zII~m-fw=(($3rc|gO&AP_fg@UQyZP)<<Xj+AvMQGsp$-w=n$6EN<A&)r%#1;+cg6o
z*u5X)&fDBgyC4MQENI4fVgaenCKJ*Pe62UDjwJ+Mj+_=d*@{~uRq4Gpp^;Gg4sy7~
zJ70xZ=rs-ONA<aMUn;Vp8;$ISDnb+%shsZKPZmkv+4g2btPRpSQV3=eR?ZnxT$}us
z6)3{o;~amXr)R>_4FA5+ym8q{_J*Tc8~pd~N(&q1e1~vbRz>B4GK>b%Iw_R3YC&63
z3qiobJQEDMS=FkSYkq))b<ML-#`glIW&tQN0jS*rCOeC0^mWMon$G^%JTSuIO&2{~
z7nH!ZGATRN6|F=My9yYwN1^?)9L6<W-}m^bDc;PCnI&L{V345|qtr5`qXF8fXmjUY
z(O1%6t9SEuEK<=!{JKgnp(XJ4jC1WJM2at8&qB*Irc~}|(;{GsU66w?e(ePn7)i3Y
zKjpQX9FTo;!$z;bexGOs7z!e9;pEq+WxgOVJwW7nIDNdMk9AewHbWRUC_J-WTO8X;
zuI>|i!Ic@KruYCRgR)<IIpk7Ns@6deXf+-&F)XF{+$l`uJ6%vKn@~vo723tG300~*
z6GN1rnrc7CqwCw65;T+PvovK<6!4{_r->o-)AqHq>0=~MzXsJXnZVk8__`yISL-q+
z)FbyN-etd1rr)2hRusfmiXZc*B0*wz13bL3^HHSikcvY6`~mI(o9ONgeM&UFa&K6~
z^t}c3oPjWo#-AZS9gD_BpC8#1`#ga^bS&W9aiXt1nR7Wrl9{(hq-qJgzN|*e2038l
zj1ha7#QYRBie`swZf;74j$=*s_OZ=UkbSuFLEW01xJ}p~gl#+d%^R@^i&CFO75apP
zpl5Jqk3%^rY#=y+sPZB^L;+@Fw8Bzqkb5tyTbRRLY?qQkCt&U17Wzx~-JDq7#5XTn
z0v{UBx5ihu+T7i&2t1|y#Wx<8O16gx_2)eHJ~n0&BUT>f%ym;mvX@oHEUuTq)#@J_
zg(**+NEBHqp2DV|yi#KlyARY;R}?BO!uV(Jsp;cHBs-SAY@}m@St+OUUEc@$DvwL~
z!IdXDlhTWlDB)(JxoC9V={`6jE>Q;cdUm>eXVHo$PaPP{`ecfqBx`$6&+xs{89ujx
z*zlcSo%m+|&HlR!t;q{5g;_%P2Y2@`cPAn*iLohfn-a!k1fMitF+*Oyb3B1w%P+(<
z%J`!oAr9Sii_%eP#Gam9;|3=EzL;9Q7$H#yup4x3&i(TDFsA-D?4H>(L-IWrmwJq$
zSo4aU-KzSgEz36WvBpWUrgm>>`rvvx!?>`Cl)@TCUUCy;1AesKqF*!oyxAO$$+=_p
z>-*q3mP_-IT-9r&=Cf12s+@Ein-q4)hJz}w8M9*X+L|&o1+js(m-)B`1`gy=R}{!<
zwLaD?Nu}*@rIVW}qpo2iz;{OhC$9tBj;>}!#dI6@-q9}?2%GrA1M}%(pGz`_c#cdA
zzl>vtM3MeO+@R>5@$q)z&!<I|pXgNKgTHl@*@K$t{B=I?ePRcJ4^gBMNX|@LNdbl{
zfpv)|gTjv@JuBh05#mZwpl4RB3@Qzj6oAgb4q?SU0&52kF9L}x-2}aThD0GdC0B1i
z9KuHfm?|X>4~fOat2rnr#beyV2CVuabSZ;Z#D@(mV>A8yGEEm8^5m`ON~BIM4s=g9
zY%1p2KPb@Gb^~KJIIbR<oD3f_wzRY~F)?v>uTlHhhyWQsjvoS6*=0nb_k8J6`{FR%
z;GEq^O$q1qAKe-E!>4ohHh;V&#H-LK!IspFTL}s+Z*P~CEq(jep^w_YaoO%m6gqrE
zlvgURtJCeWOVjb8ff5XiU@rzYIy^Ae&*YnneQPXIM`Rq+QFhnt^&nAz9c_NI1aCQQ
z_{(G3HIOtg_Lu*?{Fyu}3dspZ54ge(Q3R@iLKG=z68s-CD+?F|SP2+pBci9E2q*ye
z+Wc@2fELf1J+WLnu}?GyVX6+1F*kV#iD?NL?7c4q63j8Hr*&$(k+9;oaa<VJufHB@
z`Q@pwepmPE0pfMZhC~6gyR3i+Tt3y&BSFuHJWCa)KLX#vSxBSFH4qO2RA$^xF%ZiK
z{sJARXsR@VLbSw%8m1b&kK0B8^iG@(*=i|WiOf5ZkN!ngU4brf*~S?Bf~jGLEa*C#
zN3?j)c5k0GY+soGL9d@4&7~^{1#A$NnN(|;q8G*+xgY^;=i3li5{8~w3S8XD+2;4w
zTx1MBw3{y308xQXc!pN)fKQHaT4He86L5#TMP4-yUMJleK$Wj#&O2^we2>a4hNsLy
zdA#z>xP`_Q)cnKY0tFP?FDCqA#@=5#-P|*<7Cni6jNRKgh9R@`^z@QbQvCG=u7sYs
zW2zxCSdo(!-K{%;&zH5VsWVoL!-k<9sG>efu^4pawU{DHY7Cl7zmc0utnzVV!IQjq
zuU@KptPSr3;$mq4iyZktEY)4?&reLO!&><j=*<?UXFUw$bJKh6fbt<X?v?}dZi$Pu
z1FrdX-wsbgh4-UsV{xN7Q?T3Nw%89@SSAfvF$}U{%@o@6X7MHjv8G)+!obRm&?@bI
z6=T5tAMV&yw7#!~XXlx0oBNDS`&GjaPE-zwBJ|pu{P7|s#50(2;WlTgwnSRVZsyZ!
ztrcE_)m2sOkiE5)hpgG}vEZ8ardl&tlr1iV7?6(xIeY5;&E+L!dTs~LT%|S|veIwt
zvmVWk4qJw!dS41FZkMmHrvFo0rg_fzIC0aNQrnuM!u`^-S6N;tdpFXLH8e}K!cz+=
zxxoiUoYk@DtrGb3lBy@#Irf!o)}NR`yr(*_X);wr@$Fv|uzcyATLIA!mpF7cF`_j3
z$??@-_ik{|=_A)`*C|i7K7Ii5heH+-F1SEl;2i<GpKxHuh=(0W3Ya@w*d@R@z`F)Q
z&4iNZqW)FqKm0135^VQlaK=_vpI*-I%P%PC>F$;-5Mil%f)nFk`e#a01KE4z*l|b?
z61Z7#QrNIc2zpY5b;_*KF{IXkcK=m12ifn076GX(aZ`AfOM&6rICRbdmh_kLClV4z
z6pUma{H_~a+dz_jToc8ivonyykK5OOR$7m0_gnZY0(j@RAkyt9Rq3=okm3J~bVHdr
z=)QV?ulYM%ok~TV&k)CevtK|Wt_c3%e$UkCvq}HY-Tz$vbN9p*3k-`FJxNZF4M7C*
z)ivd;wXD9yxw&dI8r?R#;_P;^(YNrG&&Jl))}|JmH+p_*ga?`Cw_IvhMwdU_5UX41
z;ra|biQC57On-aKe!hX;M0wr}c6P1P?!Ei`G>bj?>+Hm|6<gq>#Crf&xtA|%=>2~H
D?{hA>

diff --git a/windows/keep-secure/images/intune-namedescription.png b/windows/keep-secure/images/intune-namedescription.png
deleted file mode 100644
index 874b8b52a5f2c37f1437bcf578679b1570066e6b..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 8789
zcmZ`f2UHVXvq8Fmpfp1by`u!_y%Rb}5djrkKnSAJd+$X;K%^r@YJ?C0X`=K*nt*ha
zDvCys4pQ=h-~Y=0-gz^3Gjpfky>mAAWRqxSqDOa;?IH*SqJ!ycTYx~M00>0#n2MAr
zS=`XSLnI{L7J8bX+F_1$;)Kjq!&n0Zs!yXiaU>_ssUPdxdV@fhy3a3?{zsKW_Y37_
zMwU86B?u$~0_lLXh{Fw}qXW`01L?p)5d;w82!tSj3U)|HNJvRZ$;ima$;l}xDJUr^
zsi>%^sVS+csTmpRnTWtl1O{dnmaA8<g4x)(xw#<_2p=E2kdV-|YuBz5K?*7-C#Rqw
zrlO*zqN;Wd>Ka-gkQPWsOADl>rK6>-qve`RtVRbUL#*JuigPg2(Shs0&2-?z&r}`6
zkq+Wa2lYcwAEvLbZ(v|xY+`C|uHta#o}&}sq6KnsF?LC;btQru{J{fLcXxNV4hXIz
z11Cm-%bdr6o56{YN*uB9)KqvX8eVV&FF1pvcHpQZc>Cf*&nE%rkQfk<6p)w~kdz-9
zdM6^nF)}hTHa;=IRVTsKEg>KvAs{g!F*zYIFCnKcp=LaZXq}Hvh0CPEbyDGGsj0+4
z44;~cI!Z;yrlN~e(dbn4L~8p^>c}_(fk;nJM<S8Wo;`W?JU2TrAUh{78`Ybi6p&w3
znUC%-Dyb<hLzTR&eOXacmFQMQgqq~4krPx-A_^6SLe-(VdQn|p>gwvysb<8i==>x!
z8jeQCo+lwf`wqIlAKkx%9$7?BbfPB+=&zmcQF-sXdf(5UboF3+dNO-@dU|_%`_cLR
zM8FO8FA)Z7k_QjQ2M<n0$0k2b%}t=;6X?_lG<ss>$He69#Ps|Gp>u*TF+m_q5n=Yr
zbXVQ<+`{z1$?WXQ&qP>QUFt_K5eVPE*R2x)zxCrs{f{3%e*NCt-utt&f4n<VyF1&v
zyW6~bFur^6W%uA@Z?EO#q~q-D{n^<WVIr0=fj$qv)KB=jNFWpw2%QANIDtS+NQ_FD
zD|Dv;fw<*i+8UMtv-n)or{mX|`d%Sbu4uCH_~9>>&Xb5IE1?BYUR0B}R<FKJS-T|8
zlU`j&b*w@#y*(znetql!mZ4jJzis09Yw!q|2SPP_OOGl_mI)FKQK!&|ppE($0fEUh
z;2Qhie&&TF69(!?-Z7HBqMZ5tHXwC>tAB2)XiH1uW01+dNrI_H`O%U|g3Vzu<bjG%
zaLyg6p?5<IoMFOLw?}Y=%kOI0Mq9dPf5f&{5*+Wgkdi%I0|bEX>r9UD#^82$MVQ=_
zjaFZVm^y`uzYvW*UB+7amSQ`B5*SjB#gwQ^vJ+dQEbMd=q4AMXai;l(%U3XVP<YP@
zu|B|PKy-SY>k&v*80#_C%79th=4VD|5Gpc;zCC^UEE_RZQc@G8Y8-Q0RH>uurOkr@
z$o<=uHg=PMrJqPzL1+DvDmgGa@_2fR&y+XNOIlMY>2dAJ3vh8C(yj3!idli)1P<-^
zQAqWkzBMt!*?J5gX5nGS)jT*R+KfydoX%3R{o1xmW^e)g%%Rll@$~Ku%}KpGRl;Qr
z<7kVSa@OFl8ymfEIdeBwo;0XDTW54)Iykvu#uNJTj2dWfc$Aj=ZL=E+dC-<C9-b}N
zMqfa`SaxeA;n{G_c9U5~RZsIQ6Lj;LXLZTN@!ny6X`@g!_u}+m*V`B`gp^y~wgol-
zIG+A}S1i9xt01fx?qx-#xDHhKvA(`8<M_(JJE`C*29r9HPcl&-93ejZJ^)uOo`aza
zF@7V@VW*Z`*X<!zprmSHbn+$Hc|JJvGzFp4vEFggruEUq#M;zPETqAU?4|~@S7-Z>
zje<Q@EGPAxw0ag>2__zvBpb(Ox^3oZJ{S{?G6q?6R$18XGConACI8I}JQ-E_R=`<8
z-l}0NSObfc{S($>@R)_t)<cYvO28yTGmA;Jsix3yv_Z$etjGLX%wXLL8Q{qh>>VR6
z`D}<~j_c!}w&d<z72BJ5$u)ADO=uGt#)}X_0k!3H<$3)HJHs?&BChqcnGCaj-5Zhm
zW$z-^Bfk3%&#f1B^0xadEl+~K>`950Ucr`+a`H{lKbrz@WP&KuvIk5%dkR>~TabbQ
zcM6Om%64QDz>)R>uh@twjomT#6Z*@>k~*<ZhBt?spKK!)8sld^_pUyDhc9>sXLIC;
zr@x$k`}-IHB4EhJdErv*rDa~u3%(i4URoLgHEqpQ;E^g#Icf=s&SJ<*GjSiUb$;8y
zQ=!oCz=J|H%?AJ6@o!+sgP@iSe$}v!gU|(jPrrKYV+MQeJb@qYCy>qr-I$-Xt&KEF
zh?=(KeRhK_l>Qv)vLR-o@qT4oP$SMw)L#`=WA_~zXE`!&WH!aupCvFp?yBgk`ED1S
zf%GiN+`Ty&-Gs9`#JR7*Qvnm%pwp68?KfQOMc8f^DL~%VbtuDkNI7TL8A-d0#2?d$
zb$>YtX=%T>;By(e(6yhZbT@>DoinFSk=4Gx-HWegqqHF71*>Cxw$i2=o0bI5M@x!5
z-~M*6DU0|Gsh9Vs5^I&y5AIHiGVJN(9MY6Nypn(8NhJ%9B+jEhf28i<k4^iV!ki%N
zYzj^n&L(u}A$@`&MyLr0FH9a9?_Cg@1KZWzPr8ed%m5hj03kz|ALd$rQ&G<CYqr;)
z_&4PM4Jr^-oG0%Apk`83@C83m|BH3CuMi*u_Xy9FE`|RIlrmgXl&6Rn27{0!#G!m4
zgc}D!(1LIv;`nd6s4s9#4oa*)=4Yp+P<?M634rt|B7pPje=u>te~RJ&P%@Ivk9NUF
zUJ>W_Cq$n@pD6lYE|0$>Qx^zp-zck)c+H0u+l1+`Rzkj;<Yn9jo0SG7Zc$xe=OXKK
z<^^sSU8nKccwlOxWBQA1I_)JHT-;ML_`dsYg!h$n4{v7#?U=v}em-1jJDz;!xA?VW
z-8u_Dug*n>4oEW28j5UG@~gCRMmbFNIekkWl-sHoq4|(TC*}E5FP(PG&$K*A*IX*7
zi!bMarhsX))g_9Y^u&68{x&NpxZmAtp0$>`K1jwJ{h0{~tLqz6tB(c{x;P(Xpv1%(
zHYL-W8NPV;!&`0sj6Uq7p0UTvM{moaFzU&l-+%nB9j(vThU%9BH=kK+V(hPaFvB51
ze7sXgBWSu4M%MCcvC$3R7q7Sw$i0c7TUHav`V?-Ng9ly)7~2kJ0~fjv5;NgOn$VRr
zq=%%b@Qj+@Fz1`pt5n@lY@B-fmw^%WGKR&slq5CSeN7XFkLpRFIYIq5R-e|c=(2Un
z;ZAlIYwskiYEz_~kfIKFkkXk)zi8dOJB(-^u6hSSKh(t1N<&e;5N!_*3~uOp-rKfR
zA?cD`ruI|>?7O^XxoR51{LVGtP1a7h(44R|=qHKI-FIn-)1KQab!ikiXVVPOi#%;?
z&^-6`Pxwx2ycqB&9pbEdNp67(9E)(E2ghn+iJT@@m`PI?D@@=62HW(D=dVIt7|PB5
zD*j7b%z$Cna+#|=(2;cxzr8>5oz-u3@QuwxWl$Uqfkd%jC>H7RdEvyupgR(V^(4vJ
zXurd)>QOXPH-LE-5&!e@Z~>>Qa{x@=V#M4CD;bTy!5ou<xQq#>u;t9A&YLRSju+TR
z<JM#sdA}*m^$YfYEF<@8vNe;_F2wfhj6NRcI;8Mq8n^UMe$cjq_BmLSHu)H*t<mwd
z?Zw7NBMYjbO}jMb-tp?m6xk=~L63TVy<W4b!h85i9H343ralEOM8tBqJ=AdS)Pmza
z>}|W_;8L*01O;&GR;rKtLPMM!j0a#<XHgZi&5BlDa6(%8{N`f^a%`|E(W3+4qBN+e
zGol2QPYdO2sC0Qs*$ivp+Nt}DG2b1$tpDT_LJ&|T!`_HxNSTqC`+cWaM%gw=cfR9K
zAtJf@CEYh6mw<%}m~ua5|1ZdA(U-1%{=Q3#`-5kHa=h>UG2=1@u98z$ep5UI!VX-u
zYD*M)O*el=VY)Hy^UiO>ph8H@lcQ_J15TyTpon=A&6nevy%&5@dFz7cE%sg&ss<Ct
zYu&C6Tf1ZE=(6c*-!TgU%n447QxKja$0AEdii*QFKHaf5hBH7l{iJ{nmVhgmc}|T<
zldMCo5lxp%9uMN1vgAo@-8izfunn5N^@Zr4>sK)xfsV=K5&a12>zi*}AwQiiRc-82
zmaM3$%f8aUQq6p=Nv1;Z^MuDF-^4O7GpBLWVR*8>o#w<x#xIpH&%GTArPF~!<erYE
z+z_mQkak}F-N`W(M3ysWbGpTEPmBG~3f6L*VD-t~b2PDSys!UbX_*H&ma!mUXe2Ui
zXmiLP=GHa`&c@S{j1{~JN6|thI0h)h4ge8r^1j%#l6t^1O5c(#1lFauM;n;VDx@;=
zXn#Yf@gXE>rJ0K9K(<&SvXCbeg~@y2Y|t=@u@zN}D5iLXfhIjd)L!6~W6&4#XAa32
z4wlAz6|7%XqfXooU980LqfU-2P47#qac(>&<*qM$7CbR`??oCpG(1dk(fm!vfKAR6
zf&9}#Uhvyq0pb0j>J8L!Ake`W7UQu;bxaq5SK%=<x<z<>-St4?UfjA^*m9|F5=us?
zr>$LPerqvnXU;k9TD1-KLlMob?$O)gfx92LYm!XgoQW;`F6Ex%oc9Xb5($Sxf(NiJ
z8u4<`g*q&hcJy>TzZ@SH3_t1%wuQiX4Lws}HN{fq&%o>89bxL^>(Y*ao<$iFj?d=Y
zX3CeZOZ}OD^tp#JMx>e%gBBH+5EFha_n;*rcUI}f&kcNsa?zife0v<87q&O)(LxO{
zO*|cRs;3uwAnbvx3J^uT5uc!oO&2TBvc6;4YFz6kaVmfnM)+zA+O*IDOpUC7Z(DQJ
zpem2?a`-P^tZ+3uG_c4c(Wp<}XYu|^hXyT98#iZ44PdcbGG&DVn)D+oWt~#^BEUor
zMVK=Y?WeG+H#b`tNTC-22q_q=PI1nZs#9RBfs^?K$E`e4Fwr!U_FQ}J^VdlCtpKnR
zF+-(6fnnA08!&Q%kj~KX2Fr8YB8qL*&c&MhHs0G=JvV9%qfLbokshYMmc<Vzzq5vi
zyd@*1X|e%iSAb>Gx4Q;@Dj+ac6@<|)U-<IgXxV?*j_)29-?8_0=pEPAi<m?@X9l3(
zmv_6ffI_ZKcunfS6Y`T9Q#Cw#N>*Ai^|Nuws`ckFfPAmKWdnWQXHO|-`U89GB5<m{
zPg~lE{gBK%&zVEl%m}a*y}`D%Wv;eEAg`H$Q%ykyNy+BkmrYEHxGEz+abnLt%3&40
zn*Oy)X<N5KaW8pLIeizyGIMe`HENG>ToJ@v^FPT|pS%XB_Umk5%Dgivpr4d6faNAn
z)R?B<w%p@=Si#*}<-fU(bohRvq%kuUd@xv;ya&V^HZq?PiP9tG4s+V@ScM|Vp1m#4
z`6w5&44W)fc4$b(z_>7iY^S{QS98i<&+Y$SEK4-{(@TO?pRDk!4~h|Y2jG8_v+~#$
zHtT+ry|LGDX&W@2)wu|8)7idu_*9NozT1$jcqYsq+E%IOobJ-jPnd3tX6lU;PFWdf
z(JD?UX7x_0{i;61Ovd_pmzH7-3J1rus51<5QoNy?X~xpE!`|6g2^L71_cc}co`loz
z3Cha$rUi+-{Nfc}S^YHWGI959RouQViM>`9_t9T?_bQx+{-I~T;XCwF9er%si-E%3
zR#6V00sv=30reWa8v@h}TZR8^8$M#kkbtq%VIY8vhzF^7%9iQ~e7JVsE&H3qcDwMm
zyUtaRb5pFkt|zUn``}{BW(G^?8KLCl#QxG$iXc|q?}9B)SJF%l_NoCQ5`P2piR-xR
z+~G?KibFAUEoAh&y;J_DH0jZ=U7bakVC#j{^Z}aEZw>ZLu3ksNoa@{rKE%#z)svAb
zzU^b8{A!^1b7GF>b(nw%cJ*rkoy~WJdduuat_zs1g^vP18E^8E%&71&UWZE1`F2>C
zE$ciuQXCy#z2`g&trcM?Ff0%PBNSL8XThX2P{dxUyL;oLVK8E7*55H4LQ^piza9C6
zoS2SPl`Qe~?cEs`s0j7_mT6RIj7Xh>WVz$%LYQxg7;%SHsuRWS@eRTu9wWeZYxvsF
zUf+CN$M>Z8THhNq+{5qGIMJV|Fk-q{N1>Iw=Ke3n9IDIr5~H)O%xo8(ESGx!I>VNz
z3~)i(Jb^vcq`-Mtz|zC@m61~&%vZPh#a%wcdTRpsWJ50tjVHm(sh6jm2v&?ozkQ<0
zGLx7iE;FAViMK}JvR=|*ly6Av{IX}+M*J*1^2(8YoHIpt2UGjY=qU0!@$OH%?Z{vP
zRvN*k%Unl0L4r4}89yt?%LdFC9Wkq7u?vI1@voNq+c1xBW11|-IY)92`*-9Zd>&=q
z{#cfsY84shngBk(2$bh<WYJwoB%Gel{|S%`+q*b(Q-F@&y8iSJ38uVr0C(POD}_ch
zJ>p?%lZcta%@HRh*0*YN#IKo&4v81yAs!)=8i>dg4lTd1*0!lAT42=)yX{7NHl-hE
zmY<#p;$!Kd+a1ziIw5skBK}*4-LE9h5toVX5r3a(B<HP3b^g>N3jb65uZ}$z67BGp
z5TO}q+f|$Q&w?B`J-p`PB8A0)(iJLOrbTdq_(jWuMc(8q-zOh<lSt$;r<tj%v#RR9
zD0rXe^MzJNK9Ww%Z<(zxFSUm|ovFuE8Ypq~m)GF~Vmt%@*!Pw>F81I0@2S8%N~9R&
z-M=R=(^wC88PAkJceX8eK3;vow07jRkWGFb1>*}z7KV?t$_I8%vrLi1v)Tj#Xa0iv
zvPde|+ne;P{Fj6F0OWR;?Z?3u!@rUC5G^h6Pqs2{)Ld^1NR%8uLh{~SO~+btxe?W`
zqQ!S7#Ez7_UH{tB$B5s9HQ_^J<Zn0Mf_Mj-Hdi8~?D>gx{#wAHy%Pe=?K1@_J|7Ar
zLMOyU`uZr{Ta1WDRi5Mbgu{E5`sXYka6?m<xUv-8f19NxAudDD6>?NFMR(bWKWB~K
z)%1%-oQ5oQH**CC@}4W=MwW9uw1|GG=f-|N7<q_sh%6g1>R*O<96qB54n1$~s#qqd
zs}2}7Uf<npf5jNHQvNnK%~j;%Q7QK&Yz6rvF{1x|OQF%X22<CCNk`eZvxc~*p`oWu
z{l2I8qp<kD#b6)Efo8nNcNJ@_zI|GAQs*jZEnl@QcFSK*VuHjg?%uI7FD97R3TsxC
zM=LIJT;LI*Ur>~5jTj$2vTmpo4@c#mj2)Irt5`AZHEtfAy^+22*-E0`z`1=aemo4q
zGh^HP&H1{#cT3XiK6}wq^@gO6>BRjqRG)N;<VRR-GAuXj*fIItp>fU%(x=fA|NLS~
z_?;e4?Bgp|&#t;nXvD^obRZQfwVw>~Nt)!2KldA=)8HOx8?)I0CJ*Kn9HfIdO1dHk
zjGp^?u$r!oTe!c;{IzzYwECgr;piRyS$X13W4*|#0z_79@5e)|Y$9*IBO{dQS9))K
zpc0f_Yg(#m6Rx*(tJW^HjL<^Lnl<jmcLOiF=yU3D^ma9iPg*pac3)9bjl<pz$I)Ff
zem<e89_=C0XeU}nhMOKu%`_M=)S3|lV(>_WW8bx<5{8e@Q~R6)`D1^xErEdbJ$E-s
zOjB*{9W9C^3kM@Nxd-|Vv=)t<q==bj)QZ2lHN_#Ce1f>G4p%Xn2_h?Rob5vFW#{_C
z@$+v@=FF}}ERkvjlQ?8&PnViJrcU5VGV_dpfB#ZdqEG99rM0u>FRONP!kcKRL@@Y|
z9p>K`G6zwMMoW#f#hxhCbDezU-<}j6f_r0CzgVp}`F<Dc!tr9{yPbir*lZI+`&E&;
zu-(Jn&SC3(DMrknmI1wlm1W#=^VQI&8|<vE*f_%#r$&{#%kej`kYE_#8mK6ymeCs<
zd*kGxU|1ma{l<3@9t_VVwlkk^I1DFG;NmJ)tw)mO8FYcXx9$aHCq^urO4ZNhf}Skh
z4+=Eny55Zr+n5_U4aoB{Og{X+RaUd!j#}?Q>D)fVP7U+0Tgnwlgp{$e62R&dwm-wS
zw&t1tRP1qAh=&~>Co1=9Qh)(to&hy@BrO!1t6?3}E`rclqwLz`#X=YXga$><IiZGP
zA<;(v5TYF<nii@-bo{F(%Fp>IA`$#Y^AGvUW692~1kXv-xg+C0gy{b_;6Fi#_Ww^R
zjE#CzxU*|RMGYxdF#*4OEZ0~bU4-yu$eArvq0Bk2<DWSHmH7)P^zB4K<Uck2t%w*}
zCC)>6znlh&<tHK}<1a=VMHxk*+{JyNdQe=mFma(|=LiO_5b=Da|J&AxxBzM*{#E>Y
z7`zk^Z!zW0iD9p@(-0)$-(WLWFbsn1YG>0LQ7920Lj=Px`R<Mho=;<PI^Clc=J;^)
zO#wePR|)wnbhhJ`a_+Af^ma|_<IgnxrU5N_Z3E$L8=P`Smk6i7(^P7vp0H7Mb@VZl
z(@E4JnDpl?%zjzDF@4X7BD-R@&6M?G?kVNtXUMo*QLmMDnw?N-__g|sc^Je8Yc82I
z^;&x2Bt&Uter453bRp<~DuQ=oylavpo95oy$D<IH8-~A}EVnP4aE>91QEs!oX~+9X
zSp$V?K?AxNwHe&+psoG6M=)%~u*3Z!M%e!IyJGxGuI5(mD`)7iV_oN3^jcr79e-Op
zCsHfpyY08aAe6XcAK|IhNNvWebPtmiT}-$Zw3&QllBzKsKjVvezS(gN6VtGpZKW8p
zn|~)x_6sKkyMTfmZvL{uNA>nk@f8tx?~{;e?y}nWCiq&tw38r4KvdfbclQA8-E=bs
zFplF*F{%=kLzGzvSF1L~`Ob$wfch{#(kpvE?)BT9+N}I;%O<bJmG~bV2X}!)%$eBb
zd-j8wBS{+N59BH(bnnO2dGi7#k*r`FzoO*|&fPB9_j}&R!z0>K46e&Z7h10xYz%j6
z8uE@x-zL{eWH+wNUyAys9R<D_QV_AuVmd_5OlnzT6nf?9U_ezei}LGxTi5#JkgxnO
zHk;x3gpThpj&iBR&wTF}pR=^>M`Dw|XBQ*^bgsskFr(?|&*?zG*yD*#QRXtkd24-L
z>+I^tRZccb?K?;#e}4uHl4eCR8__6QnR%+3+SYSa;{*N3bM+D*c%5!0<I&zB1ovTw
zX4gHws6?vURf4g?VWs*J)PqMK!v{rj4U>zn@OD3_V^ezR4scHKCu=ZMT$N~AuUE~g
zvfNC$5~Q2ULC+lIssDJu*wYp%E|GL`o9dPhrm1J3kfI_vEQyfWkP3(u;P<{2^{;$r
z=K(K|%dL+IKuhzNjjQgr_=ex}`(aW}gP`&2?7K;)z$KR<QH&8nl1seqOEQw(k2J7R
z1hYEH3cUYdr{v1tosKu!S!7w^O-hwF5E^%W$<nc%=lB%QY=9AEBUcp{HIeQT8@VLR
zUQaQ4y<=2S=FDZMx69`XZbM4;Ry5>kw#!`T(wmVi#s%xNPgUQcBXrcDHJk+9-p81u
z=Y`4-4&9OK-O*ol6KXrhOQ-GgGMduy?HM?=(lpk%KX>tY4oS0SO#OR0*F7t4So$L@
zE(9{nYd<h#_@TJXQVGzIbQT<5Plc}^wIBJUOg@zkx^%Nd4tJ`oHbN*Y>$GlSkid$X
z|MsPiDTwiSB{@zxV|^Nz6lEYO8^(}K6|zSQM5>opr)A!b`P_rH5C(MAfa<%ZTGo|b
zy*r@@^8+Qs%k*TavB#vC=(G+zB*V>J!`jF_xK0(@d_1d{;uppW1-E?i$$qTu=M?ii
z`@Ztt4;gF#o6q)S<I%f=@=Z=XjE&zguW>-9Sh}X7{=t^osF1B>x$62A@vkwrK8#*^
zm!gE|4I_nSiZ}1l+Wz49IZ_c&1Eoz*mqxet-V)QMW_!Kp_4I>eg1d+{_V<3PJ)o9&
z8ip+~kle0p#%0-~eBX(&x{dSt-&FE#p;9wbo0P!<xw#1D(x5-oHID{*Ex(r3!gO>T
zB*(BXg`7FOx_2jx8}B8(z0y*t<*DB1tQ?4eKnd%sK<oNC-;4-0z%;M*RHJ(C;bd~U
zo&V=|kvG`G?-QtOP5OKc?FCc~Sjks4@-M1>4vDADnP0yruA9qFH6!$5(Oc)?qU;yU
z){C~SC9Y45qCn==^rE={rU|CBG23|YG9E9Z(m&0x2QgQ;Cp?-rY)&(EElfhtUy`+k
zFX-?(65mJxP~+-F;R7ws8a>SWSBZupJ;=isGM&|p5AW7yge_rp0<Xv`iWmOqQel31
zhch738B2$4HWD;t(OxTpL$Pssm^@WdPy7AQa2SpM6`syl+y(yqqeE*&IYY(t^8{RN
z$ce?gblssN-;DZHqGU(PK7Y3e*Csa;rclmkcyP^5-S1bj!sa45k}?&D=NZwd#!t)C
zD$Hi3QRncpN#>NxMW8;{IGW=-Y<uI=02i12zWCD$W9jHYh_tjcc5sju8a+7pZxehy
z#BNRQs(+JW=tl2O`}&!DeD{S8!N>Ev2lqw3w&esOb2MbhFrTA{2ePMk7aOa{R0Z?4
z<wpoN)dp!XuJN?g(Q1EO5jiSg0PL=i=_B@j>G|_(;VXKI^hMibWZVv9@t>U(#QY2U
zbDs`iCXluImDvhWhVAX-;Kw!^aWbUw^P;$3j>fM(X+DCVo+;Qky6kW9bn9yu(u;F^
z`@a2p+u2~Vm(iRd!rEE3^w-#>6E3O8qcp03Sr&=<Exi1g{u)o9FSa_@k=-x<(eL+&
zdc?_G2Y6nXmehPVW&MFezoH>`{)5<?NoehBZZ588J#8%7ms!aYzqFB2MqN`LI(VLK
zCB8CiPLJ@gLk6;^&ok$7jCF4IrR;2ZWx~Fh8&YSjv1xS+8p;Q69G4Fi0H^#)ZZ%tv
zzU5YM+=gKSdTcs6UrJi@M*w-5MrtnXnySWy>8RAJ+$wv4xDPLt(j@d*7TCp}2ugO{
zSuW8=>&w3~!mzLoB?V;@oYrw8nkDb{xLNDM+U=02)s9`^iuh*vmn^J1w_je+Z<4?f
z{~EE3-}SN20nT`sxkvrAGhYWsyUA!@w(zN^3Ow8@S4~PQWBBu|#9*DD-N)6yVawcZ
z%lxFbaY77amxT{Cn<Yi^fFWQc36T(A_MCH&|H()gP@v^hjiC{rqyEp!8sdwdB2h4?
bJ@YR0xPMP-`lXTcKYPG*Otfn???wFw^B9u1


From aec3e491151bc565660e2d6d8d994391ba47768e Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 6 Jul 2016 09:51:49 -0700
Subject: [PATCH 16/69] updating text and images

---
 ...apps-to-protected-list-using-custom-uri.md | 43 ++++++++++---------
 1 file changed, 22 insertions(+), 21 deletions(-)

diff --git a/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md b/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md
index 5f10d77fb7..99ed1825a6 100644
--- a/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md
+++ b/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md
@@ -1,6 +1,6 @@
 ---
-title: Add apps to your enterprise data protection (EDP) policy by using the Microsoft Intune custom URI functionality (Windows 10)
-description: Add multiple apps to your enterprise data protection (EDP) allowed app list at the same time, by using the Microsoft Intune Custom URI functionality and AppLocker.
+title: Add apps to your enterprise data protection (EDP) policy by using Microsoft Intune and custom URI functionality (Windows 10)
+description: Add apps to your enterprise data protection (EDP) allowed app list, by using the Microsoft Intune custom URI functionality and AppLocker.
 ms.assetid: b50db35d-a2a9-4b78-a95d-a1b066e66880
 keywords: EDP, Enterprise Data Protection, protected apps, protected app list
 ms.prod: w10
@@ -18,34 +18,35 @@ author: eross-msft
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-Add multiple apps to your enterprise data protection (EDP) allowed app list at the same time, by using the Microsoft Intune Custom URI functionality and AppLocker. For more info about how to create a custom URI using Intune, see [Windows 10 custom policy settings in Microsoft Intune](http://go.microsoft.com/fwlink/p/?LinkID=691330).
+You can add apps to your enterprise data protection (EDP) protected app list using the Microsoft Intune custom URI functionality and AppLocker. For more info about how to create a custom URI using Intune, [Windows 10 custom policy settings in Microsoft Intune](http://go.microsoft.com/fwlink/p/?LinkID=691330).
 
-**Important**  
+>**Important**  
 Results can be unpredictable if you configure your policy using both the UI and the Custom URI method together. We recommend using a single method for each policy.
 
-If you only want to add one app at a time, you can follow the instructions in the [Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) topic.
-
-**To add Universal Windows Platform (UWP) apps**
-
+**To add store apps**
 1.  Go to the AppLocker UI by opening a command line window and running secpol.msc. The local security policy MMC snap-in opens showing the **Security Settings**.
 
-2.  Double-click **Application Control Policies**, double-click **AppLocker**, right-click **Packaged app Rules**, and then click **Automatically Generate Rules**.<p>
-The **Automatically Generate Packaged app Rules** wizard opens, letting you create EDP-protected app polices for all of the installed apps on the device or for packaged apps within a specific folder.
+2. In the left pane, expand **Application Control Policies**, expand **AppLocker**, right-click **Packaged app Rules**, and then click **Automatically Generate Rules**.
 
-3.  In the **Folder and Permissions** screen, keep the default value of **Everyone** in the **User or security group that the rules will apply to** box.<p>
-You want to keep this value because your EDP policy needs to apply to the device being managed, not a single user or group of users.
+    The **Automatically Generate Packaged app Rules** wizard opens, letting you create EDP-protected app polices for all of the installed apps on the device or for packaged apps within a specific folder.
 
-4.  Type the name you’ll use to tag the rules into the **Name to identify this set of rules** box, and then click **Next**.<p>
-This name should be easily recognizable, such as *EDP_UniversalApps_Rules*.
+3.  In the **Folder and Permissions** screen, keep the default value of **Everyone** in the **User or security group that the rules will apply to** box.
 
-5.  In the **Rules Preferences** screen, keep the default settings, and then click **Next** to start generating the rules.<p>
-**Important**<br>You can also use **Path** rules instead of the **File hash** if you have concerns about unsigned files potentially changing the hash value if they're updated in the future.<p>
-**Note**<br>We recommend that you use **Publisher** rules because they only work with apps you've specifically defined and they can be configured to not require updating simply because a new version came out.<p>If you can't use **Publisher** rules, we then recommend that you use **File hash** rules. **File hash** rules are a secure alternative that can be used on unsigned code. The primary disadvantage to **File hash** is that every time a binary changes (such as, through servicing updates or upgrades), you'll need to create a new rule.<p>Finally, there's **Path** rules. **Path** rules are easier to set up and maintain, but can let apps bypass enterprise data protection (EDP) by simply renaming and moving an unallowed file to match one of the apps on the **Protected App** list. For example, if your **Path** rule says to allow `%PROGRAMFILES%/NOTEPAD.EXE`, it becomes possible to rename DisallowedApp.exe to Notepad.exe, move it into the specified path above, and have it suddenly be allowed.
+    You want to keep this value because your EDP policy needs to apply to the device being managed, not a single user or group of users.
+
+4.  Type the name you’ll use to tag the rules into the **Name to identify this set of rules** box, and then click **Next**.
+
+    This name should be easily recognizable, such as *EDP_StoreApps_Rules*.
+
+5.  In the **Rules Preferences** screen, keep the default settings, and then click **Next** to start generating the rules.
+
+    >**Note**<br>We recommend that you use **Publisher** rules because they only work with apps you've specifically defined and they can be configured to not require updating simply because a new version came out.<p>If you can't use **Publisher** rules, we then recommend that you use **File hash** rules. **File hash** rules are a secure alternative that can be used on unsigned code. The primary disadvantage to **File hash** is that every time a binary changes (such as, through servicing updates or upgrades), you'll need to create a new rule.
 
 6.  In the **Review Rules** screen, look over your rules to make sure they’re right, and then click **Create** to add them to your collection of rules.
 
-7.  In the left pane, right-click **AppLocker**, click **Export Policies**, go to where you want to save the XML file and type a file name, click **Save**, and then clear your AppLocker rules.<p>
-**Important**<br>Be aware that what you're saving are the actual AppLocker rules using your local policy. You don't want to apply these rules to your employee devices, you just want to use them to create and export the XML content. You must delete the AppLocker rules before you apply your policy.
+7.  In the left pane, right-click **AppLocker**, click **Export Policies**, go to where you want to save the XML file and type a file name, click **Save**, and then clear your AppLocker rules.
+
+    >**Important**<br>Be aware that what you're saving are the actual AppLocker rules using your local policy. You don't want to apply these rules to your employee devices, you just want to use them to create and export the XML content. You must delete the AppLocker rules before you apply your policy.
 
 8.  Open the Intune administration console, and go to the **Policy** node, click **Add Policy** from the **Tasks** area, go to **Windows**, click the **Custom Configuration (Windows 10 Desktop and Mobile and later)** policy, click **Create and Deploy a Custom Policy**, and then click **Create Policy**.
 
@@ -59,10 +60,10 @@ This name should be easily recognizable, such as *EDP_UniversalApps_Rules*.
 
 13. Open File Explorer, go to the location where you saved your new XML file, and open it using an XML editor, such as Notepad.
 
-14. Copy the text that has a **Type** of Appx, within the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
+14. Copy the text that has a **Type** of `Appx`, within the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
 
     ```
-    <RuleCollection Type="Appx" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
+        <RuleCollection Type="Appx" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
     ```
 
 15. Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>

From a2b719e1719688adec03d5fe994c433129af9da6 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 6 Jul 2016 10:17:22 -0700
Subject: [PATCH 17/69] Updating text

---
 ...apps-to-protected-list-using-custom-uri.md | 43 +++++++++++--------
 1 file changed, 25 insertions(+), 18 deletions(-)

diff --git a/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md b/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md
index 99ed1825a6..56525c8a4e 100644
--- a/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md
+++ b/windows/keep-secure/add-apps-to-protected-list-using-custom-uri.md
@@ -23,7 +23,7 @@ You can add apps to your enterprise data protection (EDP) protected app list usi
 >**Important**  
 Results can be unpredictable if you configure your policy using both the UI and the Custom URI method together. We recommend using a single method for each policy.
 
-**To add store apps**
+## Add Store apps
 1.  Go to the AppLocker UI by opening a command line window and running secpol.msc. The local security policy MMC snap-in opens showing the **Security Settings**.
 
 2. In the left pane, expand **Application Control Policies**, expand **AppLocker**, right-click **Packaged app Rules**, and then click **Automatically Generate Rules**.
@@ -69,27 +69,33 @@ Results can be unpredictable if you configure your policy using both the UI and
 15. Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>
 After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
 
-**To add Classic Windows applications**
+## Add Desktop apps
+1.  Open the Local Security Policy snap-in (SecPol.msc).
 
-1.  Go to the AppLocker UI by opening a command line window and running secpol.msc. The local security policy MMC snap-in opens showing the **Security Settings**.
+2.  In the left pane, expand **Application Control Policies**, expand **AppLocker**, right-click **Executable Rules**, and then click **Automatically Generate Rules**.
 
-2.  Double-click **Application Control Policies**, double-click **AppLocker**, right-click **Executable Rules**, and then click **Automatically Generate Rules**.<p>
-The **Automatically Generate Executable Rules** wizard opens, letting you create EDP-protected app polices by analyzing the files within a specific folder.
+    The **Automatically Generate Executable Rules** wizard opens, letting you create EDP-protected app polices by analyzing the files within a specific folder.
 
-3.  In the **Folder and Permissions** screen, keep the default value of **Everyone** in the **User or security group that the rules will apply to** box.<p>
-You want to keep this value because your EDP policy needs to apply to the device being managed, not a single user or group of users.
+3.  In the **Folder and Permissions** screen, keep the default value of **Everyone** in the **User or security group that the rules will apply to** box.
 
-4.  Type the name you’ll use to tag the rules into the **Name to identify this set of rules** box, and then click **Next**.<p>
-This name should be easily recognizable, such as *EDP_ClassicApps_Rules*.
+    You want to keep this value because your EDP policy needs to apply to the device being managed, not a single user or group of users.
 
-5.  In the **Rules Preferences** screen, keep the default settings, and then click **Next** to start generating the rules.<p>
-**Important**<br>You can also use **Path** rules instead of the **File hash** if you have concerns about unsigned files potentially changing the hash value if they're updated in the future.<p>
-**Note**<br>We recommend that you use **Publisher** rules because they only work with apps you've specifically defined and they can be configured to not require updating simply because a new version came out.<p>If you can't use **Publisher** rules, we then recommend that you use **File hash** rules. **File hash** rules are a secure alternative that can be used on unsigned code. The primary disadvantage to **File hash** is that every time a binary changes (such as, through servicing updates or upgrades), you'll need to create a new rule.<p>Finally, there's **Path** rules. **Path** rules are easier to set up and maintain, but can let apps bypass enterprise data protection (EDP) by simply renaming and moving an unallowed file to match one of the apps on the **Protected App** list. For example, if your **Path** rule says to allow `%PROGRAMFILES%/NOTEPAD.EXE`, it becomes possible to rename DisallowedApp.exe to Notepad.exe, move it into the specified path above, and have it suddenly be allowed.
+4.  Type the name you’ll use to tag the rules into the **Name to identify this set of rules** box, and then click **Next**.
+
+    This name should be easily recognizable, such as *EDP_DesktopApps_Rules*.
+
+5.  In the **Rules Preferences** screen, keep the default settings, and then click **Next** to start generating the rules.
+
+    >**Important**<br>You can also use **Path** rules instead of the **File hash** if you have concerns about unsigned files potentially changing the hash value if they're updated in the future.
+    
+    <p>
+    >**Note**<br>We recommend that you use **Publisher** rules because they only work with apps you've specifically defined and they can be configured to not require updating simply because a new version came out.<p>If you can't use **Publisher** rules, we then recommend that you use **File hash** rules. **File hash** rules are a secure alternative that can be used on unsigned code. The primary disadvantage to **File hash** is that every time a binary changes (such as, through servicing updates or upgrades), you'll need to create a new rule.<p>Finally, there's **Path** rules. **Path** rules are easier to set up and maintain, but can let apps bypass enterprise data protection (EDP) by simply renaming and moving an unallowed file to match one of the apps on the **Protected App** list. For example, if your **Path** rule says to allow `%PROGRAMFILES%/NOTEPAD.EXE`, it becomes possible to rename DisallowedApp.exe to Notepad.exe, move it into the specified path above, and have it suddenly be allowed.
 
 6.  In the **Review Rules** screen, look over your rules to make sure they’re right, and then click **Create** to add them to your collection of rules.
 
-7.  In the left pane, right-click **AppLocker**, click **Export Policies**, go to where you want to save the XML file and type a file name, click **Save**, and then clear your AppLocker rules.<p>
-**Important**<br>Be aware that what you're saving are the actual AppLocker rules using your local policy. You don't want to apply these rules to your employee devices, you just want to use them to create and export the XML content. You must delete the AppLocker rules before you apply your policy.
+7.  In the left pane, right-click **AppLocker**, click **Export Policies**, go to where you want to save the XML file and type a file name, click **Save**, and then clear your AppLocker rules.
+
+    >**Important**<br>Be aware that what you're saving are the actual AppLocker rules using your local policy. You don't want to apply these rules to your employee devices, you just want to use them to create and export the XML content. You must delete the AppLocker rules before you apply your policy.
 
 8.  Open the Intune administration console, and go to the **Policy** node, click **Add Policy** from the **Tasks** area, go to **Windows**, click the **Custom Configuration (Windows 10 Desktop and Mobile and later)** policy, click **Create and Deploy a Custom Policy**, and then click **Create Policy**.
 
@@ -103,14 +109,15 @@ This name should be easily recognizable, such as *EDP_ClassicApps_Rules*.
 
 13. Open File Explorer, go to the location where you saved your new XML file, and open it using an XML editor, such as Notepad.
 
-14. Copy the text that has a **Type** of EXE, within in the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
+14. Copy the text that has a **Type** of `EXE`, within in the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
 
     ``` 
-    <RuleCollection Type="Exe" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
+        <RuleCollection Type="Exe" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
     ```
 
-15. Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>
-After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
+15. Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.
+
+    After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
 
 ##Related topics
 - [Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md)

From a0484a4e1f24cb209cbc5a6917fc1b11278febc2 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 6 Jul 2016 10:48:59 -0700
Subject: [PATCH 18/69] Changed Technical Preview to Tech Preview

---
 windows/keep-secure/overview-create-edp-policy.md | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/keep-secure/overview-create-edp-policy.md b/windows/keep-secure/overview-create-edp-policy.md
index 119659b070..caa34aa197 100644
--- a/windows/keep-secure/overview-create-edp-policy.md
+++ b/windows/keep-secure/overview-create-edp-policy.md
@@ -1,6 +1,6 @@
 ---
 title: Create an enterprise data protection (EDP) policy (Windows 10)
-description: Microsoft Intune and System Center Configuration Manager (version 1605 Technical Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
+description: Microsoft Intune and System Center Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
 ms.assetid: d2059e74-94bd-4e54-ab59-1a7b9b52bdc6
 ms.prod: w10
 ms.mktglfcycl: explore
@@ -17,13 +17,13 @@ author: eross-msft
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-Microsoft Intune and System Center Configuration Manager (version 1605 Technical Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
+Microsoft Intune and System Center Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
 
 ## In this section
 |Topic |Description |
 |------|------------|
 |[Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) |Intune helps you create and deploy your EDP policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network. |
-|[Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |Configuration Manager (version 1605 Technical Preview or later) helps you create and deploy your EDP policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network. |
+|[Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your EDP policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network. |
  
 
  

From 4573ff486cfab120c74635868cd6e43626ddffe9 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Tue, 12 Jul 2016 09:55:00 -0700
Subject: [PATCH 19/69] Pulled content out of topics and into its own to better
 address customer questions

---
 windows/keep-secure/TOC.md                    |  1 +
 ...reate-and-verify-an-efs-dra-certificate.md | 85 +++++++++++++++++++
 .../create-edp-policy-using-intune.md         | 48 +----------
 .../create-edp-policy-using-sccm.md           | 41 +--------
 4 files changed, 89 insertions(+), 86 deletions(-)
 create mode 100644 windows/keep-secure/create-and-verify-an-efs-dra-certificate.md

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 504f41304c..0e7321d864 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -22,6 +22,7 @@
 ##### [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md)
 ##### [Create and deploy a VPN policy for enterprise data protection (EDP) using Microsoft Intune](create-vpn-and-edp-policy-using-intune.md)
 #### [Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md)
+#### [Create and verify an Encrypting File System (EFS) DRA certificate](create-and-verify-an-efs-dra-certificate.md)
 ### [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
 #### [Enlightened apps for use with enterprise data protection (EDP)](enlightened-microsoft-apps-and-edp.md)
 #### [Testing scenarios for enterprise data protection (EDP)](testing-scenarios-for-edp.md)
diff --git a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
new file mode 100644
index 0000000000..5f98952a87
--- /dev/null
+++ b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
@@ -0,0 +1,85 @@
+
+---
+title: Create and verify an Encrypting File System (EFS) DRA certificate (Windows 10)
+description: Follow these steps to create, verify, and perform a quick recovery using a Encrypting File System (EFS) Data Recovery Agent (DRA) certificate.
+ms.prod: w10
+ms.mktglfcycl: explore
+ms.sitesec: library
+ms.pagetype: security
+---
+
+# Create and verify an Encrypting File System (EFS) DRA certificate
+**Applies to:**
+
+-   Windows 10 Insider Preview
+-   Windows 10 Mobile Preview
+
+<span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
+
+If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name EFSDRA; however, this name can be replaced with anything that makes sense to you.
+
+The recovery process included in this topic only works for desktop devices. EDP deletes the data on Windows 10 Mobile devices.   
+
+>**Important**<br>
+If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy.
+
+**To manually create an EFS DRA certificate**
+1.	On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
+
+2.	Run this command:
+    
+    `cipher /r:<EFSRA>`
+    
+    Where *&lt;EFSRA&gt;* is the name of the .cer and .pfx files that you want to create.
+
+3.	When prompted, type and confirm a password to help protect your new Personal Information Exchange (.pfx) file.
+
+    The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1.
+
+    >**Important**<br> 
+    Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
+
+4. Add your EFS DRA certificate to your EDP policy by using either Microsoft Intune or System Center Configuration Manager. 
+
+    >**Note**<br>
+    To add your EFS DRA certificate to your policy by using Microsoft Intune, see the [Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) topic. To add your EFS DRA certificate to your policy by using System Center Configuration Manager, see the [Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) topic.
+
+**To verify your data recovery certificate is correctly set up on an EDP client computer**
+1. Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
+
+2.	Open a command prompt with elevated rights, navigate to where you stored the file you just created, and then run this command:
+
+    `cipher /c <filename>`
+
+    Where *&lt;filename&gt;* is the name of the file you created in Step 1.
+
+3.	Make sure that your data recovery certificate is listed in the **Recovery Certificates** list.
+
+**To recover your data using the EFS DRA certificate in a test environment**
+1.	Copy your EDP-encrypted file to a location where you have admin access.
+
+2.	Install the EFSDRA.pfx file, using your password.
+
+3.	Open a command prompt with elevated rights, navigate to the encrypted file, and then run this command:
+
+    `cipher /d <encryptedfile.extension>`
+    
+    Where *&lt;encryptedfile.extension&gt;* is the name of your encrypted file. For example, corporatedata.docx.
+
+**To recover your EDP-protected desktop data after unenrollment**
+1. Have your employee sign in to the unenrolled device, open a command prompt, and type:
+    `Robocopy “%localappdata%\Microsoft\EDP\Recovery” <“new_location”> /EFSRAW`
+
+    Where `<”new_location”>` is a different location from where you store your recovery data. This location can be on the employee’s device or on a Windows 8 or Windows Server 2012 or newer server file share that you can reach while logged in as a data recovery agent.
+
+2. Sign in to a different device with administrator credentials that have access to your organization's Data Recovery Agent (DRA) certificate, and perform the file decryption and recovery by typing:
+
+    `cipher.exe /D <“new_location”>`
+
+3. Sign in to the unenrolled device as the employee, and type:
+
+    `Robocopy <”new_location”> “%localappdata%\Microsoft\EDP\Recovery\Input”`
+
+4. Ask the employee to log back in to the device or to lock and unlock the device.
+
+    The Windows Credential service automatically recovers the protected data from the `Recovery\Input` location.
diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 17b58ff4b3..81f4eb2745 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -304,56 +304,10 @@ There are no default locations included with EDP, you must add each of your netw
 
 2.  Add as many locations as you need, and then click **OK**.<p>The **Add or Edit Enterprise Network Locations box** closes.
 
-3.  In the **Use a data recovery certificate in case of data loss** box, click **Browse** to add a data recovery certificate for your policy.<p>After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the Data Recovery Agent (DRA) certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.<p>For steps about how to create and verify an EFS DRA certificate, see the [Create and verify an Encrypting File System (EFS) DRA certificate](#create-and-verify-an-encrypting-file-system-efs-dra-certificate) section of this topic. For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.<p>
+3.  In the **Use a data recovery certificate in case of data loss** box, click **Browse** to add a data recovery certificate for your policy.<p>After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the Data Recovery Agent (DRA) certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.<p>For steps about how to create and verify an EFS DRA certificate, see the [Create and verify an Encrypting File System (EFS) DRA certificate](create-and-verify-an-efs-dra-certificate.md) topic. For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.<p>
 
     ![Microsoft Intune: Specify a data recovery certificate for your policy](images/intune-data-recovery.png)
 
-### Create and verify an Encrypting File System (EFS) DRA certificate
-If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name EFSDRA; however, this name can be replaced with anything that makes sense to you.
-
->**Important**<br>
-If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy. To add your EFS DRA certificate to your policy by using Microsoft Intune, see Step 3 in the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic.
-
-**To manually create an EFS DRA certificate**
-1.	On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
-
-2.	Run this command:
-    
-    `cipher /r:<EFSRA>`
-    
-    Where *&lt;EFSRA&gt;* is the name of the .cer and .pfx files that you want to create.
-
-3.	When prompted, type and confirm a password to help protect your new Personal Information Exchange (.pfx) file.
-
-    The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1.
-
-    >**Important**<br> 
-    Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
-
-4. Add your EFS DRA certificate to your EDP policy by using Step 3 of the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic. 
-
-**To verify your data recovery certificate is correctly set up on an EDP client computer**
-1. Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
-
-2.	Open a command prompt with elevated rights, navigate to where you stored the file you just created, and then run this command:
-
-    `cipher /c <filename>`
-
-    Where *&lt;filename&gt;* is the name of the file you created in Step 1.
-
-3.	Make sure that your data recovery certificate is listed in the **Recovery Certificates** list.
-
-**To recover your data using the EFS DRA certificate in a test environment**
-1.	Copy your EDP-encrypted file to a location where you have admin access.
-
-2.	Install the EFSDRA.pfx file, using your password.
-
-3.	Open a command prompt with elevated rights, navigate to the encrypted file, and then run this command:
-
-    `cipher /d <encryptedfile.extension>`
-    
-    Where *&lt;encryptedfile.extension&gt;* is the name of your encrypted file. For example, corporatedata.docx.
-
 ## Choose your optional EDP-related settings
 After you've decided where your protected apps can access enterprise data on your network, you’ll be asked to decide if you want to add any optional EDP settings.
 
diff --git a/windows/keep-secure/create-edp-policy-using-sccm.md b/windows/keep-secure/create-edp-policy-using-sccm.md
index 9fd513eda2..5668449d99 100644
--- a/windows/keep-secure/create-edp-policy-using-sccm.md
+++ b/windows/keep-secure/create-edp-policy-using-sccm.md
@@ -441,49 +441,12 @@ There are no default locations included with EDP, you must add each of your netw
 
 5.	In the required **Upload a Data Recovery Agent (DRA) certificate to allow recovery of encrypted data** box, click **Browse** to add a data recovery certificate for your policy.
 
-    After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the DRA certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data. 
+    After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the DRA certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.
     
-    For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.
+    For steps about how to create and verify an EFS DRA certificate, see the [Create and verify an Encrypting File System (EFS) DRA certificate](create-and-verify-an-efs-dra-certificate.md) topic. For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.
 
     ![Create Configuration Item wizard, Add a data recovery agent (DRA) certificate](images/edp-sccm-dra.png)
 
-#### Create and verify an Encrypting File System (EFS) DRA certificate for EDP
-If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name EFSDRA; however, this name can be replaced with anything that makes sense to you.
-
->**Important**<br>If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy.
-
-**To manually create an EFS DRA certificate**
-1. On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
-2. Run this command:
-    
-    `cipher /r:<EFSDRA>`<br>Where `<EFSDRA>` is the name of the .cer and .pfx files that you want to create.
-
-3. When prompted, type and confirm a password to help protect your new Personal Information Exchange (.pfx) file.
-
-    The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1. 
-
-    **Important**<br>Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
-
-4.	Add your EFS DRA certificate to your EDP policy by using Step 3 of the [Choose where apps can access enterprise data](#choose-where-apps-can-access-enterprise-data) section of this topic.
-
-**To verify your data recovery certificate is correctly set up on an EDP client computer**
-1.	Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
-
-2.	Open a command prompt with elevated rights, navigate to where you stored the file you just created, and then run this command:
-
-    `cipher /c <filename>`<br>Where `<filename>` is the name of the file you created in Step 1.
-
-3.	Make sure that your data recovery certificate is listed in the **Recovery Certificates** list.
-
-**To recover your data using the EFS DRA certificate in a test environment**
-1.	Copy your EDP-encrypted file to a location where you have admin access.
-
-2.	Install the EFSDRA.pfx file, using your password.
-
-3.	Open a command prompt with elevated rights, navigate to the encrypted file, and then run this command:
-
-    `cipher /d <encryptedfile.extension>`<br>Where `<encryptedfile.extension>` is the name of your encrypted file. For example, corporatedata.docx.
-
 ### Choose your optional EDP-related settings
 After you've decided where your protected apps can access enterprise data on your network, you’ll be asked to decide if you want to add any optional EDP settings.
 

From 4e064571bc7deb976fc431845058092773c6a3d7 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Tue, 12 Jul 2016 11:03:09 -0700
Subject: [PATCH 20/69] Updated formatting

---
 .../keep-secure/create-and-verify-an-efs-dra-certificate.md    | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
index 5f98952a87..ae8da1f1a0 100644
--- a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
+++ b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
@@ -68,9 +68,10 @@ If you already have an EFS DRA certificate for your organization, you can skip c
 
 **To recover your EDP-protected desktop data after unenrollment**
 1. Have your employee sign in to the unenrolled device, open a command prompt, and type:
+    
     `Robocopy “%localappdata%\Microsoft\EDP\Recovery” <“new_location”> /EFSRAW`
 
-    Where `<”new_location”>` is a different location from where you store your recovery data. This location can be on the employee’s device or on a Windows 8 or Windows Server 2012 or newer server file share that you can reach while logged in as a data recovery agent.
+    Where *&lt;”new_location”&gt;* is a different location from where you store your recovery data. This location can be on the employee’s device or on a Windows 8 or Windows Server 2012 or newer server file share that you can reach while logged in as a data recovery agent.
 
 2. Sign in to a different device with administrator credentials that have access to your organization's Data Recovery Agent (DRA) certificate, and perform the file decryption and recovery by typing:
 

From 905d9446191ae2c61be625fdab2b34755796293c Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Tue, 12 Jul 2016 12:19:25 -0700
Subject: [PATCH 21/69] Fixing formatting

---
 .../keep-secure/create-and-verify-an-efs-dra-certificate.md   | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
index ae8da1f1a0..133b453239 100644
--- a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
+++ b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
@@ -24,6 +24,7 @@ The recovery process included in this topic only works for desktop devices. EDP
 If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy.
 
 **To manually create an EFS DRA certificate**
+
 1.	On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
 
 2.	Run this command:
@@ -45,6 +46,7 @@ If you already have an EFS DRA certificate for your organization, you can skip c
     To add your EFS DRA certificate to your policy by using Microsoft Intune, see the [Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) topic. To add your EFS DRA certificate to your policy by using System Center Configuration Manager, see the [Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) topic.
 
 **To verify your data recovery certificate is correctly set up on an EDP client computer**
+
 1. Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
 
 2.	Open a command prompt with elevated rights, navigate to where you stored the file you just created, and then run this command:
@@ -56,6 +58,7 @@ If you already have an EFS DRA certificate for your organization, you can skip c
 3.	Make sure that your data recovery certificate is listed in the **Recovery Certificates** list.
 
 **To recover your data using the EFS DRA certificate in a test environment**
+
 1.	Copy your EDP-encrypted file to a location where you have admin access.
 
 2.	Install the EFSDRA.pfx file, using your password.
@@ -67,6 +70,7 @@ If you already have an EFS DRA certificate for your organization, you can skip c
     Where *&lt;encryptedfile.extension&gt;* is the name of your encrypted file. For example, corporatedata.docx.
 
 **To recover your EDP-protected desktop data after unenrollment**
+
 1. Have your employee sign in to the unenrolled device, open a command prompt, and type:
     
     `Robocopy “%localappdata%\Microsoft\EDP\Recovery” <“new_location”> /EFSRAW`

From 2c8e5b7e4945b67aefb2f43a89881479cf799705 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Tue, 12 Jul 2016 14:06:14 -0700
Subject: [PATCH 22/69] Updated change history for new DRA topic

---
 .../keep-secure/change-history-for-keep-windows-10-secure.md  | 1 +
 .../keep-secure/create-and-verify-an-efs-dra-certificate.md   | 4 ++--
 2 files changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/keep-secure/change-history-for-keep-windows-10-secure.md b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
index 812c222e48..ff277a1095 100644
--- a/windows/keep-secure/change-history-for-keep-windows-10-secure.md
+++ b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
@@ -16,6 +16,7 @@ This topic lists new and updated topics in the [Keep Windows 10 secure](index.md
 
 |New or changed topic | Description |
 |----------------------|-------------|
+|[Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate](create-and-verify-an-efs-dra-certificate.md) |New |
 |[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
 
 
diff --git a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
index 133b453239..03d72f1d40 100644
--- a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
+++ b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
@@ -1,6 +1,6 @@
 
 ---
-title: Create and verify an Encrypting File System (EFS) DRA certificate (Windows 10)
+title: Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate (Windows 10)
 description: Follow these steps to create, verify, and perform a quick recovery using a Encrypting File System (EFS) Data Recovery Agent (DRA) certificate.
 ms.prod: w10
 ms.mktglfcycl: explore
@@ -8,7 +8,7 @@ ms.sitesec: library
 ms.pagetype: security
 ---
 
-# Create and verify an Encrypting File System (EFS) DRA certificate
+# Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate
 **Applies to:**
 
 -   Windows 10 Insider Preview

From 56ec734cade0f4b25a3e047b0ac4a45bed5879ed Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 13 Jul 2016 09:24:26 -0700
Subject: [PATCH 23/69] Created new topic for inclusion in the guidance area

---
 .../keep-secure/mandatory-settings-for-wip.md | 31 +++++++++++++++++++
 1 file changed, 31 insertions(+)
 create mode 100644 windows/keep-secure/mandatory-settings-for-wip.md

diff --git a/windows/keep-secure/mandatory-settings-for-wip.md b/windows/keep-secure/mandatory-settings-for-wip.md
new file mode 100644
index 0000000000..9c265848d2
--- /dev/null
+++ b/windows/keep-secure/mandatory-settings-for-wip.md
@@ -0,0 +1,31 @@
+---
+title: Mandatory tasks and settings required to turn on Windows Information Protection (WIP) (Windows 10)
+description: This list provides all of the tasks that are required for the operating system to turn on Windows Information Protection (WIP) in your enterprise.
+ms.prod: w10
+ms.mktglfcycl: explore
+ms.sitesec: library
+ms.pagetype: security
+---
+
+# Mandatory tasks and settings required to turn on Windows Information Protection (WIP)
+**Applies to:**
+
+-   Windows 10 Insider Preview
+-   Windows 10 Mobile Preview
+
+<span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
+
+This list provides all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP) in your enterprise.
+
+>**Important**<br>
+All sections provided for more info appear in either the [Create a Windows Information Protection (WIP) policy using Microsoft Intune](create-edp-policy-using-intune.md) or [Create a Windows Information Protection (WIP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md), based on the tool you're using in your enterprise.
+
+
+|Task                                |Description               |
+|------------------------------------|--------------------------|
+|Add at least one app rule in the **App rules** area in your WIP policy. |You must have at least one app rule specified in the **App rules** area of your WIP policy. For more info about where this area is and how to add an app rule, see the **Add individual apps to your Protected App list** section of the policy creation topics.|
+|Pick your WIP protection level. |You must choose the level of protection level you want to apply to your WIP-protected content, including Override, Silent, or Block. For more info about where this area is and how to decide on your protection level, see the **Manage the EDP protection level for your enterprise data** section of the policy creation topics.|
+|Specify your corporate identity. |You must specify your corporate identity, usually expressed as your primary Internet domain (for example, contoso.com). For more info about where this area is and what it means, see the **Define your enterprise-managed corporate identity** section of the policy creation topics. |
+|Specify your Enterprise Network Domain Names. |You must specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected. For more info about where this area is and how to add your suffixes, see the table that appears in the **Choose where apps can access enterprise data** section of the policy creation topics. |
+|Specify your Enterprise IPv4 Ranges. |Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries. For more info about where this area is and what it means, see the table that appears in the **Define your enterprise-managed corporate identity** section of the policy creation topics. |
+|Include your Data Recovery Agent (DRA) certificate. |This certificate makes sure that any of your WIP-encrypted data can be decrypted, even if the security keys are lost. For more info about where this area is and what it means, see the **Create and verify an Encrypting File System (EFS) DRA certificate for EDP** section of the policy creation topics. |
\ No newline at end of file

From be179441ece74f8c7868c131255860d7ba79b7a1 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Wed, 13 Jul 2016 09:25:45 -0700
Subject: [PATCH 24/69] Added new topic for mandatory tasks

---
 windows/keep-secure/TOC.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 504f41304c..f478cdc121 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -23,6 +23,7 @@
 ##### [Create and deploy a VPN policy for enterprise data protection (EDP) using Microsoft Intune](create-vpn-and-edp-policy-using-intune.md)
 #### [Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md)
 ### [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
+#### [Mandatory tasks and settings required to turn on Windows Information Protection (WIP)](mandatory-settings-for-wip.md)
 #### [Enlightened apps for use with enterprise data protection (EDP)](enlightened-microsoft-apps-and-edp.md)
 #### [Testing scenarios for enterprise data protection (EDP)](testing-scenarios-for-edp.md)
 ## [Use Windows Event Forwarding to help with intrusion detection](use-windows-event-forwarding-to-assist-in-instrusion-detection.md)

From 822c5361923d799d09d362ef0f6bc931438fdda7 Mon Sep 17 00:00:00 2001
From: JanKeller1 <v-jak@microsoft.com>
Date: Thu, 14 Jul 2016 12:00:58 -0700
Subject: [PATCH 25/69] Reorganized, rewritten Device Guard deploymt gd

---
 ...iles-to-support-code-integrity-policies.md |  327 +++++
 ...ty-policies-policy-rules-and-file-rules.md |  108 ++
 .../deploy-code-integrity-policies-steps.md   |  384 ++++++
 ...ce-guard-deploy-code-integrity-policies.md |   30 +
 ...rd-enable-virtualization-based-security.md |  246 ++++
 .../device-guard-deployment-guide.md          | 1169 +----------------
 ...ed-security-and-code-integrity-policies.md |   78 ++
 ...certificate-for-code-integrity-policies.md |  101 ++
 ...-on-the-device-guard-deployment-process.md |   56 +
 ...nt-planning-guidelines-for-device-guard.md |  124 ++
 10 files changed, 1482 insertions(+), 1141 deletions(-)
 create mode 100644 windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md
 create mode 100644 windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md
 create mode 100644 windows/keep-secure/deploy-code-integrity-policies-steps.md
 create mode 100644 windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md
 create mode 100644 windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md
 create mode 100644 windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md
 create mode 100644 windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md
 create mode 100644 windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md
 create mode 100644 windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md

diff --git a/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md b/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md
new file mode 100644
index 0000000000..626a9a939b
--- /dev/null
+++ b/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md
@@ -0,0 +1,327 @@
+---
+title: Deploy catalog files to support code integrity policies (Windows 10)
+description: This article describes how to deploy catalog files to support code integrity policies, one of the main features that are part of Device Guard in Windows 10. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Deploy catalog files to support code integrity policies (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+Catalog files can be important in your deployment of code integrity polices if you have unsigned line-of-business (LOB) applications for which the process of signing is difficult. To prepare to create code integrity policies that allow these trusted applications but block unsigned code (most malware is unsigned), you create a *catalog file* that contains information about the trusted applications. After you sign and distribute the catalog, your trusted applications can be handled by code integrity policies in the same way as any other signed application. With this foundation, you can more easily block all unsigned applications, allowing only signed applications to run.
+
+For more description of catalog files, see [Reviewing your applications: application signing and catalog files](requirements-and-deployment-planning-guidelines-for-device-guard.md#reviewing-your-applications-application-signing-and-catalog-files) in "Requirements and deployment planning guidelines for Device Guard." 
+
+## Create catalog files
+
+The creation of a catalog file is a necessary step for adding an unsigned application to a code integrity policy.
+
+To create a catalog file, you use a tool called **Package Inspector**. You must also have a code integrity policy deployed in audit mode on the computer on which you run Package Inspector, because Package Inspector does not always detect installation files that have been removed from the computer during the installation process.
+
+> **Note**&nbsp;&nbsp;When you establish a naming convention it makes it easier to detect deployed catalog files in the future. In this guide, *\*-Contoso.cat* is used as the example naming convention. For more information about why this practice is helpful to inventory or detect catalog files, see [Inventory catalog files with System Center Configuration Manager](#inventory-catalog-files-with-system-center-configuration-manager), later in this topic.
+
+1.  Be sure that a code integrity policy is currently deployed in audit mode on the computer on which you will run Package Inspector.
+
+    Package Inspector does not always detect installation files that have been removed from the computer during the installation process. To ensure that these binaries are also trusted, deploy a code integrity policy in audit mode. You can use the code integrity policy that you created and audited in [Create a code integrity policy from a golden computer](deploy-code-integrity-policies-steps.md#create-a-code-integrity-policy-from-a-golden-computer) and [Audit code integrity policies](deploy-code-integrity-policies-steps.md#audit-code-integrity-policies).
+
+    > **Note**&nbsp;&nbsp;This process should **not** be performed on a system with an enforced Device Guard policy, only with a policy in audit mode. If a policy is currently being enforced, you will not be able to install and run the application.
+
+2.  Start Package Inspector, and then start scanning a local drive, for example, drive C:
+
+    ` PackageInspector.exe Start C:`
+
+    > **Note**&nbsp;&nbsp;Package inspector can monitor installations on any local drive. Specify the appropriate drive on the local computer.
+    
+3.  Copy the installation media to the local drive (typically drive C).
+
+    By copying the installation media to the local drive, you ensure that Package Inspector detects and catalogs the actual installer. If you skip this step, the future code integrity policy may trust the application to run but not to be installed.
+
+4.  Install the application. Install it to the same drive that the application installer is located on (the drive you are scanning). Also, while Package Inspector is running, do not run any installations or updates that you don't want to capture in the catalog.
+
+    > **Important**&nbsp;&nbsp;Every binary that is run while Package Inspector is running will be captured in the catalog. Ensure that only trusted applications are run during this time. 
+
+5.  Start the application.
+
+6.  Ensure that product updates are installed, and downloadable content associated with the application is downloaded.
+
+7.  Close and reopen the application. 
+
+    This step is necessary to ensure that the scan has captured all binaries.
+    
+8.  As appropriate, with Package Inspector still running, repeat the process for another application that you want in the catalog. Copy the installation media to the local drive, install the application, ensure it is updated, and then close and reopen the application.
+
+9. When you have confirmed that the previous steps are complete, use the following commands to generate the catalog and definition files on your computer's desktop. The filenames used in these example commands are **LOBApp-Contoso.cat** (catalog file) and **LOBApp.cdf** (definition file)—substitute different filenames as appropriate. 
+
+    For the last command, which stops Package Inspector, be sure to type the drive letter of the drive you have been scanning, for example, C:.  
+
+    ` $ExamplePath=$env:userprofile+"\Desktop"`
+
+    ` $CatFileName=$ExamplePath+"\LOBApp-Contoso.cat"`
+
+    ` $CatDefName=$ExamplePath+"\LOBApp.cdf"`
+
+    ` PackageInspector.exe Stop C: -Name $CatFileName -cdfpath $CatDefName`
+
+> **Note**&nbsp;&nbsp;Package Inspector catalogs the hash values for each discovered binary file. If the applications that were scanned are updated, complete this process again to trust the new binaries’ hash values.
+
+When finished, the files will be saved to your desktop. You can double-click the \*.cat file to see its contents, and you can view the \*.cdf file with a text editor. 
+
+To trust this catalog file within a code integrity policy, the catalog must first be signed. Then, the signing certificate can be added to the code integrity policy, and the catalog file can be distributed to the individual client computers. 
+
+For information about signing catalog files by using a certificate and SignTool.exe, a free tool available in the Windows SDK, see the next section, [Catalog signing with SignTool.exe](#catalog-signing-with-signtool.exe).
+
+For information about adding the signing certificate to a code integrity policy, see [Add a catalog signing certificate to a code integrity policy](deploy-code-integrity-policies-steps.md#add-a-catalog-signing-certificate-to-a-code-integrity-policy).
+
+## Catalog signing with SignTool.exe
+
+In this section, you sign a catalog file you generated by using PackageInspector.exe, as described in the previous section, [Create catalog files](#create-catalog-files). In this example, you need the following:
+
+-   SignTool.exe, found in the Windows software development kit (SDK—Windows 7 or later)
+
+-   The catalog file that you generated in the [Create catalog files](#create-catalog-files) section, or another catalog file that you have created
+
+-   An internal certification authority (CA) code signing certificate or purchased code signing certificate
+
+If you do not have a code signing certificate, see [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md) for a walkthrough of how to create one. That topic uses an example certificate name of **ContosoDGSigningCert**, and the procedure that follows uses that example certificate name to sign the catalog file that you created in [Create catalog files](#create-catalog-files), earlier in this topic. If you are using an alternate certificate or catalog file, update the following steps with the appropriate variables and certificate. 
+
+To sign the existing catalog file, copy each of the following commands into an elevated Windows PowerShell session.
+
+1.  Initialize the variables that will be used:
+
+    ` $ExamplePath=$env:userprofile+"\Desktop"`
+    
+    ` $CatFileName=$ExamplePath+"\LOBApp-Contoso.cat"`
+
+    > **Note**&nbsp;&nbsp;This example specifies the catalog file you created in the [Create catalog files](#create-catalog-files) section. If you are signing another catalog file, update the *$ExamplePath* and *$CatFileName* variables with the correct information.
+
+2.  Import the code signing certificate that will be used to sign the catalog file. Import it to the signing user’s personal store. This example uses the certificate name from [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md).
+
+3.  Sign the catalog file with Signtool.exe:
+
+    ` <path to signtool.exe> sign /n "ContosoDGSigningCert" /fd sha256 /v $CatFileName`
+
+    > **Note**&nbsp;&nbsp;The *&lt;Path to signtool.exe&gt;* variable should be the full path to the Signtool.exe utility. *ContosoDGSigningCert* represents the subject name of the certificate that you will use to sign the catalog file. This certificate should be imported to your personal certificate store on the computer on which you are attempting to sign the catalog file.
+
+    > **Note**&nbsp;&nbsp;For additional information about Signtool.exe and all additional switches, visit the [MSDN Sign Tool page](https://msdn.microsoft.com/library/8s9b9yaz(v=vs.110).aspx).
+    
+4.  Verify the catalog file digital signature. Right-click the catalog file, and then click **Properties**. On the **Digital Signatures** tab, verify that your signing certificate exists with a **sha256** algorithm, as shown in Figure 1.
+
+    ![Digital Signature list in file Properties](images/dg-fig12-verifysigning.png)
+
+    Figure 1. Verify that the signing certificate exists
+
+5.  Copy the catalog file to C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}.
+
+    For testing purposes, you can manually copy signed catalog files to their intended folder. For large-scale implementations, to copy the appropriate catalog files to all desired computers, we recommend that you use Group Policy File Preferences or an enterprise systems management product such as System Center Configuration Manager. Doing this also simplifies the management of catalog versions.
+
+## Add a catalog signing certificate to a code integrity policy
+
+After the catalog file is signed, add the signing certificate to a code integrity policy, as described in the following steps.
+
+<!-- All options below need to be confirmed. -->
+
+1.  If you have not already verified the catalog file digital signature, right-click the catalog file, and then click **Properties**. On the **Digital Signatures** tab, verify that your signing certificate exists with the algorithm you expect.
+
+2.  If you already have an XML policy file that you want to add the signing certificate to, skip to the next step. Otherwise, use [New-CIPolicy](https://technet.microsoft.com/library/mt634473.aspx) to create a code integrity policy that you will later merge into another policy (not deploy as-is). This example creates a policy called **CatalogSignatureOnly.xml** in the location **C:\\PolicyFolder**:
+
+    ` New-CIPolicy -Level PcaCertificate -FilePath C:\PolicyFolder\CatalogSignatureOnly.xml –UserPEs`
+
+    > **Note**&nbsp;&nbsp;Include the **-UserPEs** parameter to ensure that the policy includes user mode code integrity.
+
+3.  Use [Add-SignerRule](https://technet.microsoft.com/library/mt634479.aspx) to add the signing certificate to the code integrity policy, filling in the correct path and filenames for *<policypath>* and *<certpath>*:
+
+    ` Add-SignerRule -FilePath <policypath> -CertificatePath <certpath> -User `
+
+If you used step 2 to create a new code integrity policy, and want information about merging policies together, see [Merge code integrity policies](deploy-code-integrity-policies-steps.md#merge-code-integrity-policies).  
+
+## Deploy catalog files with Group Policy
+
+To simplify the management of catalog files, you can use Group Policy preferences to deploy catalog files to the appropriate computers in your organization. The following process walks you through the deployment of a signed catalog file called **LOBApp-Contoso.cat** to a test OU called DG Enabled PCs with a GPO called **Contoso DG Catalog File GPO Test**.
+
+> **Note**&nbsp;&nbsp;This walkthrough requires that you have previously created a signed catalog file and have a computer running Windows 10 on which to test a Group Policy deployment. For more information about how to create a catalog file, see [Create catalog files](#create-catalog-files), earlier in this topic. Also, before you begin testing of a catalog file with the code integrity policy it supports, review [Add a catalog signing certificate to a code integrity policy](#add-a-catalog-signing-certificate-to-a-code-integrity-policy).
+
+**To deploy a catalog file with Group Policy:**
+
+1.  From either a domain controller or a client computer that has Remote Server Administration Tools (RSAT) installed, open the Group Policy Management Console (GPMC) by running **GPMC.MSC** or by searching for Group Policy Management.
+
+2.  Create a new GPO: right-click an OU, for example, the **DG Enabled PCs OU**, and then click **Create a GPO in this domain, and Link it here**, as shown in Figure 2.
+
+    > **Note**&nbsp;&nbsp;You can use any OU name. Also, security group filtering is an option when you consider different ways of combining code integrity policies (or keeping them separate), as discussed in [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+   ![Group Policy Management, create a GPO](images/dg-fig13-createnewgpo.png)
+
+   Figure 2. Create a new GPO
+
+3.  Give the new GPO a name, for example, **Contoso DG Catalog File GPO Test**, or any name you prefer.
+
+4.  Open the Group Policy Management Editor: right-click the new GPO, and then click **Edit**.
+
+5.  Within the selected GPO, navigate to Computer Configuration\\Preferences\\Windows Settings\\Files. Right-click **Files**, point to **New**, and then click **File**, as shown in Figure 3.
+
+    ![Group Policy Management Editor, New File](images/dg-fig14-createnewfile.png)
+
+    Figure 3. Create a new file
+
+6.  Configure the catalog file share.
+
+    To use this setting to provide consistent deployment of your catalog file (in this example, LOBApp-Contoso.cat), the source file should be on a share that is accessible to the computer account of every deployed computer. This example uses a share (on a computer running Windows 10) called \\\\Contoso-Win10\\Share. The catalog file being deployed is copied to this share.
+
+7.  To keep versions consistent, in the **New File Properties** dialog box (Figure 4), select **Replace** from the **Action** list so that the newest version is always used.
+
+    ![File Properties, Replace option](images/dg-fig15-setnewfileprops.png)
+
+    Figure 4. Set the new file properties
+
+8.  In the **Source file(s)** box, type the name of your accessible share, with the catalog file name included (for example, \\\\Contoso-Win10\\share\\LOBApp-Contoso.cat).
+
+9.  In the **Destination File** box, type a path and file name, for example:
+
+    **C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\\LOBApp-Contoso.cat**
+
+    For the catalog file name, use the name of the catalog you are deploying.
+
+10. On the **Common** tab of the **New File Properties** dialog box, select the **Remove this item when it is no longer applied** option. Doing this ensures that the catalog file is removed from every system, in case you ever need to stop trusting this application.
+
+11. Click **OK** to complete file creation.
+
+12. Close the Group Policy Management Editor, and then update the policy on the test computer running Windows 10, by running GPUpdate.exe. When the policy has been updated, verify that the catalog file exists in C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE} on the computer running Windows 10.
+
+Before you begin testing the deployed catalog file, make sure that the catalog signing certificate has been added to an appropriate code integrity policy, as described in [Add a catalog signing certificate to a code integrity policy](#add-a-catalog-signing-certificate-to-a-code-integrity-policy).
+
+## Deploy catalog files with System Center Configuration Manager
+
+As an alternative to Group Policy, you can use System Center Configuration Manager to deploy catalog files to the managed computers in your environment. This approach can simplify the deployment and management of multiple catalog files as well as provide reporting around which catalog each client or collection has deployed. In addition to the deployment of these files, System Center Configuration Manager can also be used to inventory the currently deployed catalog files for reporting and compliance purposes. Complete the following steps to create a new deployment package for catalog files:
+
+> **Note**&nbsp;&nbsp;The following example uses a network share named \\\\Shares\\CatalogShare as a source for the catalog files. If you have collection specific catalog files, or prefer to deploy them individually, use whichever folder structure works best for your organization.
+
+1.  Open the Configuration Manager console, and select the Software Library workspace.
+
+2.  Navigate to Overview\\Application Management, right-click **Packages**, and then click **Create Package**.
+
+3.  Name the package, set your organization as the manufacturer, and select an appropriate version number.
+
+    ![Create Package and Program Wizard](images/dg-fig16-specifyinfo.png)
+
+    Figure 5. Specify information about the new package
+
+4.  Click **Next**, and then select **Standard program** as the program type.
+
+5.  On the **Standard Program** page, select a name, and then set the **Command Line** property to **XCopy \\\\Shares\\CatalogShare C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE} /H /K /E /Y**.
+
+6.  On the **Standard Program** page, select the following options (Figure 6):
+
+    -   In **Name**, type a name such as **Contoso Catalog File Copy Program**.
+
+    -   In **Command line**, browse to the program location.
+
+    -   In **Startup folder**, type **C:\\Windows\\System32**.
+
+    -   From the **Run** list, select **Hidden**.
+
+    -   From the **Program can run** list, select **Whether or not a user is logged on**.
+
+    -   From the **Drive mode** list, select **Runs with UNC name**.
+
+    ![Standard Program page of wizard](images/dg-fig17-specifyinfo.png)
+
+    Figure 6. Specify information about the standard program
+
+7.  Accept the defaults for the rest of the wizard, and then close the wizard.
+
+After you create the deployment package, deploy it to a collection so that the clients will receive the catalog files. In this example, you deploy the package you just created to a test collection:
+
+1.  In the Software Library workspace, navigate to Overview\\Application Management\\Packages, right-click the catalog file package, and then click **Deploy**.
+
+2.  On the **General** page, select the test collection to which the catalog files will be deployed, and then click **Next**.
+
+3.  On the **Content** page, click **Add** to select the distribution point that will serve content to the selected collection, and then click **Next**.
+
+4.  On the **Deployment Settings** page, select **Required** in the **Purpose** box.
+
+5.  On the **Scheduling** page, click **New**.
+
+6.  In the **Assignment Schedule** dialog box, select **Assign immediately after this event**, set the value to **As soon as possible**, and then click **OK**.
+
+7.  On the **Scheduling** page, click **Next**.
+
+8.  On the **User Experience** page (Figure 7), set the following options, and then click **Next**:
+
+    -   Select the **Software installation** check box.
+
+    -   Select the **Commit changes at deadline or during a maintenance window (requires restarts)** check box.
+
+    ![Deploy Software Wizard, User Experience page](images/dg-fig18-specifyux.png)
+
+    Figure 7. Specify the user experience
+
+9.  On the **Distribution Points** page, in the **Deployment options** box, select **Run program from distribution point**, and then click **Next**.
+
+10. On the **Summary** page, review the selections, and then click **Next**.
+
+11. Close the wizard.
+
+Before you begin testing the deployed catalog file, make sure that the catalog signing certificate has been added to an appropriate code integrity policy, as described in [Add a catalog signing certificate to a code integrity policy](#add-a-catalog-signing-certificate-to-a-code-integrity-policy).
+
+## Inventory catalog files with System Center Configuration Manager
+
+When catalog files have been deployed to the computers within your environment, whether by using Group Policy or System Center Configuration Manager, you can inventory them with the software inventory feature of System Center Configuration Manager. The following process walks you through the enablement of software inventory to discover catalog files on your managed systems through the creation and deployment of a new client settings policy.
+
+> **Note**&nbsp;&nbsp;A standard naming convention for your catalog files will significantly simplify the catalog file software inventory process. In this example, *-Contoso* has been added to all catalog file names.
+
+1.  Open the Configuration Manager console, and select the Administration workspace.
+
+2.  Navigate to **Overview\\Client Settings**, right-click **Client Settings**, and then click **Create Custom Client Device Settings**.
+
+3.  Name the new policy, and under **Select and then configure the custom settings for client devices**, select the **Software Inventory** check box, as shown in Figure 8.
+
+    ![Create Custom Client Device Settings](images/dg-fig19-customsettings.png)
+
+    Figure 8. Select custom settings
+
+4.  In the navigation pane, click **Software Inventory**, and then click **Set Types**, as shown in Figure 9.
+
+    ![Software Inventory settings for devices](images/dg-fig20-setsoftwareinv.png)
+
+    Figure 9. Set the software inventory
+
+5.  In the **Configure Client Setting** dialog box, click the **Start** button to open the **Inventories File Properties** dialog box.
+
+6.  In the **Name** box, type a name such as **\*Contoso.cat**, and then click **Set**.
+
+    > **Note**&nbsp;&nbsp;When typing the name, follow your naming convention for catalog files.
+
+7.  In the **Path Properties** dialog box, select **Variable or path name**, and then type **C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}** in the box, as shown in Figure 10.
+
+    ![Path Properties, specifying a path](images/dg-fig21-pathproperties.png)
+
+    Figure 10. Set the path properties
+
+8.  Click **OK**.
+
+9.  Now that you have created the client settings policy, right-click the new policy, click **Deploy**, and then choose the collection on which you would like to inventory the catalog files.
+
+At the time of the next software inventory cycle, when the targeted clients receive the new client settings policy, you will be able to view the inventoried files in the built-in System Center Configuration Manager reports or Resource Explorer. To view the inventoried files on a client within Resource Explorer, complete the following steps:
+
+1.  Open the Configuration Manager console, and select the Assets and Compliance workspace.
+
+2.  Navigate to Overview\\Devices, and search for the device on which you want to view the inventoried files.
+
+3.  Right-click the computer, point to **Start**, and then click **Resource Explorer**.
+
+4.  In Resource Explorer, navigate to Software\\File Details to view the inventoried catalog files.
+
+> **Note**&nbsp;&nbsp;If nothing is displayed in this view, navigate to Software\\Last Software Scan in Resource Explorer to verify that the client has recently completed a software inventory scan.
+
+## Related topics
+
+- [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+
+- [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md)
+
+- [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
+
diff --git a/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md b/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md
new file mode 100644
index 0000000000..6710758326
--- /dev/null
+++ b/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md
@@ -0,0 +1,108 @@
+---
+title: Deploy code integrity policies - policy rules and file rules (Windows 10)
+description: This article provides information about two elements in code integrity policies, called policy rules and file rules. Code integrity policies are part of Device Guard in Windows 10. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Deploy code integrity policies: policy rules and file rules (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+Code integrity policies maintain the standards by which a computer running Windows 10 determines whether an application is trustworthy and can be run. For an overview of code integrity, see:
+- [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md#how-device-guard-features-help-protect-against-threats) in "Introduction to Device Guard: virtualization-based security and code integrity policies."
+- [Code integrity policy formats and signing](requirements-and-deployment-planning-guidelines-for-device-guard.md#code-integrity-policy-formats-and-signing) in "Requirements and deployment planning guidelines for Device Guard."
+
+If you already understand the basics of code integrity policy and want procedures for creating, auditing, and merging code integrity policies, see [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md).
+
+This topic includes the following sections:
+
+- [Overview of the process of creating code integrity policies](#overview-of-the-process-of-creating-code-integrity-policies): Helps familiarize you with the process described in this and related topics.
+- [Code integrity policy rules](#code-integrity-policy-rules): Describes one key element you specify in a policy, the *policy rules*, which control options such as audit mode or whether UMCI is enabled in a code integrity policy.
+- [Code integrity file rule levels](#code-integrity-file-rule-levels): Describes the other key element you specify in a policy, the *file rules* (or *file rule levels*), which specify the level at which applications will be identified and trusted.
+
+## Overview of the process of creating code integrity policies
+
+A common system imaging practice in today’s IT organization is to establish a “golden” image as a reference for what an ideal system should look like, and then use that image to clone additional company assets. Code integrity policies follow a similar methodology, that begins with the establishment of a golden computer. As with imaging, you can have multiple golden computers based on model, department, application set, and so on. Although the thought process around the creation of code integrity policies is similar to imaging, these policies should be maintained independently. Assess the necessity of additional code integrity policies based on what should be allowed to be installed and run and for whom. For more details on doing this assessment, see the planning steps in [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+> **Note**&nbsp;&nbsp;Each computer can have only **one** code integrity policy at a time. Whichever way you deploy this policy, it is renamed to SIPolicy.p7b and copied to C:\\Windows\\System32\\CodeIntegrity. Keep this in mind when you create your code integrity policies.
+
+Optionally, code integrity policies can align with your software catalog as well as any IT department–approved applications. One straightforward method to implement code integrity policies is to use existing images to create one master code integrity policy. You do so by creating a code integrity policy from each image, and then by merging the policies. This way, what is installed on all of those images will be allowed to run, if the applications are installed on a computer based on a different image. Alternatively, you may choose to create a base applications policy and add policies based on the computer’s role or department. Organizations have a choice of how their policies are created, merged or serviced, and managed.
+
+If you plan to use an internal CA to sign catalog files or code integrity policies, see the steps in [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md). 
+
+## Code integrity policy rules
+
+Code integrity policies include *policy rules*, which control options such as audit mode or whether UMCI is enabled in a code integrity policy. You can modify these options in a new or existing code integrity policy. (For information about *file rules*, which specify the level at which applications will be identified and trusted, see the next section, [Code integrity file rule levels](#code-integrity-file-rule-levels).)
+
+To modify the policy rule options of an existing code integrity policy, use the [Set-RuleOption](https://technet.microsoft.com/library/mt634483.aspx) Windows PowerShell cmdlet. Note the following examples of how to use this cmdlet to add and remove a rule option on an existing code integrity policy:
+
+-   To enable UMCI, add rule option 0 to an existing policy by running the following command:
+
+    ` Set-RuleOption -FilePath <Path to policy> -Option 0`
+
+-   To disable UMCI on an existing code integrity policy, delete rule option 0 by running the following command:
+
+    ` Set-RuleOption -FilePath <Path to policy> -Option 0 -Delete`
+
+You can set several rule options within a code integrity policy. To display a list of rule options, you can type **Set-
+RuleOption -Help** in a Windows PowerShell session. Table 2 describes each rule option. 
+
+> **Note**&nbsp;&nbsp;**Enabled:Audit Mode** is an important rule option. We recommend that you use this option for a period of time with all new code integrity policies, because it allows you to test them before you enforce them. With audit mode, no application is blocked—the policy just logs an event whenever an application outside the policy is started. To expand the policy so that (when enforced) it will allow these applications, you can use Windows PowerShell commands to capture the needed policy information from the event log, and then merge that information into the existing policy.
+
+> The mode—audit mode or enforced mode—is set by including or deleting **Enabled:Audit Mode** in the code integrity policy. When this option is deleted, the policy runs in enforced mode.
+
+**Table 2. Code integrity policy - policy rule options**
+
+| Rule option | Description |
+|------------ | ----------- |
+| **0 Enabled:UMCI** | Code integrity policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
+| **1 Enabled:Boot Menu Protection** | This option is not currently supported. |
+| **2 Required:WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
+| **3 Enabled:Audit Mode (Default)** | Enables the execution of binaries outside of the code integrity policy but logs each occurrence in the CodeIntegrity event log, which can be used to update the existing policy before enforcement. To begin enforcing a code integrity policy, delete this option. |
+| **4 Disabled:Flight Signing** | If enabled, code integrity policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flighted builds. |
+| **5 Enabled:Inherent Default Policy** | This option is not currently supported. |
+| **6 Enabled:Unsigned System Integrity Policy (Default)** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
+| **7 Allowed:Debug Policy Augmented** | This option is not currently supported. |
+| **8 Required:EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All future Windows 10 and later drivers will meet this requirement. |
+| **9 Enabled:Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all code integrity policies. Setting this rule option allows the F8 menu to appear to physically present users. |
+| **10 Enabled:Boot Audit on Failure** | Used when the code integrity policy is in enforcement mode. When a driver fails during startup, the code integrity policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
+
+## Code integrity file rule levels
+
+File rule levels allow administrators to specify the level at which they want to trust their applications. This level of trust could be as fine-tuned as the hash of each binary or as general as a CA certificate. You specify file rule levels both when you create a new code integrity policy from a scan and when you create a policy from audit events. In addition, to combine rule levels found in multiple policies, you can merge the policies. When merged, code integrity policies combine their file rules, so that any application that would be allowed by either of the original policies will be allowed by the combined policy. 
+
+Each file rule level has its benefit and disadvantage. Use Table 3 to select the appropriate protection level for your available administrative resources and Device Guard deployment scenario.
+
+<!-- Need to confirm these updated table rows:
+    | **SignedVersion** | This combines the publisher rule with a version number. This option allows anything from the specified publisher, with a version at or above the specified version number, to run. |
+    | **FilePublisher** | This is a combination of the “FileName” attribute of the signed file, plus “Publisher” (PCA certificate with CN of leaf), plus a minimum version number. This option trusts specific files from the specified publisher, with a version at or above the specified version number. |
+--> 
+
+Table 3. Code integrity policy - file rule levels
+
+| Rule level | Description |
+|----------- | ----------- |
+| **Hash** | Specifies individual hash values for each discovered binary. Although this level is specific, it can cause additional administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. |
+| **FileName** | Specifies individual binary file names. Although the hash values for an application are modified when updated, the file names are typically not. This offers less specific security than the hash level but does not typically require a policy update when any binary is modified. |
+| **SignedVersion** | This combines the publisher rule with a version number. This option allows anything from the specified publisher, with a version at or above the specified version number, to run. |
+| **Publisher** | This is a combination of the PcaCertificate level (typically one certificate below the root) and the common name (CN) of the leaf certificate. This rule level allows organizations to trust a certificate from a major CA (such as Symantec), but only if the leaf certificate is from a specific company (such as Intel, for device drivers). |
+| **FilePublisher** | This is a combination of the “FileName” attribute of the signed file, plus “Publisher” (PCA certificate with CN of leaf), plus a minimum version number. This option trusts specific files from the specified publisher, with a version at or above the specified version number. |
+| **LeafCertificate** | Adds trusted signers at the individual signing certificate level. The benefit of using this level versus the individual hash level is that new versions of the product will have different hash values but typically the same signing certificate. Using this level, no policy update would be needed to run the new version of the application. However, leaf certificates have much shorter validity periods than CA certificates, so additional administrative overhead is associated with updating the code integrity policy when these certificates expire. |
+| **PcaCertificate** | Adds the highest available certificate in the provided certificate chain to signers. This is typically one certificate below the root certificate, because the scan does not validate anything beyond the certificates included in the provided signature (it does not go online or check local root stores). |
+| **RootCertificate** | Currently unsupported. |
+| **WHQL** | Trusts binaries if they have been validated and signed by WHQL. This is primarily for kernel binaries. |
+| **WHQLPublisher** | This is a combination of the WHQL and the CN on the leaf certificate and is primarily for kernel binaries. |
+| **WHQLFilePublisher** | Specifies that the binaries are validated and signed by WHQL, with a specific publisher (WHQLPublisher), and that the binary is the specified version or newer. This is primarily for kernel binaries. |
+
+> **Note**&nbsp;&nbsp;When you create code integrity policies with the [New-CIPolicy](https://technet.microsoft.com/library/mt634473.aspx) cmdlet, you can specify a primary file rule level by including the **–Level** parameter. For discovered binaries that cannot be trusted based on the primary file rule criteria, use the **–Fallback** parameter. For example, if the primary file rule level is PCACertificate but you would like to trust the unsigned applications as well, using the Hash rule level as a fallback adds the hash values of binaries that did not have a signing certificate.
+
+## Related topics
+
+- [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md#how-device-guard-features-help-protect-against-threats)
+- [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)
+
diff --git a/windows/keep-secure/deploy-code-integrity-policies-steps.md b/windows/keep-secure/deploy-code-integrity-policies-steps.md
new file mode 100644
index 0000000000..e754b2139e
--- /dev/null
+++ b/windows/keep-secure/deploy-code-integrity-policies-steps.md
@@ -0,0 +1,384 @@
+---
+title: Deploy code integrity policies - steps (Windows 10)
+description: This article describes how to deploy code integrity policies, one of the main features that are part of Device Guard in Windows 10. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Deploy code integrity policies: steps (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+For an overview of the process described in the following procedures, see [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md). To understand how the deployment of code integrity policies fits with other steps in the Device Guard deployment process, see [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+## Create a code integrity policy from a golden computer
+
+The process for creating a golden code integrity policy from a reference system is straightforward. This section outlines the process that is required to successfully create a code integrity policy with Windows PowerShell. First, for this example, you must initiate variables to be used during the creation process. Rather than using variables, you can simply use the full file paths in the command. Next, you create the code integrity policy by scanning the system for installed applications. When created, the policy file is converted to binary format so that Windows can consume its contents.
+
+> **Note**&nbsp;&nbsp;Before you begin this procedure, ensure that the reference PC is clean of viruses or malware. Each piece of installed software should be validated as trustworthy before you create this policy. Also, be sure that any software that you would like to be scanned is installed on the system before you create the code integrity policy.
+
+To create a code integrity policy, copy each of the following commands into an elevated Windows PowerShell session, in order:
+
+1.  Initialize variables that you will use. The following example commands use **InitialScan.xml** and **DeviceGuardPolicy.bin** for the names of the files that will be created:
+
+    ` $CIPolicyPath=$env:userprofile+"\Desktop\"`
+
+    ` $InitialCIPolicy=$CIPolicyPath+"InitialScan.xml"`
+
+    ` $CIPolicyBin=$CIPolicyPath+"DeviceGuardPolicy.bin"`
+
+2.  Use [New-CIPolicy](https://technet.microsoft.com/library/mt634473.aspx) to create a new code integrity policy by scanning the system for installed applications:
+
+    ` New-CIPolicy -Level PcaCertificate -FilePath $InitialCIPolicy –UserPEs 3> CIPolicyLog.txt `
+
+    > **Notes**
+    
+    > - By specifying the *–UserPEs* parameter, rule option **0 Enabled:UMCI** is automatically added to the code integrity policy. If you do not specify this parameter, to enable UMCI, use [Set-RuleOption](https://technet.microsoft.com/library/mt634483.aspx) as shown in the following command:<br>**Set-RuleOption -FilePath $InitialCIPolicy -Option 0** 
+
+    > - You can add the *–Fallback* parameter to catch any applications not discovered using the primary file rule level specified by the *–Level* parameter. For more information about file rule level options, see [Code integrity file rule levels](deploy-code-integrity-policies-policy-rules-and-file-rules.md#code-integrity-file-rule-levels) in “Deploy code integrity policies: policy rules and file rules.”
+
+    > - To specify that the code integrity policy scan only a specific drive, include the *–ScanPath* parameter followed by a path. Without this parameter, the entire system is scanned.
+    
+    > - The preceding example includes `3> CIPolicylog.txt`, which redirects warning messages to a text file, **CIPolicylog.txt**.
+
+3.  Use [ConvertFrom-CIPolicy](https://technet.microsoft.com/library/mt733073.aspx) to convert the code integrity policy to a binary format:
+
+    ` ConvertFrom-CIPolicy $InitialCIPolicy $CIPolicyBin`
+
+After you complete these steps, the Device Guard binary file (DeviceGuardPolicy.bin) and original .xml file (IntialScan.xml) will be available on your desktop. You can use the binary version as a code integrity policy or sign it for additional security.
+
+> **Note**&nbsp;&nbsp;We recommend that you keep the original .xml file of the policy for use when you need to merge the code integrity policy with another policy or update its rule options. Alternatively, you would have to create a new policy from a new scan for servicing. For more information about how to merge code integrity policies, see [Merge code integrity policies](#merge-code-integrity-policies).
+
+We recommend that every code integrity policy be run in audit mode before being enforced. Doing so allows administrators to discover any issues with the policy without receiving error message dialog boxes. For information about how to audit a code integrity policy, see the next section, [Audit code integrity policies](#audit-code-integrity-policies).
+
+## Audit code integrity policies
+
+When code integrity policies are run in audit mode, it allows administrators to discover any applications that were missed during an initial policy scan and to identify any new applications that have been installed and run since the original policy was created. While a code integrity policy is running in audit mode, any binary that runs and would have been denied had the policy been enforced is logged in the **Applications and Services Logs\\Microsoft\\Windows\\CodeIntegrity\\Operational** event log. When these logged binaries have been validated, they can easily be added to a new code integrity policy. When the new exception policy is created, you can merge it with your existing code integrity policies.
+
+> **Note**&nbsp;&nbsp;Before you begin this process, you need to create a code integrity policy binary file. If you have not already done so, see [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer), earlier in this topic, for a step-by-step walkthrough of the process to create a code integrity policy and convert it to binary format.
+
+**To audit a code integrity policy with local policy:**
+
+1.  Find a *.bin policy file that you have created, for example, the DeviceGuardPolicy.bin file that resulted from the steps in the earlier section, [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer). Copy the file to C:\\Windows\\System32\\CodeIntegrity.
+
+2.  On the computer you want to run in audit mode, open the Local Group Policy Editor by running **GPEdit.msc**.
+
+    > **Notes**
+    
+    > - The computer that you will run in audit mode must be clean of viruses or malware. Otherwise, in the process that you follow after auditing the system, you might unintentionally merge in a code integrity policy that allows viruses or malware to run.
+    
+    > - An alternative method to test a policy is to rename the test file to SIPolicy.p7b and drop it into C:\\Windows\\System32\\CodeIntegrity, rather than deploy it by using the Local Group Policy Editor.
+    
+3.  Navigate to **Computer Configuration\\Administrative Templates\\System\\Device Guard**, and then select **Deploy Code Integrity Policy**. Enable this setting by using the appropriate file path, for example, C:\\Windows\\System32\\CodeIntegrity\\DeviceGuardPolicy.bin, as shown in Figure 1.
+
+    > **Notes**
+    
+    > - The illustration shows the example file name *DeviceGuardPolicy.bin* because this name was used earlier in this topic, in [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer). Also, this policy file does not need to be copied to every system. You can instead copy the code integrity policies to a file share to which all computer accounts have access.
+
+    > - Any policy you select here is converted to SIPolicy.p7b when it is deployed to the individual computers.
+
+    > - You might have noticed that the GPO setting references a .p7b file and this policy uses a .bin file. Regardless of the type of policy you deploy (.bin, .p7b, or .p7), they are all converted to SIPolicy.p7b when dropped onto the computers running Windows 10. We recommend that you make your code integrity policy names friendly and allow the system to convert the policy names for you. By doing this, it ensures that the policies are easily distinguishable when viewed in a share or any other central repository.
+
+   ![Group Policy called Deploy Code Integrity Policy](images/dg-fig22-deploycode.png)
+
+   Figure 1. Deploy your code integrity policy
+
+4.  Restart the reference system for the code integrity policy to take effect.
+
+5.  Use the system as you normally would, and monitor code integrity events in the event log. While in audit mode, any exception to the deployed code integrity policy will be logged in the **Applications and Services Logs\\Microsoft\\Windows\\CodeIntegrity\\Operational** event log, as shown in Figure 2.
+
+   ![Event showing exception to code integrity policy](images/dg-fig23-exceptionstocode.png)
+
+   Figure 2. Exceptions to the deployed code integrity policy
+
+   You will be reviewing the exceptions that appear in the event log, and making a list of any applications that should be allowed to run in your environment.
+   
+6. If you want to create a catalog file to simplify the process of including unsigned LOB applications in your code integrity policy, this is a good time to create it. For information, see [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md).   
+
+Now that you have a code integrity policy deployed in audit mode, you can capture any audit information that appears in the event log. This is described in the next section.
+
+## Create a code integrity policy that captures audit information from the event log
+
+Use the following procedure after you have been running a computer with a code integrity policy in audit mode for a period of time. When you are ready to capture the needed policy information from the event log (so that you can later merge that information into the original code integrity policy), complete the following steps. 
+
+<!-- Watch the phrase "later step in this procedure" in step 1, in case the organization of the procedures changes. -->
+
+1.  Review the audit information in the event log. From the code integrity policy exceptions that you see, make a list of any applications that should be allowed to run in your environment, and decide on the file rule level that should be used to trust these applications.
+
+    Although the Hash file rule level will catch all of these exceptions, it may not be the best way to trust all of them. For information about file rule levels, see [Code integrity file rule levels](deploy-code-integrity-policies-policy-rules-and-file-rules.md#code-integrity-file-rule-levels) in "Deploy code integrity policies: policy rules and file rules."
+    
+    Your event log might also contain exceptions for applications that you eventually want your code integrity policy to block. If these appear, make a list of these also, for a later step in this procedure.
+
+2.  In an elevated Windows PowerShell session, initialize the variables that will be used. The example filename shown here is **DeviceGuardAuditPolicy.xml**:
+
+    ` $CIPolicyPath=$env:userprofile+"\Desktop\"`
+
+    ` $CIAuditPolicy=$CIPolicyPath+"DeviceGuardAuditPolicy.xml"`
+
+3.  Use [New-CIPolicy](https://technet.microsoft.com/library/mt634473.aspx) to generate a new code integrity policy from logged audit events. This example uses a file rule level of **Hash** and includes `3> CIPolicylog.txt`, which redirects warning messages to a text file, **CIPolicylog.txt**.
+
+    ` New-CIPolicy -Audit -Level Hash -FilePath $CIAuditPolicy –UserPEs 3> CIPolicylog.txt`
+
+    > **Note**&nbsp;&nbsp;When you create policies from audit events, you should carefully consider the file rule level that you select to trust. The preceding example uses the **Hash** rule level, which is the most specific. Any change to the file (such as replacing the file with a newer version of the same file) will change the Hash value, and require an update to the policy.
+
+4.  Find and review the Device Guard audit policy .xml file that you created. If you used the example variables as shown, the filename will be **DeviceGuardAuditPolicy.xml**, and it will be on your desktop. Look for the following:
+
+    - Any applications that were caught as exceptions, but should be allowed to run in your environment. These are applications that should be in the .xml file. Leave these as-is in the file.
+    
+    - Any applications that actually should not be allowed to run in your environment. Edit these out of the .xml file. If they remain in the .xml file, and the information in the file is merged into your existing code integrity policy, the policy will treat the applications as trusted, and allow them to run. 
+
+You can now use this file to update the existing code integrity policy that you ran in audit mode by merging the two policies. For instructions on how to merge this audit policy with the existing code integrity policy, see the next section, [Merge code integrity policies](#merge-code-integrity-policies).
+
+> **Note**&nbsp;&nbsp;You may have noticed that you did not generate a binary version of this policy as you did in [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer). This is because code integrity policies created from an audit log are not intended to run as stand-alone policies but rather to update existing code integrity policies.
+
+## Merge code integrity policies
+
+When you develop code integrity policies, you will occasionally need to merge two policies. A common example is when a code integrity policy is initially created and audited. Another example is when you create a single master policy by using multiple code integrity policies previously created from golden computers. Because each computer running Windows 10 can have only one code integrity policy, it is important to properly maintain these policies. In this example, audit events have been saved into a secondary code integrity policy that you then merge with the initial code integrity policy.
+
+> **Note**&nbsp;&nbsp;The following example uses the code integrity policy .xml files that you created in earlier sections in this topic. You can follow this process, however, with any two code integrity policies you would like to combine.
+
+To merge two code integrity policies, complete the following steps in an elevated Windows PowerShell session:
+
+1.  Initialize the variables that will be used:
+
+    ` $CIPolicyPath=$env:userprofile+"\Desktop\"`
+
+    ` $InitialCIPolicy=$CIPolicyPath+"InitialScan.xml"`
+
+    ` $AuditCIPolicy=$CIPolicyPath+"DeviceGuardAuditPolicy.xml"`
+
+    ` $MergedCIPolicy=$CIPolicyPath+"MergedPolicy.xml"`
+
+    ` $CIPolicyBin=$CIPolicyPath+"NewDeviceGuardPolicy.bin"`
+
+    > **Note**&nbsp;&nbsp;The variables in this section specifically expect to find an initial policy on your desktop called **InitialScan.xml** and an audit code integrity policy called **DeviceGuardAuditPolicy.xml**. If you want to merge other code integrity policies, update the variables accordingly.
+
+2.  Use [Merge-CIPolicy](https://technet.microsoft.com/library/mt634485.aspx) to merge two policies and create a new code integrity policy:
+
+    ` Merge-CIPolicy -PolicyPaths $InitialCIPolicy,$AuditCIPolicy -OutputFilePath $MergedCIPolicy`
+
+3.  Use [ConvertFrom-CIPolicy](https://technet.microsoft.com/library/mt733073.aspx) to convert the merged code integrity policy to binary format:
+
+    ` ConvertFrom-CIPolicy $MergedCIPolicy $CIPolicyBin `
+
+Now that you have created a new code integrity policy (for example, called **NewDeviceGuardPolicy.bin**), you can deploy the policy to systems manually or by using Group Policy or Microsoft client management solutions. For information about how to deploy this new policy with Group Policy, see the [Deploy and manage code integrity policies with Group Policy](#deploy-and-manage-code-integrity-policies-with-group-policy) section.
+
+## Enforce code integrity policies
+
+Every code integrity policy is created with audit mode enabled. After you have successfully deployed and tested a code integrity policy in audit mode and are ready to test the policy in enforced mode, complete the following steps in an elevated Windows PowerShell session:
+
+> **Note**&nbsp;&nbsp;Every code integrity policy should be tested in audit mode first. For information about how to audit code integrity policies, see [Audit code integrity policies](#audit-code-integrity-policies), earlier in this topic.
+
+1.  Initialize the variables that will be used:
+
+    ` $CIPolicyPath=$env:userprofile+"\Desktop\"`
+
+    ` $InitialCIPolicy=$CIPolicyPath+"InitialScan.xml" `
+
+    ` $EnforcedCIPolicy=$CIPolicyPath+"EnforcedPolicy.xml"`
+
+    ` $CIPolicyBin=$CIPolicyPath+"EnforcedDeviceGuardPolicy.bin"`
+
+    > **Note**&nbsp;&nbsp;The initial code integrity policy that this section refers to was created in the [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer) section. If you are using a different code integrity policy, update the **CIPolicyPath** and **InitialCIPolicy** variables.
+
+2. Ensure that rule options 9 (“Advanced Boot Options Menu”) and 10 (“Boot Audit on Failure”) are set the way that you intend for this policy. We strongly recommend that you enable these rule options before you run any enforced policy for the first time. Enabling these options provides administrators with a pre-boot command prompt, and allows Windows to start even if the code integrity policy blocks a kernel-mode driver from running. When ready for enterprise deployment, you can remove these options.
+
+    To ensure that these options are enabled in a policy, use [Set-RuleOption](https://technet.microsoft.com/library/mt634483.aspx) as shown in the following commands. You can run these commands even if you're not sure whether options 9 and 10 are already enabled—if so, the commands have no effect.
+    
+    ` Set-RuleOption -FilePath $InitialCIPolicy -Option 9`
+    
+    ` Set-RuleOption -FilePath $InitialCIPolicy -Option 10`
+
+3.  Copy the initial file to maintain an original copy:
+
+    ` copy $InitialCIPolicy $EnforcedCIPolicy`
+
+4.  Use [Set-RuleOption](https://technet.microsoft.com/library/mt634483.aspx) to delete the audit mode rule option:
+
+    ` Set-RuleOption -FilePath $EnforcedCIPolicy -Option 3 -Delete`
+
+    > **Note**&nbsp;&nbsp;To enforce a code integrity policy, you delete option 3, the **Audit Mode Enabled** option. There is no “enforced” option that can be placed in a code integrity policy.
+
+5.  Use [ConvertFrom-CIPolicy](https://technet.microsoft.com/library/mt733073.aspx) to convert the new code integrity policy to binary format:
+
+    ` ConvertFrom-CIPolicy $EnforcedCIPolicy $CIPolicyBin`
+
+Now that this policy is in enforced mode, you can deploy it to your test computers. Rename the policy to SIPolicy.p7b and copy it to C:\\Windows\\System32\\CodeIntegrity for testing, or deploy the policy through Group Policy by following the instructions in [Deploy and manage code integrity policies with Group Policy](#deploy-and-manage-code-integrity-policies-with-group-policy). You can also use other client management software to deploy and manage the policy.
+
+## Signing code integrity policies with SignTool.exe
+
+Signed code integrity policies give organizations the highest level of malware protection available in Windows 10. In addition to their enforced policy rules, signed policies cannot be modified or deleted by a user or administrator on the computer. These policies are designed to prevent administrative tampering and kernel mode exploit access. With this in mind, it is much more difficult to remove signed code integrity policies than unsigned ones. Before you sign and deploy a signed code integrity policy, we recommend that you audit the policy to discover any blocked applications that should be allowed to run. For more information about how to audit code integrity policies, see the [Audit code integrity policies](#audit-code-integrity-policies) section.
+
+Signing code integrity policies by using an on-premises CA-generated certificate or a purchased code signing certificate is straightforward. If you do not currently have a code signing certificate exported in .pfx format (containing private keys, extensions, and root certificates), see [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md) to create one with your on-premises CA. 
+
+Before signing code integrity policies for the first time, be sure to enable rule options 9 (“Advanced Boot Options Menu”) and 10 (“Boot Audit on Failure”) to leave troubleshooting options available to administrators. To ensure that a rule option is enabled, you can run a command such as `Set-RuleOption -FilePath <PathAndFilename> -Option 9` even if you're not sure whether the option is already enabled—if so, the command has no effect. When validated and ready for enterprise deployment, you can remove these options. For more information about rule options, see [Code integrity policy rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md#code-integrity-policy-rules) in "Deploy code integrity policies: policy rules and file rules."
+
+> **Note**&nbsp;&nbsp;Signing code integrity policies is the last step in a code integrity deployment. It is much more difficult to remove a signed code integrity policy than an unsigned one. Before you deploy a signed code integrity policy to deployed client computers, be sure to test its effect on a subset of computers.
+
+To sign a code integrity policy with SignTool.exe, you need the following components:
+
+-   SignTool.exe, found in the Windows SDK (Windows 7 or later)
+
+-   The binary format of the code integrity policy that you generated in the [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer) section or another code integrity policy that you have created
+
+-   An internal CA code signing certificate or a purchased code signing certificate
+
+If you do not have a code signing certificate, see the [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md) section for instructions on how to create one. If you use an alternate certificate or code integrity policy, be sure to update the following steps with the appropriate variables and certificate so that the commands will function properly. To sign the existing code integrity policy, copy each of the following commands into an elevated Windows PowerShell session:
+
+1.  Initialize the variables that will be used:
+
+    ` $CIPolicyPath=$env:userprofile+"\Desktop\"`
+    
+    ` $InitialCIPolicy=$CIPolicyPath+"InitialScan.xml"`
+    
+    ` $CIPolicyBin=$CIPolicyPath+"DeviceGuardPolicy.bin"`
+
+    > **Note**&nbsp;&nbsp;This example uses the code integrity policy that you created in the [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer) section. If you are signing another policy, be sure to update the **$CIPolicyPath** and **$CIPolicyBin** variables with the correct information.
+
+2.  Import the .pfx code signing certificate. Import the code signing certificate that you will use to sign the code integrity policy into the signing user’s personal store on the computer that will be doing the signing. In this example, you use the certificate that was created in [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md).
+
+3.  Export the .cer code signing certificate. After the code signing certificate has been imported, export the .cer version to your desktop. This version will be added to the policy so that it can be updated later.
+
+4.  Navigate to your desktop as the working directory:
+
+    ` cd $env:USERPROFILE\Desktop `
+
+5.  Use [Add-SignerRule](https://technet.microsoft.com/library/mt634479.aspx) to add an update signer certificate to the code integrity policy:
+
+    ` Add-SignerRule -FilePath $InitialCIPolicy -CertificatePath <Path to exported .cer certificate> -Kernel -User –Update`
+
+   > **Notes**&nbsp;&nbsp;*&lt;Path to exported .cer certificate&gt;* should be the full path to the certificate that you exported in step 3.
+   
+   > Also, adding update signers is crucial to being able to modify or disable this policy in the future. For more information about how to disable signed code integrity policies, see the [Disable signed code integrity policies within Windows](#disable-signed-code-integrity-policies-within-windows) section.
+
+6.  Use [Set-RuleOption](https://technet.microsoft.com/library/mt634483.aspx) to remove the unsigned policy rule option:
+
+    ` Set-RuleOption -FilePath $InitialCIPolicy -Option 6 -Delete`
+
+7.  Use [ConvertFrom-CIPolicy](https://technet.microsoft.com/library/mt733073.aspx) to convert the policy to binary format:
+
+    ` ConvertFrom-CIPolicy $InitialCIPolicy $CIPolicyBin`
+
+8.  Sign the code integrity policy by using SignTool.exe:
+
+    ` <Path to signtool.exe> sign -v /n "ContosoDGSigningCert" -p7 . -p7co 1.3.6.1.4.1.311.79.1 -fd sha256 $CIPolicyBin`
+
+    > **Note**&nbsp;&nbsp;The *&lt;Path to signtool.exe&gt;* variable should be the full path to the SignTool.exe utility. **ContosoDGSigningCert** is the subject name of the certificate that will be used to sign the code integrity policy. You should import this certificate to your personal certificate store on the computer you use to sign the policy.
+
+9.  Validate the signed file. When complete, the commands should output a signed policy file called DeviceGuardPolicy.bin.p7 to your desktop. You can deploy this file the same way you deploy an enforced or non-enforced policy. For information about how to deploy code integrity policies, see [Deploy and manage code integrity policies with Group Policy](#deploy-and-manage-code-integrity-policies-with-group-policy).
+
+## Disable unsigned code integrity policies
+
+There may come a time when an administrator wants to disable a code integrity policy. For unsigned code integrity policies, this process is simple. Depending on how the code integrity policy was deployed, unsigned policies can be disabled in one of two ways. If a code integrity policy was manually enabled and copied to the code integrity folder location, simply delete the file and restart the computer. The following locations can contain executing code integrity policies:
+
+-   &lt;EFI System Partition&gt;\\Microsoft\\Boot\\
+
+-   &lt;OS Volume&gt;\\Windows\\System32\\CodeIntegrity\\
+
+If the code integrity policy was deployed by using Group Policy, the GPO that is currently enabling and deploying the policy must be set to disabled. Then, the code integrity policy will be disabled on the next computer restart.
+
+## Disable signed code integrity policies within Windows
+
+Signed policies protect Windows from administrative manipulation as well as malware that has gained administrative-level access to the system. For this reason, signed code integrity policies are intentionally more difficult to remove than unsigned policies. They inherently protect themselves from modification or removal and therefore are difficult even for administrators to remove successfully. If the signed code integrity policy is manually enabled and copied to the CodeIntegrity folder, to remove the policy, you must complete the following steps.
+
+> **Note**&nbsp;&nbsp;For reference, signed code integrity policies should be replaced and removed from the following locations:
+
+-   &lt;EFI System Partition&gt;\\Microsoft\\Boot\\
+
+-   &lt;OS Volume&gt;\\Windows\\System32\\CodeIntegrity\\
+
+
+1.  Replace the existing policy with another signed policy that has the **6 Enabled: Unsigned System Integrity Policy** rule option enabled.
+
+    > **Note**&nbsp;&nbsp;To take effect, this policy must be signed with a certificate previously added to the **UpdatePolicySigners** section of the original signed policy you want to replace.
+
+2.  Restart the client computer.
+
+3.  Verify that the new signed policy exists on the client.
+
+    > **Note**&nbsp;&nbsp;If the signed policy that contains rule option 6 has not been processed on the client, the addition of an unsigned policy may cause boot failures.
+
+4.  Delete the new policy.
+
+5.  Restart the client computer.
+
+If the signed code integrity policy has been deployed using by using Group Policy, you must complete the following steps:
+
+1.  Replace the existing policy in the GPO with another signed policy that has the **6 Enabled: Unsigned System Integrity Policy** rule option enabled.
+
+    > **Note**&nbsp;&nbsp;To take effect, this policy must be signed with a certificate previously added to the **UpdatePolicySigners** section of the original signed policy you want to replace.
+
+2.  Restart the client computer.
+
+3.  Verify that the new signed policy exists on the client.
+
+    > **Note**&nbsp;&nbsp;If the signed policy that contains rule option 6 has not been processed on the client, the addition of an unsigned policy may cause boot failures.
+
+4.  Set the GPO to disabled.
+
+5.  Delete the new policy.
+
+6.  Restart the client computer.
+
+## Disable signed code integrity policies within the BIOS
+
+There may be a time when signed code integrity policies cause a boot failure. Because code integrity policies enforce kernel mode drivers, it is important that they be thoroughly tested on each software and hardware configuration before being enforced and signed. Signed code integrity policies are validated in the pre-boot sequence by using Secure Boot. When you disable the Secure Boot feature in the BIOS, and then delete the file from the following locations on the operating system disk, it allows the system to boot into Windows:
+
+-   &lt;EFI System Partition&gt;\\Microsoft\\Boot\\
+
+-   &lt;OS Volume&gt;\\Windows\\System32\\CodeIntegrity\\
+
+## Deploy and manage code integrity policies with Group Policy
+
+Code integrity policies can easily be deployed and managed with Group Policy. A Device Guard administrative template will be available in Windows Server 2016 that allows you to simplify deployment of Device Guard hardware-based security features and code integrity policies. The following procedure walks you through how to deploy a code integrity policy called **DeviceGuardPolicy.bin** to a test OU called *DG Enabled PCs* by using a GPO called **Contoso GPO Test**.
+
+> **Note**&nbsp;&nbsp;This walkthrough requires that you have previously created a code integrity policy and have a computer running Windows 10 on which to test a Group Policy deployment. For more information about how to create a code integrity policy, see [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer), earlier in this topic.
+
+> **Note**&nbsp;&nbsp;Signed code integrity policies can cause boot failures when deployed. We recommend that signed code integrity policies be thoroughly tested on each hardware platform before enterprise deployment.
+
+To deploy and manage a code integrity policy with Group Policy:
+
+1.  On a domain controller on a client computer on which RSAT is installed, open the GPMC by running **GPMC.MSC** or searching for “Group Policy Management” in Windows Search.
+
+2.  Create a new GPO: right-click an OU, for example, the **DG Enabled PCs OU**, and then click **Create a GPO in this domain, and Link it here**, as shown in Figure 3.
+
+    > **Note**&nbsp;&nbsp;You can use any OU name. Also, security group filtering is an option when you consider different ways of combining code integrity policies (or keeping them separate), as discussed in [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+   ![Group Policy Management, create a GPO](images/dg-fig24-creategpo.png)
+
+   Figure 3. Create a GPO
+
+3.  Name new GPO **Contoso GPO Test**. This example uses Contoso GPO Test as the name of the GPO. You can choose any name that you prefer for this example.
+
+4.  Open the Group Policy Management Editor: right-click the new GPO, and then click **Edit**.
+
+5.  In the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Right-click **Deploy Code Integrity Policy** and then click **Edit**.
+
+    ![Edit the group policy for code integrity](images/dg-fig25-editcode.png)
+
+    Figure 4. Edit the group policy for code integrity
+
+6.  In the **Display Code Integrity Policy** dialog box, select the **Enabled** option, and then specify the code integrity policy deployment path.
+
+   In this policy setting, you specify either the local path in which the policy will exist on the client computer or a Universal Naming Convention (UNC) path that the client computers will look to retrieve the latest version of the policy. For example, with DeviceGuardPolicy.bin on the test computer, the example file path would be C:\\Windows\\System32\\CodeIntegrity\\DeviceGuardPolicy.bin, as shown in Figure 5.
+
+    > **Note**&nbsp;&nbsp;The illustration shows the example file name *DeviceGuardPolicy.bin* because this name was used earlier in this topic, in [Create a code integrity policy from a golden computer](#create-a-code-integrity-policy-from-a-golden-computer). Also, this policy file does not need to be copied to every computer. You can instead copy the code integrity policies to a file share to which all computer accounts have access. Any policy selected here is converted to SIPolicy.p7b when it is deployed to the individual client computers.
+
+   ![Group Policy called Deploy Code Integrity Policy](images/dg-fig26-enablecode.png)
+
+   Figure 5. Enable the code integrity policy
+
+    > **Note**&nbsp;&nbsp;You may have noticed that the GPO setting references a .p7b file and this example uses a .bin file for the policy. Regardless of the type of policy you deploy (.bin, .p7b, or .p7), they are all converted to SIPolicy.p7b when dropped on the client computer running Windows 10. Make your code integrity policies friendly and allow the system to convert the policy names for you to ensure that the policies are easily distinguishable when viewed in a share or any other central repository.
+
+7.  Close the Group Policy Management Editor, and then restart the Windows 10 test computer. Restarting the computer updates the code integrity policy. For information about how to audit code integrity policies, see the [Audit code integrity policies](#audit-code-integrity-policies) section.
+
+## Related topics
+
+[Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+
+[Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md)
+
diff --git a/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md b/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md
new file mode 100644
index 0000000000..6a0dfeabe2
--- /dev/null
+++ b/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md
@@ -0,0 +1,30 @@
+---
+title: Deploy Device Guard - deploy code integrity policies (Windows 10)
+description: This article, and the articles it links to, describe how to create code integrity policies, one of the main features that are part of Device Guard in Windows 10. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Deploy Device Guard: deploy code integrity policies (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+This section includes the following topics:
+
+- [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md)
+- [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md)
+- [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)
+- [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md)
+
+To increase the protection for devices that meet certain hardware requirements, you can use virtualization-based security (VBS) with your code integrity policies.
+- For requirements, see [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard) in "Requirements and deployment planning guidelines for Device Guard."
+- For steps, see [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md).
+
+## Related topics
+
+[Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+
diff --git a/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md b/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md
new file mode 100644
index 0000000000..85ae77b74a
--- /dev/null
+++ b/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md
@@ -0,0 +1,246 @@
+---
+title: Deploy Device Guard - enable virtualization-based security (Windows 10)
+description: This article describes how to enable virtualization-based security, one of the main features that are part of Device Guard in Windows 10. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Deploy Device Guard: enable virtualization-based security (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+Hardware-based security features, also called virtualization-based security or VBS, make up a large part of Device Guard security offerings. VBS reinforces the most important feature of Device Guard: configurable code integrity. There are three steps to configure hardware-based security features in Device Guard:
+
+1.  **Verify that hardware and firmware requirements are met**. Verify that your client computers possess the necessary hardware and firmware to run these features. A list of requirements for hardware-based security features is available in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard).
+
+2.  **Enable the necessary Windows features**. There are several ways to enable the Windows features required for hardware-based security. For details, see the following section, [Windows feature requirements for virtualization-based security](#windows-feature-requirements-for-virtualization-based-security).
+
+3.  **Enable additional features as desired**. When the necessary Windows features have been enabled, you can enable additional hardware-based security features as desired. For more information, see the following sections in this topic:
+
+    - [Enable Unified Extensible Firmware Interface Secure Boot](#enable-unified-extensible-firmware-interface-secure-boot)
+    - [Enable virtualization-based security for kernel-mode code integrity](#enable-virtualization-based-security-for-kernel-mode-code-integrity)
+
+For information about enabling Credential Guard, see [Protect derived domain credentials with Credential Guard](credential-guard.md).
+
+## Windows feature requirements for virtualization-based security
+
+In addition to the hardware requirements found in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard), you must enable certain operating system features before you can enable VBS: Microsoft Hyper-V and isolated user mode (shown in Figure 1).
+
+> **Note**&nbsp;&nbsp;You can configure these features manually by using Windows PowerShell or Deployment Image Servicing and Management. For specific information about these methods, see [Protect derived domain credentials with Credential Guard](credential-guard.md).
+ 
+![Turn Windows features on or off](images/dg-fig1-enableos.png)
+
+Figure 1. Enable operating system features for VBS
+
+After you enable these features, you can configure any additional hardware-based security features you want. The following sections provide more information:
+- [Enable Unified Extensible Firmware Interface Secure Boot](#enable-unified-extensible-firmware-interface-secure-boot)
+- [Enable virtualization-based security for kernel-mode code integrity](#enable-virtualization-based-security-for-kernel-mode-code-integrity)
+
+## Enable Unified Extensible Firmware Interface Secure Boot
+
+Before you begin this process, verify that the target device meets the hardware requirements for UEFI Secure Boot that are laid out in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard). There are two options to configure UEFI Secure Boot: manual configuration of the appropriate registry keys and Group Policy deployment. Complete the following steps to manually configure UEFI Secure Boot on a computer running Windows 10.
+
+> **Note**&nbsp;&nbsp;There are two platform security levels for Secure Boot: stand-alone Secure Boot and Secure Boot with DMA protection. DMA protection provides additional memory protection but will be enabled only on systems whose processors include input/output memory management units (IOMMUs). Protection against driver-based attacks is provided only on systems that have IOMMUs and that have DMA protection enabled.
+
+1.  Navigate to the **HKEY\_LOCAL\_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\DeviceGuard** registry subkey.
+
+2.  Set the **EnableVirtualizationBasedSecurity DWORD** value to **1**.
+
+3.  Set the **RequirePlatformSecurityFeatures DWORD** value as appropriate:
+
+    -   Set this value to **1** to enable the **Secure Boot** option.
+
+    -   Set this value to **2** to enable the **Secure Boot with DMA Protection** option.
+
+4.  Restart the client computer.
+
+Unfortunately, it would be time consuming to perform these steps manually on every protected computer in your enterprise. Group Policy offers a much simpler way to deploy UEFI Secure Boot to your organization. This example creates a test organizational unit (OU) called *DG Enabled PCs*. If you want, you can instead link the policy to an existing OU, and then scope the GPO by using appropriately named computer security groups.
+
+> **Note**&nbsp;&nbsp;We recommend that you test-enable this feature on a group of test computers before you deploy it to users' computers.
+
+### Use Group Policy to deploy Secure Boot
+
+1.  To create a new GPO, right-click the OU to which you want to link the GPO, and then click **Create a GPO in this domain, and Link it here**.
+
+    ![Group Policy Management, create a GPO](images/dg-fig2-createou.png)
+
+    Figure 5. Create a new OU-linked GPO
+
+2.  Give the new GPO a name, for example, **Contoso Secure Boot GPO Test**, or any name you prefer. Ideally, the name will align with your existing GPO naming convention.
+
+3.  Open the Group Policy Management Editor: right-click the new GPO, and then click **Edit**.
+
+4.  Within the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Right-click **Turn On Virtualization Based Security**, and then click **Edit**.
+
+    ![Edit the group policy for Virtualization Based Security](images/dg-fig3-enablevbs.png)
+
+    Figure 6. Enable VBS
+
+5.  Select the **Enabled** option, and then select **Secure Boot and DMA Protection** from the **Select Platform Security Level** list.
+
+    ![Group Policy, Turn On Virtualization Based Security](images/device-guard-gp.png)
+
+    Figure 7. Enable Secure Boot
+
+    > **Note**&nbsp;&nbsp;Device Guard Secure Boot is maximized when combined with DMA protection. If your hardware contains the IOMMUs required for DMA protection, be sure to select the **Secure Boot and DMA Protection** platform security level. If your hardware does not contain IOMMUs, there are several mitigations provided by leveraging Secure Boot without DMA Protection.
+
+6.  Close the Group Policy Management Editor, and then restart the Windows 10 test computer. After you configure this setting, UEFI Secure Boot will be enabled upon restart.
+
+7.  Check the test computer’s event log for Device Guard GPOs.
+
+    Processed Device Guard policies are logged in event viewer at **Applications and Services Logs\\Microsoft\\Windows\\DeviceGuard-GPEXT\\Operational**. When the **Turn On Virtualization Based Security** policy is successfully processed, event ID 7000 is logged, which contains the selected settings within the policy.
+
+## Enable virtualization-based security for kernel-mode code integrity
+
+Before you begin this process, verify that the desired computer meets the hardware requirements for VBS found in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard), and enable the Windows features discussed in the [Windows feature requirements for virtualization-based security](#windows-feature-requirements-for-virtualization-based-security) section. When validated, you can enable virtualization-based protection of KMCI in one of two ways: manual configuration of the appropriate registry subkeys and Group Policy deployment.
+
+> **Note**&nbsp;&nbsp;All drivers on the system must be compatible with virtualization-based protection of code integrity; otherwise, your system may fail. We recommend that you enable this feature on a group of test computers before you enable it on users' computers.
+
+**To configure virtualization-based protection of KMCI manually:**
+
+1.  Navigate to the **HKEY\_LOCAL\_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\DeviceGuard** registry subkey.
+
+2.  Set the **HypervisorEnforcedCodeIntegrity DWORD** value to **1**.
+
+3.  Restart the client computer.
+
+It would be time consuming to perform these steps manually on every protected computer in your enterprise. Instead, use Group Policy to deploy virtualization-based protection of KMCI. This example creates a test OU called *DG Enabled PCs*, which you will use to link the GPO. If you prefer to link the policy to an existing OU rather than create a test OU and scope the policy by using appropriately named computer security groups, that is another option.
+
+> **Note**&nbsp;&nbsp;We recommend that you test-enable this feature on a group of test computers before you deploy it to users' computers. If untested, there is a possibility that this feature can cause system instability and ultimately cause the client operating system to fail.
+
+**To use Group Policy to configure VBS of KMCI:**
+
+1.  Create a new GPO: Right-click the OU to which you want to link the GPO, and then click **Create a GPO in this domain, and Link it here**.
+
+    ![Group Policy Management, create a GPO](images/dg-fig5-createnewou.png)
+
+    Figure 2. Create a new OU-linked GPO
+
+2.  Give the new GPO a name, for example, **Contoso VBS CI Protection GPO Test**, or any name you prefer. Ideally, the name will align with your existing GPO naming convention.
+
+3.  Open the Group Policy Management Editor: Right-click the new GPO, and then click **Edit**.
+
+4.  Within the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Right-click **Turn On Virtualization Based Security**, and then click **Edit**.
+
+    ![Edit the group policy for Virtualization Based Security](images/dg-fig6-enablevbs.png)
+
+    Figure 3. Enable VBS
+
+5.  Select the **Enabled** option, and then select the **Enable Virtualization Based Protection of Code Integrity** check box.
+
+    ![Group Policy, Turn On Virtualization Based Security](images/dg-fig7-enablevbsofkmci.png)
+
+    Figure 4. Enable VBS of KMCI
+
+6.  Close the Group Policy Management Editor, and then restart the Windows 10 test computer. With this setting configured, the VBS of the KMCI will take effect upon restart.
+
+7.  Check the test client event log for Device Guard GPOs.
+
+    Processed Device Guard policies are logged in event viewer under **Applications and Services Logs\\Microsoft\\Windows\\DeviceGuard-GPEXT\\Operational**. When the **Turn On Virtualization Based Security** policy has been successfully processed, event ID 7000 is logged, which contains the selected settings within the policy.
+
+**Validate enabled Device Guard hardware-based security features**
+
+Windows 10 and Windows Server 2016 and later have a WMI class for Device Guard–related properties and features: *Win32\_DeviceGuard*. This class can be queried from an elevated Windows PowerShell session by using the following command:
+
+` Get-CimInstance –ClassName Win32_DeviceGuard –Namespace root\Microsoft\Windows\DeviceGuard`
+
+> **Note**&nbsp;&nbsp;The *Win32\_DeviceGuard* WMI class is only available on the Enterprise edition of Windows 10.
+
+The output of this command provides details of the available hardware-based security features as well as those features that are currently enabled. For detailed information about what each property means, refer to Table 1.
+
+Table 1. Win32\_DeviceGuard properties
+
+<table>
+<colgroup>
+<col width="33%" />
+<col width="33%" />
+<col width="33%" />
+</colgroup>
+<thead>
+<tr class="header">
+<th align="left"><strong>Properties</strong></th>
+<th align="left"><strong>Description</strong></th>
+<th align="left"><strong>Valid values</strong></th>
+</tr>
+</thead>
+<tbody>
+<tr class="odd">
+<td align="left"><strong>AvailableSecurityProperties</strong></td>
+<td align="left">This field helps to enumerate and report state on the relevant security properties for Device Guard.</td>
+<td align="left"><ul>
+<li><p><strong>0.</strong> If present, no relevant properties exist on the device.</p></li>
+<li><p><strong>1.</strong> If present, hypervisor support is available.</p></li>
+<li><p><strong>2.</strong> If present, Secure Boot is available.</p></li>
+<li><p><strong>3.</strong> If present, DMA protection is available.</p></li>
+</ul></td>
+</tr>
+<tr class="even">
+<td align="left"><strong>InstanceIdentifier</strong></td>
+<td align="left">A string that is unique to a particular device.</td>
+<td align="left">Determined by WMI.</td>
+</tr>
+<tr class="odd">
+<td align="left"><strong>RequiredSecurityProperties</strong></td>
+<td align="left">This field describes the required security properties to enable virtualization-based security.</td>
+<td align="left"><ul>
+<li><p><strong>0.</strong> Nothing is required.</p></li>
+<li><p><strong>1.</strong> If present, Secure Boot is needed.</p></li>
+<li><p><strong>2.</strong> If present, DMA protection is needed.</p></li>
+<li><p><strong>3.</strong> If present, both Secure Boot and DMA protection are needed.</p></li>
+</ul></td>
+</tr>
+<tr class="even">
+<td align="left"><strong>SecurityServicesConfigured</strong></td>
+<td align="left">This field indicates whether the Credential Guard or HVCI service has been configured.</td>
+<td align="left"><ul>
+<li><p><strong>0.</strong> No services configured.</p></li>
+<li><p><strong>1.</strong> If present, Credential Guard is configured.</p></li>
+<li><p><strong>2.</strong> If present, HVCI is configured.</p></li>
+</ul></td>
+</tr>
+<tr class="odd">
+<td align="left"><strong>SecurityServicesRunning</strong></td>
+<td align="left">This field indicates whether the Credential Guard or HVCI service is running.</td>
+<td align="left"><ul>
+<li><p><strong>0.</strong> No services running.</p></li>
+<li><p><strong>1.</strong> If present, Credential Guard is running.</p></li>
+<li><p><strong>2.</strong> If present, HVCI is running.</p></li>
+</ul></td>
+</tr>
+<tr class="even">
+<td align="left"><strong>Version</strong></td>
+<td align="left">This field lists the version of this WMI class.</td>
+<td align="left">The only valid value now is <strong>1.0</strong>.</td>
+</tr>
+<tr class="odd">
+<td align="left"><strong>VirtualizationBasedSecurityStatus</strong></td>
+<td align="left">This field indicates whether VBS is enabled and running.</td>
+<td align="left"><ul>
+<li><p><strong>0.</strong> VBS is not enabled.</p></li>
+<li><p><strong>1.</strong> VBS is enabled but not running.</p></li>
+<li><p><strong>2.</strong> VBS is enabled and running.</p></li>
+</ul></td>
+</tr>
+<tr class="even">
+<td align="left"><strong>PSComputerName</strong></td>
+<td align="left">This field lists the computer name.</td>
+<td align="left">All valid values for computer name.</td>
+</tr>
+</tbody>
+</table>
+
+Another method to determine the available and enabled Device Guard features is to run msinfo32.exe from an elevated PowerShell session. When you run this program, the Device Guard properties are displayed at the bottom of the **System Summary** section, as shown in Figure 11.
+
+![Device Guard properties in the System Summary](images/dg-fig11-dgproperties.png)
+
+Figure 11. Device Guard properties in the System Summary
+
+## Related topics
+
+- [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+
+- [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
diff --git a/windows/keep-secure/device-guard-deployment-guide.md b/windows/keep-secure/device-guard-deployment-guide.md
index 90d7c6aa3a..85dec6ce25 100644
--- a/windows/keep-secure/device-guard-deployment-guide.md
+++ b/windows/keep-secure/device-guard-deployment-guide.md
@@ -5,1162 +5,49 @@ ms.assetid: 4BA52AA9-64D3-41F3-94B2-B87EC2717486
 keywords: virtualization, security, malware
 ms.prod: w10
 ms.mktglfcycl: deploy
-ms.pagetype: security, devices
-author: challum
+author: brianlic-msft
 ---
 
-# Device Guard deployment guide
+# Device Guard deployment guide (Windows 10)
 
 **Applies to**
--   Windows 10
+-   Windows 10
+-   Windows Server 2016
 
-Microsoft Device Guard is a feature set that consists of both hardware and software system integrity hardening features that revolutionize the Windows operating system’s security. Windows 10 employs Device Guard as well as code integrity and advanced hardware features such as CPU virtualization extensions, Trusted Platform Module, and second-level address translation to offer comprehensive modern security to its users. This guide explores the individual features in Device Guard as well as how to plan for, configure, and deploy them.
+Device Guard is a combination of enterprise-related hardware and software security features that, when configured together, will lock a device down so that it can only run trusted applications that you define in your code integrity policies. If the app isn’t trusted it can’t run, period. With hardware that meets basic requirements, it also means that even if an attacker manages to get control of the Windows kernel, he or she will be much less likely to be able to run malicious executable code. With appropriate hardware, Device Guard can use the new virtualization-based security in Windows 10 Enterprise to isolate the Code Integrity service from the Microsoft Windows kernel itself. In this case, the Code Integrity service runs alongside the kernel in a Windows hypervisor-protected container.
 
-## Introduction to Device Guard
+This guide explores the individual features in Device Guard as well as how to plan for, configure, and deploy them. It includes:
 
-Today’s security threat landscape is more aggressive than ever before. Modern malicious attacks are focused on revenue generation, intellectual property theft, and targeted system degradation, which results in financial loss. Many of these modern attackers are sponsored by nation states with unknown motives and large cyber terrorism budgets. These threats can enter a company through something as simple as an email message and can permanently damage its reputation for securing its software assets, as well as having significant financial impact. Windows 10 introduces several new security features that help mitigate a large percentage of today’s known threats.
+- [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
 
-It is estimated that more than 300,000 new malware variants are discovered daily. Unfortunately, companies currently use an ancient method to discover this infectious software and prevent its use. In fact, current PCs trust everything that runs until malware signatures determine whether a threat exists; then, the antimalware software attempts to clean the PC, often after the malicious software’s effect has already been noticed. This signature-based system focuses on reacting to an infection and ensuring that the particular infection does not happen again. In this model, the system that drives malware detection relies on the discovery of malicious software; only then can a signature be provided to the client to remediate it, which implies that a computer must be infected first. The time between the detection of the malware and a client being issued a signature could mean the difference between losing data and staying safe.
+- [Requirements and deployment planning guidelines for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md)
 
-In addition to antimalware solutions, there are some “whitelisting” technologies available, including AppLocker. These technologies perform single instance, or blanket-allow or blanket-deny rules for running applications. Although this is more preventative than signature-based detection, it requires significant ongoing maintenance. In Windows 10, these applications are most effective when they are deployed alongside Microsoft Device Guard.
+- [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md)
 
-Device Guard breaks the current model of detection first-block later, and allows only trusted applications to run, period. This methodology is consistent with the successful prevention strategy for mobile phone security. With Device Guard, Microsoft has changed how the Windows operating system handles untrusted applications, which makes its defenses difficult for malware to penetrate. This new prevention versus detection model provides Windows clients with the necessary security for modern threats and, when implemented, makes most of today’s threats completely obsolete from day one.
+- [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
 
-Device Guard's features revolutionize the Windows operating system’s security by taking advantage of new virtualization-based security (VBS) options and the trust-nothing mobile device operating system model, which makes its defenses much more difficult for malware to penetrate. By using configurable code integrity policies, organizations are able to choose exactly which applications are allowed to run in their environment. Configurable code integrity is not limited to Windows Store applications and can be used with existing unsigned or signed Win32 applications, without the requirement that the application be repackaged. In addition, configurable code integrity can be deployed as an individual feature if organizations don’t possess the required hardware for Device Guard. Along with code integrity, Windows 10 leverages advanced hardware features such as CPU virtualization extensions, input/output memory management units (IOMMUs), Trusted Platform Module (TPM), and second-level address translation (SLAT) to offer comprehensive modern security to its users. Device Guard deployed with configurable code integrity and Credential Guard will be among the most impactful client-side security deployments an organization can implement today. In this guide, you learn about the individual features found within Device Guard as well as how to plan for, configure, and deploy them. Device Guard with configurable code integrity is intended for deployment alongside additional threat-mitigating Windows features such as Credential Guard and AppLocker.
+    - [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md)
 
-## Device Guard overview
-Device Guard is a feature set that consists of both hardware and software system integrity hardening features. These features revolutionize the Windows operating system’s security by taking advantage of new virtualization-based security options and the trust-nothing mobile device operating system model. A key feature in this model is called *configurable code integrity*, which allows your organization to choose exactly which software or trusted software publishers are allowed to run code on your client machines—exactly what has made mobile phone security so successful. In addition, Device Guard offers organizations a way to sign existing line-of-business (LOB) applications so that they can trust their own code, without the requirement that the application be repackaged. Also, this same method of signing provides organizations with a way to trust individual third-party applications. Device Guard—with configurable code integrity, Credential Guard, and AppLocker—is the most complete security defense that any Microsoft product has ever been able to offer a Windows client.
+    - [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md)
 
-Advanced hardware features such as CPU virtualization extensions, IOMMUs, and SLAT, drive these new client security offerings. By integrating these hardware features further into the core operating system, Windows 10 leverages them in new ways. For example, the same type 1 hypervisor technology that is used to run virtual machines in Microsoft Hyper-V is used to isolate core Windows services into a virtualization-based, protected container. This is just one example of how Windows 10 integrates advanced hardware features deeper into the operating system to offer comprehensive modern security to its users. These hardware features are now available in consumer and enterprise PC markets and are discussed in detail in the [Hardware considerations](#hardware-considerations) section.
+    - [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)
 
-Along with these new features, some components of Device Guard are existing tools or technologies that have been included in this strategic security offering to provide customers with the most secure Windows operating system possible. Device Guard is intended as a set of client security features to be used in conjunction with the other threat-resistance features available in the Windows operating system, some of which are mentioned in this guide. In addition to an overview of each feature, this guide walks you through the configuration and deployment of them.
+    - [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md)
 
-**Configurable code integrity**
-
-The Windows operating system consists of two operating modes: user mode and kernel mode. The base of the operating system runs within the kernel mode, which is where the Windows operating system directly interfaces with hardware resources. User mode is primarily responsible for running applications and brokering information to and from the kernel mode for hardware resource requests. For example, when an application that is running in user mode needs additional memory, the user mode process must request the resources from kernel mode, not directly from RAM.
-
-Code integrity is the component of the Windows operating system that verifies that the code Windows is running is trusted and safe. Like the operating system, Windows code integrity also contains two primary components: kernel mode code integrity (KMCI) and user mode code integrity (UMCI). KMCI has been used in recent versions of the Windows operating system to protect the kernel mode from running unsigned drivers. Although effective, drivers are not the only route that malware can take to penetrate the kernel mode space of the operating system. In Windows 10, however, Microsoft has raised the standard for kernel mode code out of the box as well as provided enterprises with a way to set their own UMCI and KMCI standards. Beginning with the Code Integrity service itself and continuing through the policies a Windows client uses to verify that an application should be allowed to run, Microsoft has made Windows 10 more secure than any previous Windows release. Historically, UMCI has been available only in Windows RT and on Windows Phone devices, which has made it difficult for these devices to be infected with viruses and malware. In Windows 10, these same successful UMCI standards are available.
-
-Historically, most malware has been unsigned. By simply deploying code integrity policies, organizations will immediately protect themselves against unsigned malware, which is estimated to be responsible for more than 95 percent of current attacks. By using code integrity policies, an enterprise can select exactly which binaries are allowed to run in both user mode and kernel mode, from the signer to the hash level. When completely enforced, it makes user mode in Windows function like a mobile phone, by allowing only specific applications or specific signatures to be trusted and run. This feature alone fundamentally changes the security in an enterprise. This additional security is not limited to Windows apps and does not require that an application be rewritten to be compatible with your existing, unsigned applications. You can implement configurable code integrity without enabling Device Guard, but it is intended to run in conjunction with Device Guard when supported hardware is available. For more information about how to configure, deploy, and manage code integrity policies, see the [Code integrity policies](#code-integrity-policies) section.
-
-**Hardware security features and virtualization-based security**
-
-The Device Guard core functionality and protection start at the hardware level. Devices that have processors equipped with SLAT technologies and virtualization extensions, such as Intel Virtualization Technology (VT-x) and AMD-V, will be able to take advantage of virtualization-based security (VBS) features that enhance Windows security. Device Guard leverages VBS to isolate core Windows services that are critical to the security and integrity of the operating system. This isolation removes the vulnerability of these services from both the user and kernel modes and acts as an impenetrable barrier for most malware used today. One of these isolated services, called the Windows Code Integrity service, drives the Device Guard kernel mode configurable code integrity feature. This prevents code that has penetrated the kernel mode operations from compromising the code integrity service.
-Another Windows 10 feature that employs VBS is Credential Guard. Credential Guard provides additional protection to Active Directory domain users by storing domain credentials within the virtualization container that hosts the Windows security services, such as code integrity. By isolating these domain credentials from the active user mode and kernel mode, they have a much lower risk of being stolen. For more information about how Credential Guard complements Device Guard, see the [Device Guard with Credential Guard](#device-guard-with-credential-guard) section. For information about how to enable Credential Guard, see the [Enable Credential Guard](#enable-credential-guard) section.
-
-**Device Guard with AppLocker**
-
-Although AppLocker is not considered a new Device Guard feature, it complements Device Guard functionality when enforced code integrity cannot be fully implemented or its functionality does not cover every desired scenario. There are many scenarios in which code integrity policies would be used alongside AppLocker rules. As a best practice, you should enforce code integrity policies at the most restrictive level possible for your organization, and then you can use AppLocker to fine-tune the restrictions to an even lower level.
-
->**Note:**  One example in which Device Guard functionality needs AppLocker supplementation is when your organization would like to limit universal applications. Universal applications have already been validated by Microsoft to be trustworthy to run, but an organization may not want to allow specific universal applications to run in their environment. You can accomplish this enforcement by using an AppLocker rule.
-AppLocker and Device Guard should run side-by-side in your organization, which offers the best of both security features at the same time and provides the most comprehensive security to as many devices as possible. In addition to these features, Microsoft recommends that you continue to maintain an enterprise antivirus solution for a well-rounded enterprise security portfolio.
-
-**Device Guard with Credential Guard**
-
-Although Credential Guard is not a feature within Device Guard, many organizations will likely deploy Credential Guard alongside Device Guard for additional protection against credential theft. Similar to virtualization-based protection of kernel mode code integrity, Credential Guard leverages hypervisor technology to protect domain credentials. This mitigation is targeted at resisting the use of pass-the-hash and pass-the-ticket techniques. By employing multifactor authentication with Credential Guard, organizations can gain additional protection against such threats. For information about how to deploy Credential Guard to your Windows 10 Enterprise clients, see the [Enable Credential Guard](#enable-cg) section. In addition to the client-side enablement of Credential Guard, organizations can deploy mitigations at both the CA and domain controller level to help prevent credential theft. Refer to the [Credential Guard](credential-guard.md) documentation for guidance on these additional mitigations.
-
-**Unified manageability**
-
-You can easily manage Device Guard features by using the familiar enterprise and client-management tools that IT pros use every day. Use the following management tools to enable and manage Device Guard:
-
--   **Group Policy**. Windows 10 provides an administrative template to configure and deploy the configurable code integrity policies for your organization. This template also allows you to specify which hardware-based security features you would like to enable and deploy. You can manage these settings along with your existing Group Policy Objects (GPOs), which makes it simple to implement Device Guard features. In addition to these code integrity and hardware-based security features, you can use Group Policy to help you manage your catalog files. For more information about catalog files, see the [Catalog files](#catalog-files) section.
--   **Microsoft System Center Configuration Manager**. You can use System Center Configuration Manager to simplify deployment and management of catalog files, code integrity policies, and hardware-based security features, as well as provide version control. For more information about how to deploy catalog files by using System Center Configuration Manager, see the [Deploy catalog files with System Center Configuration Manager](#deploy-cat-sccm) section.
--   **Microsoft Intune**. In a future release of Microsoft Intune, organizations will be able to leverage Intune for deployment and management of code integrity policies and catalog files.
--   **Windows PowerShell**. Windows PowerShell is primarily used to create and service code integrity policies. These policies represent the most powerful component of Device Guard. For a step-by-step walkthrough of how to create, audit, service, enforce, and deploy code integrity policies, see the [Code integrity policies](#code-integrity-policies) section.
-
-These options provide the same experience you are used to in order to manage your existing enterprise management solutions. For more information about how to manage and deploy Device Guard hardware and code integrity features in your organization, see the [Device Guard deployment](#dg-deployment) section.
-
-## Plan for Device Guard
-
-In this section, you will learn about the following topics:
-
--   [Approach enterprise code integrity deployment](#approach-enterprise-code-integrity-deployment). Device Guard deployment in your organization requires a planned approach. In this section, you get high-level recommendations for how to approach enterprise code integrity deployment in your organization.
--   [Device Guard deployment scenarios](#device-guard-deployment-scenarios). When you plan for Device Guard deployment, Microsoft recommends that you categorize each device in your organization into a deployment scenario. These scenarios will provide a roadmap for your Device Guard deployment.
--   [Code signing adoption](#code-signing-adoption). Code signing is important to the security that Device Guard provides. This section outlines the options for code signing and the benefits and disadvantages of each method.
--   [Hardware considerations](#hardware-considerations). Several Device Guard features require advanced hardware. This section outlines the requirements for each of those features and what to look for during your next hardware refresh.
-
-## Approach enterprise code integrity deployment
-
-Enterprises that want to consider Device Guard should not expect deployment to their entire organization overnight. Device Guard implementation requires that you plan for both end-user and IT pro impact. In addition, the deployment of Device Guard features to your enterprise requires a planned, phased approach to ensure that end-user systems are fully capable and ready to enforce these new security restrictions. Perform the following high-level tasks to approach the deployment of Device Guard to your enterprise:
-
-1.  **Group devices into similar functions**. Categorize machines into the groups described in the [Device Guard deployment scenarios](#device-guard-deployment-scenarios) section. This begins the roadmap for your Device Guard deployment and provides groups of easier and more difficult implementations. From there, assess the quantity of necessary Device Guard policies. The easiest solution is to lock down your entire enterprise, but it might not fit your individual departments’ needs.
-
-    To discover an appropriate number of policies for your organization, try to separate the defined groups into departments or roles. Then ask some questions: What software does each department or role need to do their job? Should they be able to install and run other departments’ software? Do we need to create a base code integrity policy that aligns with our application catalog? Should users be able to install any application or only choose from an “allowed” list? Do we allow users to use their own peripheral devices? These questions will help you discover the number of necessary policies for your organization. Finally, try to focus on which people or departments would require an additional level of privileges. For example, should department x be able to install and run application xyz, even though no other department does? If the answer is yes and justifiable, you will need a secondary code integrity policy for that group. If not, you will likely be able to merge several policies to simplify management. For more information about configurable code integrity policies, see the [Code integrity policies](#code-integrity-policies) section.
-
-2.  **Create code integrity policies from “golden” PCs**. After you create the groups of devices, you can create code integrity policies to align with those groups, similar to the way you would manage corporate images. When you have separated these groups and set up golden PCs that mimic the software and hardware those individual groups require, create code integrity policies from each of them. After you create these, you can merge these code integrity policies to create a master policy, or you can manage and deploy them individually. For step-by-step instructions about how to create code integrity policies, see the [Create code integrity policies from golden PCs](#create-code-integrity-policies-from-golden-pcs) section.
-
-3.  **Audit and merge code integrity policies**. Microsoft recommends that you test code integrity policies in audit mode before you enforce them. Audit mode allows administrators to run the code integrity policy on a system but not actually block anything. Rather than not allowing applications to run, events are logged with each exception to the policy. This way, you can easily highlight any issues that were not discovered during the initial scan. You can create additional code integrity policies by using the audit events and merge them into the existing policy. For more information about how to audit code integrity policies, see the [Audit code integrity policies](#audit-code-integrity-policies) section.
-
-4.  **Assess LOB applications that are currently unsigned, and create a catalog file for them**. Catalog files allow organizations to sign applications that do not currently possess digitally signed binaries or applications that a customer would want to add a secondary signature to. These applications can be in-house applications or from third parties, and the process does not require any repackaging of the application. When you create code integrity policies at a rule level above hash values, you will not discover unsigned applications. To include these applications in your code integrity policies, simply create, sign, and deploy a catalog file. For information about catalog files, see the [Catalog files](#catalog-files) section.
-
-5.  **Enable desired hardware security features**. Each type of device found in the [Device Guard deployment scenarios](#device-guard-deployment-scenarios) section takes advantage of different software and hardware integrity configurations. You should assess hardware-based security features separately from code integrity policies because they provide complementary functionality. For information about how to configure Device Guard hardware-based security features, see the [Configure hardware-based security features](#configure-hardware-based-security-features) section.
-
-6.  **Deploy code integrity policies and catalog files**. After you have created and signed the necessary catalog files and created and audited code integrity policies, you are ready to deploy them in phases. Microsoft strongly recommends that you deploy these components to a test group of users, even after your IT organization has tested and vetted them. This provides a final quality control validation before you deploy the catalog files and policies more broadly. For information about how to deploy catalog files with Group Policy, see the [Deploy catalog files with Group Policy](#deploy-catalog-files-with-group-policy) section. For additional information about how to deploy code integrity policies, see the [Deploy code integrity policies with Group Policy](#deploy-code-integrity-policies-with-group-policy) section.
-
-## Device Guard deployment scenarios
-
-To help simplify the deployment of Device Guard to your organization, Microsoft recommends that you group devices into the deployment scenarios described in this section. Device Guard is not a feature that organizations will just simply “turn on”; rather, it typically requires a phased implementation approach. To see where these scenarios fit into an overall Device Guard deployment approach, see the [Approach to enterprise code integrity deployment](#approach-to-enterprise-code-integrity-deployment) section.
-
-**Fixed-workload devices**
-
-The lists of approved applications on fixed-workload devices rarely change as they perform the same tasks day after day. Examples of such devices include kiosks, point-of-sale systems, and call center PCs. These devices could easily employ the full capabilities of Device Guard and would require little management or policy modification. Device Guard implementation to these devices is painless and requires little ongoing administration. With Device Guard fully implemented, users are able to run only those applications that the IT department installs, manages, and trusts.
-Device Guard components that are applicable to fixed-workload devices include:
-
--   KMCI VBS protection
--   Enforced UMCI policy
-
-**Fully managed devices**
-
-Fully managed devices are those for which the IT department restricts the software that is installed and run on them, but allows users to request installation of additional software or provides a list of approved software in an application catalog. Examples of such devices include locked-down, company-owned desktops and laptops. With these devices, establish an initial baseline code integrity policy and enforce the code integrity policy. The IT department manages the policies and updates the devices when new applications are approved or are provided in the System Center Configuration Manager catalog.
-Device Guard components that are applicable to fully managed devices include:
-
--   KMCI VBS protection
--   Enforced UMCI policy
-
-In this scenario, an application list is provided and trusted, and the trust policy is constantly re-evaluated when a user requests a new application. When an application is trusted across all of these devices, new user requests for that application do not require a policy update (alignment with application catalog). In addition, you can couple this with an onboarding process for new applications that you should add to the central application catalog. Initial implementation of Device Guard to fully managed devices is simple but does require more administrative overhead to manage trusted signatures of newly requested and approved applications.
-
-**Lightly managed devices**
-
-Lightly managed devices are company-owned machines over which users have full control, which includes what is installed on them. These devices run the organization’s antivirus solution and client management tools but are not restricted by software request or compliance policies.
-
-Device Guard components that are applicable to lightly managed devices include:
-
--   KMCI VBS protection
--   UMCI policy in Audit mode
-
-**Bring Your Own Device**
-
-Device Guard is not a good way to manage devices in a Bring Your Own Device (BYOD) model. When employees are allowed to bring their own devices, the management of user-mode applications on them can make it difficult for users to use their own devices when they are not at work. In addition, Device Guard functionality is difficult to maintain from an administrative perspective. For devices in this group, explore alternate hardening and security features with MDM-based conditional access solutions, such as Microsoft Intune.
-
-## Code signing adoption
-
-Code signing is crucial to the successful implementation of configurable code integrity policies. These policies can trust the signing certificates from both independent software vendors and customers. In Windows 10, all Windows Store applications are signed. Also, you can easily trust any other signed application by adding the signing certificate to the code integrity policy.
-For unsigned applications, customers have multiple options for signing them so that code integrity policies can trust them. The first option is traditional embedded code signing. Organizations that have in-house development teams can incorporate binary code signing into their application development process, and then simply add the signing certificate to their code integrity policies. The second option for signing unsigned applications is to use catalog files. In Windows 10, customers have the ability to create catalog files as they monitor the installation and initial run of an application. For more information about signing existing unsigned LOB applications or third-party applications, see the [Existing line-of-business applications](#existing-line-of-business-applications) section.
-
-### Existing line-of-business applications
-
-Until now, existing LOB applications were difficult to trust if they were signed by a source other than the Windows Store or not signed at all. With Windows 10, signing your existing LOB and third-party unsigned applications is simplified. This new signing method does not require that applications be repackaged in any way. With catalog files, administrators can sign these unsigned applications simply by monitoring for an installation and initial startup. By using this monitoring information, an administrator can generate a catalog file. Catalog files are simply Secure Hash Algorithm 2 (SHA2) hash lists of discovered binaries. These binaries’ hash values are updated every time an application is updated and therefore require an updated catalog file. For simplified administration, consider incorporating embedded code signing into your application development process. For more information about how to generate catalog files, see the [Catalog files](#catalog-files) section.
-
->**Note:**  Catalog files are lists of individual binaries’ hash values. If the scanned application is updated, you will need to create a new catalog file. That said, binary signing is still highly recommended for any future applications so that no catalog files are needed.
- 
-When you create a catalog file, you must sign it by using enterprise public key infrastructure (PKI), or a purchased code signing certificate. When signed, code integrity policies can trust the signer or signing certificate of those files. For information about catalog file signing, see the [Catalog files](#catalog-files) section.
-
-**Application development**
-
-Although in-house applications can be signed after packaging by using catalog files, Microsoft strongly recommends that embedded code signing be incorporated into your application development process. When signing applications, simply add the code signing certificate used to sign your applications to your code integrity policy. This ensures that your code integrity policy will trust any future application that is signed with that certificate. Embedding code signing into any in-house application development process is beneficial to your IT organization as you implement code integrity policies.
-
-## Hardware considerations
-
-Careful consideration about which hardware vendor and specific models to purchase during your next hardware refresh is vitally important to the success of your organization’s Device Guard implementation efforts. In alignment with your current hardware life cycle, consider the process that is discussed in the [Approach enterprise code integrity deployment](#approach-enterprise-code-integrity-deployment) section when you determine the appropriate order of hardware replacement in your organization. Device Guard should be deployed in phases; therefore, you have time to methodically plan for its implementation.
-
-Different hardware features are required to implement the various features of Device Guard. There will likely be some individual features that you will be able to enable with your current hardware and some that you will not. However, for organizations that want to implement Device Guard in its entirety, several advanced hardware features will be required. For additional details about the hardware features that are required for Device Guard components, see the following table.
-
-<table>
-<colgroup>
-<col width="50%" />
-<col width="50%" />
-</colgroup>
-<thead>
-<tr class="header">
-<th align="left">Requirement</th>
-<th align="left">Description</th>
-</tr>
-</thead>
-<tbody>
-<tr class="odd">
-<td align="left"><p>Windows 10 Enterprise</p></td>
-<td align="left"><p>The PC must be running Windows 10 Enterprise.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>UEFI firmware version 2.3.1 or higher with UEFI Secure Boot and Platform Secure Boot</p></td>
-<td align="left"><p>UEFI Secure Boot ensures that the device boots only authorized code. Additionally, Boot Integrity, also known as Platform Secure Boot must be supported. You can validate it against the following Windows Hardware Compatibility Program requirements:</p>
-<ul>
-<li><p>[System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot)</p></li>
-<li><p>[System.Fundamentals.Firmware.CS.UEFISecureBoot.ConnectedStandby](http://msdn.microsoft.com/library/windows/hardware/dn932807.aspx#system-fundamentals-firmware-cs-uefisecureboot-connectedstandby)</p></li>
-</ul></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>Virtualization extensions</p></td>
-<td align="left"><p>The following virtualization extensions are required to support virtualization-based security:</p>
-<ul>
-<li>Intel VT-x or AMD-V</li>
-<li>Second Level Address Translation</li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><p>Firmware lock</p></td>
-<td align="left"><ul>
-<li><p>The firmware setup should be locked to prevent other operating systems from starting and to prevent changes to the UEFI settings.</p></li>
-<li><p>Work with your hardware manufacturer to ensure that the devices are Device Guard ready.</p></li>
-<li><p>You should require a firmware password or higher authentication to change firmware settings.</p></li>
-</ul></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>x64 architecture</p></td>
-<td align="left"><p>The features that virtualization-based security uses in the Windows hypervisor can only run on a 64-bit PC.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>A VT-d or AMD-Vi IOMMU (Input/output memory management unit)</p></td>
-<td align="left"><p>In Windows 10, an IOMMU enhances system resiliency against memory attacks.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>Secure firmware update process</p></td>
-<td align="left"><p>To verify that the firmware complies with the secure firmware update process, you can validate it against the [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot) Windows Hardware Compatibility Program requirement.</p><p>Device Guard relies on the security of the underlying hardware and firmware. It is critical to keep the firmware updated with the latest security fixes.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>Signed processor microcode updates</p></td>
-<td align="left"><p>If the processor supports it, you must require signed microcode updates.</p></td>
-</tr>
-</tbody>
-</table>
-
-## Device Guard deployment
-
-In this section, you learn about the following topics:
-
--   [Configure hardware-based security features](#configure-hardware-based-security-features). This section explains how to enable the hardware-based security features in Device Guard. Also, you verify that the features are enabled by using both Windows Management Infrastructure (WMI) and Msinfo32.exe.
--   [Catalog files](#catalog-files). In this section, you create, sign, and deploy catalog files. You deploy the catalog files by using both Group Policy and System Center Configuration Manager. Also, you use System Center Configuration Manager to inventory the deployed catalog files for reporting purposes.
--   [Code integrity policies](#code-integrity-policies). This section provides information on how to create, audit, service, merge, deploy, and remove signed and unsigned configurable code integrity policies.
-
-## Configure hardware-based security features
-
-Hardware-based security features make up a large part of Device Guard security offerings. VBS reinforces the most important feature of Device Guard: configurable code integrity. There are three steps to configure hardware-based security features in Device Guard:
-
-1.  **Verify that hardware requirements are met and enabled**. Verify that your client machines possess the necessary hardware to run these features. A list of hardware requirements for the hardware-based security features is available in the [Hardware considerations](#hardware-considerations) section.
-2.  **Enable the necessary Windows features**. There are several ways to enable the Windows features required for hardware-based security. For details on which Windows features are needed, see the [Windows feature requirements for virtualization-based security](#windows-feature-requirements-for-virtualization-based-security) section.
-3.  **Enable desired features**. When the necessary hardware and Windows features have been enabled, you are ready to enable the desired hardware-based security features. For UEFI Secure Boot, see the [Enable UEFI Secure Boot](#enable-unified-extensible-interface-secure-boot) section. For information about how to enable VBS protection of the KMCI service, see the [Enable virtualization-based protection of kernel mode code integrity](#enable-virtualbased) section. Finally, for information about how to enable Credential Guard, see the [Enable Credential Guard](#enable-credential-guard) section.
-
-### Windows feature requirements for virtualization-based security
-
-In addition to the hardware requirements found in the [Hardware considerations](#hardware-considerations) section, you must enable certain operating system features before you can enable VBS: Microsoft Hyper-V and isolated user mode (shown in Figure 1).
-
->**Note:**  You can configure these features manually by using Windows PowerShell or Deployment Image Servicing and Management. For specific information about these methods, refer to the [Credential Guard documentation](http://go.microsoft.com/fwlink/p/?LinkId=624529).
- 
-![figure 1](images/dg-fig1-enableos.png)
-
-Figure 1. Enable operating system features for VBS
-
-After you enable these features, you can configure any hardware-based security features you want. For information about how to enable virtualization-based protection of kernel-mode code integrity, see the [Enable virtualization-based protection of kernel-mode code integrity](#enable-virtualization-based-protection-of-kernel-mode-code-integrity) section. For information about how to enable UEFI Secure Boot, see the [Enable UEFI Secure Boot](#enable-unified-extensible-interface-secure-boot) section. Finally, for additional information about how to enable Credential Guard, see the [Enable Credential Guard](#enable-credential-guard) section.
-
-### Enable Unified Extensible Firmware Interface Secure Boot
-
-Before you begin this process, verify that the target device meets the hardware requirements for UEFI Secure Boot that are laid out in the [Hardware considerations](#hardware-considerations) section. There are two options to configure UEFI Secure Boot: manual configuration of the appropriate registry keys and Group Policy deployment. Complete the following steps to manually configure UEFI Secure Boot on a computer running Windows 10:
-
->**Note:**  There are two platform security levels for Secure Boot: stand-alone Secure Boot and Secure Boot with DMA protection. DMA protection provides additional memory protection but will be enabled only on systems whose processors include DMA protection (IOMMU) technologies. Without the presence of IOMMUs and with DMA protection disabled, customers will lose protection from driver-based attacks.
-
-1.  Navigate to the **HKEY\_LOCAL\_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\DeviceGuard** registry subkey.
-2.  Set the **EnableVirtualizationBasedSecurity DWORD** value to **1**.
-3.  Set the **RequirePlatformSecurityFeatures DWORD** value as appropriate:
-
-    -   Set this value to **1** to enable the **Secure Boot** option.
-    -   Set this value to **2** to enable the **Secure Boot with DMA Protection** option.
-
-4.  Restart the client machine.
-
-Unfortunately, it would be time consuming to perform these steps manually on every protected machine in your enterprise. Group Policy offers a much simpler way to deploy UEFI Secure Boot to your organization. This example creates a test organizational unit (OU) called *DG Enabled PCs*. If you prefer to link the policy to an existing OU, and then scope the GPO by using appropriately named computer security groups, you can certainly do so.
-
->**Note:**  Microsoft recommends that you test-enable this feature on a group of test machines before you deploy it to machines that are currently deployed to users.
-
-**Use Group Policy to deploy Secure Boot**
-
-<a href="" id="bkmk-depsecureboot"></a>
-
-1.  To create a new GPO, right-click the OU to which you want to link the GPO, and then click **Create a GPO in this domain, and Link it here**.
-
-    ![figure 2](images/dg-fig2-createou.png)
-
-    Figure 2. Create a new OU-linked GPO
-
-2.  Name the new GPO **Contoso Secure Boot GPO Test**. This example uses *Contoso Secure Boot GPO Test* as the name of the GPO. You can choose any name for this example. Ideally, the name would align with your existing GPO naming convention.
-
-3.  To open the Group Policy Management Editor, right-click the new GPO, and then click **Edit**.
-
-4.  Within the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Then, right-click **Turn On Virtualization Based Security**, and then click **Edit**.
-
-    ![figure 3](images/dg-fig3-enablevbs.png)
-
-    Figure 3. Enable VBS
-
-5.  Select the **Enabled** option, and then select **Secure Boot and DMA Protection** from the **Select Platform Security Level** list.
-
-    ![figure 4](images/device-guard-gp.png)
-
-    Figure 4. Enable Secure Boot
-
-    >**Note:**  Device Guard Secure Boot is maximized when combined with DMA protection. If your hardware contains the IOMMUs required for DMA protection, be sure to select the **Secure Boot and DMA Protection** platform security level. If your hardware does not contain IOMMU, there are several mitigations provided by leveraging Secure Boot without DMA Protection.
-     
-6.  Close the Group Policy Management Editor, and then restart the Windows 10 test computer. After you configure this setting, UEFI Secure Boot will be enabled upon restart.
-
-7.  Check the test computer’s event log for Device Guard GPOs.
-    
-    Processed Device Guard policies are logged in event viewer at Application and Services Logs\\Microsoft\\Windows\\DeviceGuard-GPEXT\\Operational. When the **Turn On Virtualization Based Security** policy is successfully processed, event ID 7000 is logged, which contains the selected settings within the policy.
-
-### Enable virtualization-based security of kernel-mode code integrity
-
-Before you begin this process, verify that the desired computer meets the hardware requirements for VBS found in the [Hardware considerations](#hardware-considerations) section, and enable the Windows features discussed in the [Virtualization-based security Windows feature requirements](#virtualization-based-security-windows-featurerrequirements) section. When validated, you can enable virtualization-based protection of KMCI in one of two ways: manual configuration of the appropriate registry subkeys and Group Policy deployment.
-
->**Note:**  All drivers on the system must be compatible with virtualization-based protection of code integrity; otherwise, your system may fail. Microsoft recommends that you enable this feature on a group of test machines before you enable it on deployed machines.
-
-To configure virtualization-based protection of KMCI manually:
-
-1.  Navigate to the **HKEY\_LOCAL\_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\DeviceGuard** registry subkey.
-2.  Set the **HypervisorEnforcedCodeIntegrity DWORD** value to **1**.
-3.  Restart the client computer.
-
-It would be time consuming to perform these steps manually on every protected machine in your enterprise. Instead, use Group Policy to deploy virtualization-based protection of KMCI. This example creates a test OU called *DG Enabled PCs*, which you will use to link the GPO. If you prefer to link the policy to an existing OU rather than create a test OU and scope the policy by using appropriately named computer security groups, that is another option.
-
->**Note:**  Microsoft recommends that you test-enable this feature on a group of test computers before you deploy it to machines that are currently deployed to users. If untested, there is a possibility that this feature can cause system instability and ultimately cause the client operating system to fail.
-
-To use Group Policy to configure VBS of KMCI:
-
-1.  Create a new GPO: Right-click the OU to which you want to link the GPO, and then click **Create a GPO in this domain, and Link it here**.
-
-    ![figure 5](images/dg-fig5-createnewou.png)
-
-    Figure 5. Create a new OU-linked GPO
-
-2.  Name the new GPO **Contoso VBS CI Protection GPO Test**.
-
-    This example uses *Contoso VBS CI Protection GPO Test* as the name of the GPO. You can choose any name you prefer for this example. Ideally, this name would align with your existing GPO naming convention.
-
-3.  Open the Group Policy Management Editor: Right-click the new GPO, and then click **Edit**.
-
-4.  Within the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Then, right-click **Turn On Virtualization Based Security**, and then click **Edit**.
-
-    ![figure 6](images/dg-fig6-enablevbs.png)
-
-    Figure 6. Enable VBS
-
-5.  Select the **Enabled** option, and then select the **Enable Virtualization Based Protection of Code Integrity** check box.
-
-    ![figure 7](images/dg-fig7-enablevbsofkmci.png)
-
-    Figure 7. Enable VBS of KMCI
-
-6.  Close the Group Policy Management Editor, and then restart the Windows 10 test computer. With this setting configured, the VBS of the KMCI will take effect upon restart.
-
-7.  Check the test client event log for Device Guard GPOs.
-
-    Processed Device Guard policies are logged in event viewer under Application and Services Logs\\Microsoft\\Windows\\DeviceGuard-GPEXT\\Operational. When the **Turn On Virtualization Based Security** policy has been successfully processed, event ID 7000 is logged, which contains the selected settings within the policy.
-
-### Enable Credential Guard
-
-Credential Guard provides an additional layer of credential protection specifically for domain users by storing the credentials within the virtualized container, away from both the kernel and user mode operating system. This makes it difficult for even a compromised system to obtain access to the credentials. In addition to the client-side enablement of Credential Guard, you can deploy additional mitigations at both the Certification Authority and domain controller level to prevent credential theft. Microsoft will be releasing details about these additional mitigations in the future.
-
-Before you begin this process, verify that the desired system meets the hardware requirements for VBS found in the [Hardware considerations](#hardware) section, and that you have enabled the Windows features laid out in the [Virtualization-based security Windows feature requirements](#virtualization-based-security-windows-feature-requirements) section. When validated, you can enable Credential Guard manually, by configuring the appropriate registry subkeys, or through Group Policy deployment.
-
-To configure VBS of Credential Guard manually:
-
-1.  Navigate to the **HKEY\_LOCAL\_MACHINE\\SYSTEM\\CurrentControlSet\\Control\\Lsa** registry subkey.
-2.  Set the **LsaCfgFlags DWORD** value to **1**.
-3.  Restart the client computer.
-
-To avoid spending an unnecessary amount of time in manual deployments, use Group Policy to deploy Credential Guard to your organization. This example creates a test OU called *DG Enabled PCs*. To enable Credential Guard, you can link to any OU, and then scope the GPO’s application by using security groups.
-
->**Note:**  Microsoft recommends that you enable Credential Guard before you join a machine to the domain to ensure that all credentials are properly protected. Setting the appropriate registry subkeys during your imaging process would be ideal to achieve this protection.
-
-To use Group Policy to enable Credential Guard:
-
-1.  Create a new GPO: right-click the OU to which you want to link the GPO, and then click **Create a GPO in this domain, and Link it here** .
-
-    ![figure 8](images/dg-fig8-createoulinked.png)
-
-    Figure 8. Create a new OU-linked GPO
-
-2.  Name the new GPO **Contoso Credential Guard GPO Test**.
-
-    This example uses *Contoso Credential Guard GPO Test* as the name of the GPO. You can choose any name you prefer for this example. Ideally, this name would align with your existing GPO naming convention.
-
-3.  Open the Group Policy Management Editor: right-click the new GPO, and then click **Edit**.
-
-4.  Within the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Right-click **Turn On Virtualization Based Security**, and then click **Edit**.
-
-    ![figure 9](images/dg-fig9-enablevbs.png)
-
-    Figure 9. Enable VBS
-
-5.  Select the **Enabled** option, and then select the **Enable Credential Guard** check box.
-
-    ![figure 10](images/dg-fig10-enablecredentialguard.png)
-
-    Figure 10. Enable Credential Guard
-
-6.  Close Group Policy Management Editor, and then restart the Windows 10 test computer.
-
-    >**Note:**  The default platform security level is **Secure Boot**. If IOMMUs are available within the protected machines, it is recommended that you select **Secure Boot and DMA Protection** to maximize the mitigations that are available through Credential Guard.
-
-7.  Check the test client event log for Device Guard GPOs.
-
->**Note**  All processed Device Guard policies are logged in event viewer under Application and Services Logs\\Microsoft\\Windows\\DeviceGuard-GPEXT\\Operational.
- 
-For additional information about how Credential Guard works as well as additional configuration options, please refer to the [Credential Guard documentation](http://go.microsoft.com/fwlink/p/?LinkId=624529).
-
-**Validate enabled Device Guard hardware-based security features**
-
-Windows 10 and Windows Server 2016 and later have a WMI class for Device Guard–related properties and features: *Win32\_DeviceGuard*. This class can be queried from an elevated Windows PowerShell session by using the following command:
-
-`Get-CimInstance –ClassName Win32_DeviceGuard –Namespace root\Microsoft\Windows\DeviceGuard`
-
->**Note:**  The *Win32\_DeviceGuard* WMI class is only available on the Enterprise edition of Windows 10.
-
-The output of this command provides details of the available hardware-based security features as well as those features that are currently enabled. For detailed information about what each property means, refer to Table 1.
- 
-Table 1. Win32\_DeviceGuard properties
-
-<table>
-<colgroup>
-<col width="33%" />
-<col width="33%" />
-<col width="33%" />
-</colgroup>
-<thead>
-<tr class="header">
-<th align="left"><strong>Properties</strong></th>
-<th align="left"><strong>Description</strong></th>
-<th align="left"><strong>Valid values</strong></th>
-</tr>
-</thead>
-<tbody>
-<tr class="odd">
-<td align="left"><strong>AvailableSecurityProperties</strong></td>
-<td align="left">This field helps to enumerate and report state on the relevant security properties for Device Guard.</td>
-<td align="left"><ul>
-<li><p><strong>0.</strong> If present, no relevant properties exist on the device.</p></li>
-<li><p><strong>1.</strong> If present, hypervisor support is available.</p></li>
-<li><p><strong>2.</strong> If present, Secure Boot is available.</p></li>
-<li><p><strong>3.</strong> If present, DMA protection is available.</p></li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><strong>InstanceIdentifier</strong></td>
-<td align="left">A string that is unique to a particular device.</td>
-<td align="left">Determined by WMI.</td>
-</tr>
-<tr class="odd">
-<td align="left"><strong>RequiredSecurityProperties</strong></td>
-<td align="left">This field describes the required security properties to enable virtualization-based security.</td>
-<td align="left"><ul>
-<li><p><strong>0.</strong> Nothing is required.</p></li>
-<li><p><strong>1.</strong> If present, Secure Boot is needed.</p></li>
-<li><p><strong>2.</strong> If present, DMA protection is needed.</p></li>
-<li><p><strong>3.</strong> If present, both Secure Boot and DMA protection are needed.</p></li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><strong>SecurityServicesConfigured</strong></td>
-<td align="left">This field indicates whether the Credential Guard or HVCI service has been configured.</td>
-<td align="left"><ul>
-<li><p><strong>0.</strong> No services configured.</p></li>
-<li><p><strong>1.</strong> If present, Credential Guard is configured.</p></li>
-<li><p><strong>2.</strong> If present, HVCI is configured.</p></li>
-</ul></td>
-</tr>
-<tr class="odd">
-<td align="left"><strong>SecurityServicesRunning</strong></td>
-<td align="left">This field indicates whether the Credential Guard or HVCI service is running.</td>
-<td align="left"><ul>
-<li><p><strong>0.</strong> No services running.</p></li>
-<li><p><strong>1.</strong> If present, Credential Guard is running.</p></li>
-<li><p><strong>2.</strong> If present, HVCI is running.</p></li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><strong>Version</strong></td>
-<td align="left">This field lists the version of this WMI class.</td>
-<td align="left">The only valid value now is <strong>1.0</strong>.</td>
-</tr>
-<tr class="odd">
-<td align="left"><strong>VirtualizationBasedSecurityStatus</strong></td>
-<td align="left">This field indicates whether VBS is enabled and running.</td>
-<td align="left"><ul>
-<li><p><strong>0.</strong> VBS is not enabled.</p></li>
-<li><p><strong>1.</strong> VBS is enabled but not running.</p></li>
-<li><p><strong>2.</strong> VBS is enabled and running.</p></li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><strong>PSComputerName</strong></td>
-<td align="left">This field lists the computer name.</td>
-<td align="left">All valid values for computer name.</td>
-</tr>
-</tbody>
-</table>
-
-Another method to determine the available and enabled Device Guard features is to run msinfo32.exe from an elevated PowerShell session. When you run this program, the Device Guard properties are displayed at the bottom of the 
-**System Summary** section, as shown in Figure 11.
-
-![figure 11](images/dg-fig11-dgproperties.png)
-
-Figure 11. Device Guard properties in the System Summary
-
-## Catalog files
-
-Enforcement of Device Guard on a system requires that every trusted application have a signature or its binary hashes added to the code integrity policy. For many organizations, this can be an issue when considering unsigned LOB applications. To avoid the requirement that organizations repackage and sign these applications, Windows 10 includes a tool called Package Inspector that monitors an installation process for any deployed and executed binary files. If the tool discovers such files, it itemizes them in a catalog file. These catalog files offer you a way to trust your existing unsigned applications, whether developed in house or by a third party, as well as trust signed applications for which you do not want to trust the signer but rather the specific application. When created, these files can be signed, the signing certificates added to your existing code integrity policies, and the catalog files themselves distributed to the clients.
-
->**Note:**  The Enterprise edition of Windows 10 or Windows Server 2016 is required to create and use catalog files.
-
-### Create catalog files
-
-The creation of catalog files is the first step to add an unsigned application to a code integrity policy. To create a catalog file, copy each of the following commands into an elevated Windows PowerShell session, and then complete the steps:
-
->**Note:**  When you establish a naming convention it makes it easier to detect deployed catalog files in the future. In this guide, you will use *\*-Contoso.cat* as the naming convention. For more information about why this practice is helpful to inventory or detect catalog files, see the [Inventory catalog files with System Center Configuration Manager](#inventory-catalog-files-with-system-center-configuration-manager) section.
- 
-1.  Be sure that a code integrity policy is currently running in audit mode.
-
-    Package Inspector does not always detect installation files that have been removed from the machine during the installation process. To ensure that these binaries are also trusted, the code integrity policy that you created and audited in the [Create code integrity policies from golden PCs](#create-code-integrity-policies-from-golden-pcs) and [Audit code integrity policies](#audit-code-integrity-policies) sections should be deployed, in audit mode, to the system on which you are running Package Inspector.
-
-    **Note**  
-    This process should **not** be performed on a system running an enforced Device Guard policy, only with a policy running in audit mode. If a policy is currently being enforced, you will not be able to install and run the application.
-
-2.  Start Package Inspector, and then scan drive C:
-
-    `PackageInspector.exe Start C:`
-
-    >**Note:**  Package inspector can monitor installations on any local drive. In this example, we install the application on drive C, but any other drive can be used.
-    
-3.  Copy the installation media to drive C.
-
-    By copying the installation media to drive C, you ensure that Package Inspector detects and catalogs the actual installer. If you skip this step, the future code integrity policy may trust the application to run but not be installed.
-
-4.  Install and launch the application.
-
-    Install the application to drive C. When the installation is finished, launch the application and ensure that any product updates are installed and any downloadable content caught during the scan. When finished, close and 
-    reopen the application once again to ensure that the scan has captured all binaries.
-    
-    >**Note:**      Every binary that is run while Package Inspector is running will be captured in the catalog. Therefore, be sure not to run additional installations or updates during the scan to minimize the risk of trusting the incorrect binaries. Alternatively, if you want to add multiple applications to a single catalog file, simply repeat the installation and run process while the current scan is running.
-     
-5.  Stop the scan, and then generate definition and catalog files. When application installation and initial setup are finished, stop the Package Inspector scan and generate the catalog and definition files on your desktop by using the following commands:
-
-    `$ExamplePath=$env:userprofile+"\Desktop"`
-    `$CatFileName=$ExamplePath+"\LOBApp-Contoso.cat"`
-    `$CatDefName=$ExamplePath+"\LOBApp.cdf"`
-    `PackageInspector.exe Stop C: -Name $CatFileName -cdfpath $CatDefName`
-
->**Note:**  This scan catalogs the hash values for each discovered binary file. If the applications that were scanned are updated, complete this process again to trust the new binaries’ hash values.
-When finished, the files will be saved to your desktop. To trust this catalog file within a code integrity policy, the catalog must first be signed. Then, the signing certificate can be included in the code integrity policy, and the catalog file can be distributed to the individual client machines. Catalog files can be signed by using a certificate and SignTool.exe, a free tool available in the Windows SDK. For more information about signing catalog files with SignTool.exe, see the [Catalog signing with SignTool.exe](#catalog-signing-with-signtool.exe) section.
-
-### Catalog signing with SignTool.exe
-
-Device Guard makes it easy for organizations to sign and trust existing unsigned LOB applications. In this section, you sign a catalog file you generated in a previous section by using PackageInspector.exe. For information about how to create catalog files, see the [Create catalog files](#create-catalog-files) section. In this example, you need the following:
-
--   SignTool.exe, found in the Windows software development kit (SDK—Windows 7 or later)
--   The catalog file that you generated in the [Create catalog files](#create-catalog-files) section, or another catalog file that you have created
--   Internal certification authority (CA) code signing certificate or purchased code signing certificate
-
-If you do not have a code signing certificate, please see the [Create a Device Guard code signing certificate](#create-a-device-guard-code-signing-certificate) section for a walkthrough of how to create one. In addition to using the certificate you create in the Create a Device Guard code signing certificate section, this example signs the catalog file that you created in the [Create catalog files](#create-catalog-files) section. If you are using an alternate certificate or catalog file, update the following steps with the appropriate variables and certificate. To sign the existing catalog file, copy each of the following commands into an elevated Windows PowerShell session:
-
-1.  Initialize the variables that will be used:
-
-    '$ExamplePath=$env:userprofile+"\Desktop"'
-    
-    '$CatFileName=$ExamplePath+"\LOBApp-Contoso.cat"'
-
-   >**Note:**     In this example, you use the catalog file you created in the [Create catalog files](#create-catalog-files) section. If you are signing another catalog file, be sure to update the *$ExamplePath* and *$CatFileName* variables with the correct information.
-
-2.  Import the code signing certificate. Import the code signing certificate that will be used to sign the catalog file to the signing user’s personal store. In this example, you use the certificate that you created in the [Create a Device Guard code signing certificate](#create-a-device-guard-code-signing-certificate) section.
-
-3.  Sign the catalog file with Signtool.exe:
-
-    `<path to signtool.exe> sign /n "ContosoDGSigningCert" /fd sha256 /v $CatFileName`
-
-   >**Note:**  The *&lt;Path to signtool.exe&gt;* variable should be the full path to the Signtool.exe utility. *ContosoDGSigningCert* is the subject name of the certificate that you will use to sign the catalog file. This certificate should be imported to your personal certificate store on the machine on which you are attempting to sign the catalog file.
-   
-   >**Note:**  For additional information about Signtool.exe and all additional switches, visit [MSDN Sign Tool page](http://go.microsoft.com/fwlink/p/?LinkId=624163).
-     
-4.  Verify the catalog file digital signature. Right-click the catalog file, and then click **Properties**. On the **Digital Signatures** tab, verify that your signing certificate exists with a **sha256** algorithm, as shown in Figure 12.
-
-    ![figure 12](images/dg-fig12-verifysigning.png)
-
-    Figure 12. Verify that the signing certificate exists
-
-5.  Copy the catalog file to C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}.
-
-    For testing purposes, you can manually copy signed catalog files to their intended folder. For large-scale implementations, Microsoft recommends that you use Group Policy File Preferences to copy the appropriate catalog files to all desired machines or an enterprise systems management product such as System Center Configuration Manager. Doing this simplifies the management of catalog versions, as well.
-
-### Deploy catalog files with Group Policy
-
-To simplify the management of catalog files, you can use Group Policy preferences to deploy catalog files to the appropriate PCs in your organization. The following process walks you through the deployment of a signed catalog file called LOBApp-Contoso.cat to a test OU called DG Enabled PCs with a GPO called **Contoso DG Catalog File GPO Test**.
-
->**Note:**  This walkthrough requires that you have previously created a signed catalog file and have a Windows 10 client PC on which to test a Group Policy deployment. For more information about how to create and sign a catalog file, see the [Catalog files](#catalog-files) section.
-
-To deploy a catalog file with Group Policy:
-
-1.  From either a domain controller or a client PC that has Remote Server Administration Tools (RSAT) installed, open the Group Policy Management Console (GPMC) by running **GPMC.MSC** or by searching for Group Policy Management.
-2.  Create a new GPO: right-click the DG Enabled PCs OU, and then click **Create a GPO in this domain, and Link it here**, as shown in Figure 13.
-
-   >**Note:**  The DG Enabled PCs OU is just an example of where to link the test GPO that you created in this section. You can use any OU name. Also, security group filtering is an option when you consider policy partitioning options based on the strategy discussed in the [Approach enterprise code integrity deployment](#approach-enterprise-code-integrity-deployment) section.
-
-   ![figure 13](images/dg-fig13-createnewgpo.png)
-   
-   Figure 13. Create a new GPO
-
-3.  Name the new GPO **Contoso DG Catalog File GPO Test**.
-
-    This example uses *Contoso DG Catalog File GPO Test* as the name of the GPO. You can choose any name you prefer for this example.
-
-4.  Open the Group Policy Management Editor: right-click the new GPO, and then click **Edit**.
-
-5.  Within the selected GPO, navigate to Computer Configuration\\Preferences\\Windows Settings\\Files. Right-click **Files**, point to **New**, and then click **File**, as shown in Figure 14.
-
-    ![figure 14](images/dg-fig14-createnewfile.png)
-
-    Figure 14. Create a new file
-
-6.  Configure the catalog file share.
-
-    To use this setting to provide consistent deployment of LOBApp-Contoso.cat, the source file should be on a share that is accessible to the computer account of every deployed machine. This example uses a share on a Windows 10 client machine called \\\\Contoso-Win10\\Share. The catalog file being deployed is copied to this share.
-
-7.  To keep versions consistent, in the **New File Properties** dialog box (Figure 15), select **Replace** from the **Action** list so that the newest version is always used.
-
-    ![figure 15](images/dg-fig15-setnewfileprops.png)
-
-    Figure 15. Set the new file properties
-
-8.  In the **Source file(s)** box, type the name of your accessible share, with the catalog file name included (for example, \\\\Contoso-Win10\\share\\LOBApp-Contoso.cat).
-
-9.  In the **Destination File** box, type **C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\\LOBApp-Contoso.cat**.
-
-    >**Note:**  LOBApp-Contoso.cat is not a required catalog name: This name was used in the [Create catalog files](#create-catalog-files) section, and so it was used here, as well.
-     
-10. On the **Common** tab of the **New File Properties** dialog box, select the **Remove this item when it is no longer applied** option. Doing this ensures that the catalog file is removed from every system, in case you ever need to stop trusting this application.
-
-11. Click **OK** to complete file creation.
-
-12. Close the Group Policy Management Editor, and then update the policy on the test Windows 10 machine by running GPUpdate.exe. When the policy has been updated, verify that the catalog file exists in C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE} on the Windows 10 machine.
-
-### Deploy catalog files with System Center Configuration Manager
-
-As an alternative to Group Policy, you can use System Center Configuration Manager to deploy catalog files to the managed machines in your environment. This approach can simplify the deployment and management of multiple catalog files as well as provide reporting around which catalog each client or collection has deployed. In addition to the deployment of these files, System Center Configuration Manager can also be used to inventory the currently deployed catalog files for reporting and compliance purposes. Complete the following steps to create a new deployment package for catalog files:
-
->**Note:**  The following example uses a network share named \\\\Shares\\CatalogShare as a source for the catalog files. If you have collection specific catalog files, or prefer to deploy them individually, use whichever folder structure works best for your organization.
-
-1.  Open the Configuration Manager console, and select the Software Library workspace.
-2.  Navigate to Overview\\Application Management, right-click **Packages**, and then click **Create Package**.
-3.  Name the package, set your organization as the manufacturer, and select an appropriate version number (Figure 16).
-
-    ![figure 16](images/dg-fig16-specifyinfo.png)
-
-    Figure 16. Specify information about the new package
-
-4.  Click **Next**, and then select **Standard program** as the program type.
-5.  On the **Standard Program** page, select a name, and then set the **Command Line** property to **XCopy \\\\Shares\\CatalogShare C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE} /H /K /E /Y**.
-6.  On the **Standard Program** page, select the following options (Figure 17):
-
-    -   In **Name**, type **Contoso Catalog File Copy Program**.
-    -   In **Command line**, browse to the program location.
-    -   In **Startup folder**, type **C:\\Windows\\System32**.
-    -   From the **Run** list, select **Hidden**.
-    -   From the **Program can run** list, select **Whether or not a user is logged on**.
-    -   From the **Drive mode** list, select **Runs with UNC name**.
-
-    ![figure 17](images/dg-fig17-specifyinfo.png)
-
-    Figure 17. Specify information about the standard program
-
-7.  Accept the defaults for the rest of the wizard, and then close the wizard.
-After you create the deployment package, deploy it to a collection so that the clients will receive the catalog files. In this example, you deploy the package you just created to a test collection:
-
-1.  In the Software Library workspace, navigate to Overview\\Application Management\\Packages, right-click the catalog file package, and then click **Deploy**.
-2.  On the **General** page, select the test collection to which the catalog files will be deployed, and then click **Next**.
-3.  On the **Content** page, click **Add** to select the distribution point that will serve content to the selected collection, and then click **Next**.
-4.  On the **Deployment Settings** page, select **Required** in the **Purpose** box.
-5.  On the **Scheduling** page, click **New**.
-6.  In the **Assignment Schedule** dialog box, select **Assign immediately after this event**, set the value to **As soon as possible**, and then click **OK**.
-7.  On the **Scheduling** page, click **Next**.
-8.  On the **User Experience** page (Figure 18), set the following options, and then click **Next**:
-
-    -   Select the **Software installation** check box.
-    -   Select the **Commit changes at deadline or during a maintenance window (requires restarts)** check box.
-
-    ![figure 18](images/dg-fig18-specifyux.png)
-
-    Figure 18. Specify the user experience
-
-9.  On the **Distribution Points** page, in the **Deployment options** box, select **Run program from distribution point**, and then click **Next**.
-10. On the **Summary** page, review the selections, and then click **Next**.
-11. Close the wizard.
-
-### Inventory catalog files with System Center Configuration Manager
-
-When catalog files have been deployed to the machines within your environment, whether by using Group Policy or System Center Configuration Manager, you can inventory them with the software inventory feature of System Center Configuration Manager. The following process walks you through the enablement of software inventory to discover catalog files on your managed systems through the creation and deployment of a new client settings policy.
-
->**Note:**  A standard naming convention for your catalog files will significantly simplify the catalog file software inventory process. In this example, *-Contoso* has been added to all catalog file names.
-
-1.  Open the Configuration Manager console, and select the Administration workspace.
-2.  Navigate to **Overview\\Client Settings**, right-click **Client Settings**, and then click **Create Custom Client Device Settings**.
-3.  Name the new policy, and select the **Software Inventory** check box from the **Select and then configure the custom settings for client devices** list, as shown in Figure 19.
-
-    ![figure 19](images/dg-fig19-customsettings.png)
-
-    Figure 19. Select custom settings
-
-4.  In the navigation pane, click **Software Inventory**, and then click **Set Types**, as shown in Figure 20.
-
-    ![figure 20](images/dg-fig20-setsoftwareinv.png)
-
-    Figure 20. Set the software inventory
-
-5.  In the **Configure Client Setting** dialog box, click the **Start** button to open the **Inventories File Properties** dialog box.
-
-6.  In the **Name** box, type **\*Contoso.cat**, and then click **Set**.
-
-    >**Note:**  **\*Contoso.cat** is the naming convention used in this example. This should mimic the naming convention you use for your catalog files.
-     
-7.  In the **Path Properties** dialog box, select **Variable or path name**, and then type **C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}** in the box, as shown in Figure 21.
-    
-    ![figure 21](images/dg-fig21-pathproperties.png)
-    
-    Figure 21. Set the path properties
-
-8.  Click **OK**.
-
-9.  Now that you have created the client settings policy, right-click the new policy, click **Deploy**, and then choose the collection on which you would like to inventory the catalog files.
-At the time of the next software inventory cycle, when the targeted clients receive the new client settings policy, you will be able to view the inventoried files in the built-in System Center Configuration Manager reports or Resource Explorer. To view the inventoried files on a client within Resource Explorer, complete the following steps:
-
-1.  Open the Configuration Manager console, and select the Assets and Compliance workspace.
-2.  Navigate to Overview\\Devices, and search for the device on which you want to view the inventoried files.
-3.  Right-click the computer, point to **Start**, and then click **Resource Explorer**.
-4.  In Resource Explorer, navigate to Software\\File Details to view the inventoried catalog files.
-
->**Note:**  If nothing is displayed in this view, navigate to Software\\Last Software Scan in Resource Explorer to verify that the client has recently completed a software inventory scan.
- 
-## Code integrity policies
-
-Code integrity policies maintain the standards by which a computer running Windows 10 determines whether an application is trustworthy and can be run. For an overview of code integrity, see the [Configurable code integrity](#configurable-code-integrity) section.
-
-A common system imaging practice in today’s IT organization is to establish a “golden” image as a reference for what an ideal system should look like, and then use that image to clone additional company assets. Code integrity policies follow a similar methodology, that begins with the establishment of a golden PC. Like when imaging, you can have multiple golden PCs based on model, department, application set, and so on. Although the thought process around the creation of code integrity policies is similar to imaging, these policies should be maintained independently. Assess the necessity of additional code integrity policies based on what should be allowed to be installed and run and for whom.
-
->**Note:**  Each machine can have only **one** code integrity policy at a time. Whichever way you deploy this policy, it is renamed to SIPolicy.p7b and copied to C:\\Windows\\System32\\CodeIntegrity. Keep this in mind when you create your code integrity policies.
-
-Optionally, code integrity policies can align with your software catalog as well as any IT department–approved applications. One simple method to implement code integrity policies is to use existing images to create one master code integrity policy. You do so by creating a code integrity policy from each image, and then by merging the policies. This way, what is installed on all of those images will be allowed to run, should the applications be installed on a computer based on a different image. Alternatively, you may choose to create a base applications policy and add policies based on the computer’s role or department. Organizations have a choice of how their policies are created, merged or serviced, and managed.
-
->**Note:**  The following section assumes that you will deploy code integrity policies as part of your Device Guard deployment. Alternatively, configurable code integrity is available without the enablement of Device Guard.
-
-### Code integrity policy rules
-
-Code integrity policies consist of several components. The two major components, which are configurable, are called *policy rules* and *file rules*, respectively. Code integrity policy rules are options that the code integrity policy creator can specify on the policy. These options include the enablement of audit mode, UMCI, and so on. You can modify these options in a new or existing code integrity policy. File rules are the level to which the code integrity policy scan ties each binary trust. For example, the hash level is going to itemize each discovered hash on the system within the generated code integrity policy. This way, when a binary prepares to run, the code integrity service will validate its hash value against the trusted hashes found in the code integrity policy. Based on that result, the binary will or will not be allowed to run.
-
-To modify the policy rule options of an existing code integrity policy, use the **Set-RuleOption** Windows PowerShell cmdlet. Note the following examples of how to use this cmdlet to add and remove a rule option on an existing code integrity policy:
-
--   To enable UMCI, add rule option 0 to an existing policy by running the following command:
-
-    `Set-RuleOption -Option 0 -FilePath <Path to policy>`
-
--   To disable UMCI on an existing code integrity policy, remove rule option 0 by running the following command:
-
-    ` Set-RuleOption -Option 0 -FilePath <Path to policy> -Delete`
-
-You can set several rule options within a code integrity policy. Table 2 lists each rule and its high-level meaning.
-
-#### Table 2. Code integrity policy - policy rule options
-
-| Rule option | Description |
-|------------ | ----------- |
-| **0 Enabled:UMCI** | Code integrity policies restrict both kernel-mode and user-mode binaries. By default, only kernel-mode binaries are restricted. Enabling this rule option validates user mode executables and scripts. |
-| **1 Enabled:Boot Menu Protection** | This option is not currently supported. |
-| **2 Required:WHQL** | By default, legacy drivers that are not Windows Hardware Quality Labs (WHQL) signed are allowed to execute. Enabling this rule requires that every executed driver is WHQL signed and removes legacy driver support. Going forward, every new Windows 10–compatible driver must be WHQL certified. |
-| **3 Enabled:Audit Mode (Default)** | Enables the execution of binaries outside of the code integrity policy but logs each occurrence in the CodeIntegrity event log, which can be used to update the existing policy before enforcement. To enforce a code integrity policy, remove this option. |
-| **4 Disabled:Flight Signing** | If enabled, code integrity policies will not trust flightroot-signed binaries. This would be used in the scenario in which organizations only want to run released binaries, not flighted builds. |
-| **5 Enabled:Inherent Default Policy** | This option is not currently supported. |
-| **6 Enabled:Unsigned System Integrity Policy (Default)** | Allows the policy to remain unsigned. When this option is removed, the policy must be signed and have UpdatePolicySigners added to the policy to enable future policy modifications. |
-| **7 Allowed:Debug Policy Augmented** | This option is not currently supported. |
-| **8 Required:EV Signers** | In addition to being WHQL signed, this rule requires that drivers must have been submitted by a partner that has an Extended Verification (EV) certificate. All future Windows 10 and later drivers will meet this requirement. |
-| **9 Enabled:Advanced Boot Options Menu** | The F8 preboot menu is disabled by default for all code integrity policies. Setting this rule option allows the F8 menu to appear to physically present users. |
-| **10 Enabled:Boot Audit on Failure** | Used when the code integrity policy is in enforcement mode. When a driver fails during startup, the code integrity policy will be placed in audit mode so that Windows will load. Administrators can validate the reason for the failure in the CodeIntegrity event log. |
-File rule levels allow administrators to specify the level at which they want to trust their applications. This level of trust could be as low as the hash of each binary and as high as a PCA certificate. File rule levels are specified both when you create a new code integrity policy from a scan and when you create a policy from audit events. In addition, to combine rule levels found in multiple policies, you can merge the policies. When merged, code integrity policies combine their file rules. Each file rule level has its benefit and disadvantage. Use Table 3 to select the appropriate protection level for your available administrative resources and Device Guard deployment scenario.
-
-#### Table 3. Code integrity policy - file rule levels
-
-| Rule level | Description |
-|----------- | ----------- |
-| **Hash** | Specifies individual hash values for each discovered binary. Although this level is specific, it can cause additional administrative overhead to maintain the current product versions’ hash values. Each time a binary is updated, the hash value changes, therefore requiring a policy update. |
-| **FileName** | Specifies individual binary file names. Although the hash values for an application are modified when updated, the file names are typically not. This offers less specific security than the hash level but does not typically require a policy update when any binary is modified. |
-| **SignedVersion** | This combines the publisher rule with a version number. This option allows anything from the specified publisher, with a version at or above the specified version number, to run. |
-| **Publisher** | This is a combination of the PCA certificate and the common name (CN) on the leaf certificate. In the scenario that a PCA certificate is used to sign multiple companies’ applications (such as VeriSign), this rule level allows organizations to trust the PCA certificate but only for the company whose name is on the leaf certificate (for example, Intel for device drivers). This level trusts a certificate with a long validity period but only when combined with a trusted leaf certificate. |
-| **FilePublisher** | This is a combination of “FileName” plus “Publisher” (PCA certificate with CN of leaf) plus a minimum version number. This option trusts specific files from the specified publisher, with a version at or above the specified version number. |
-| **LeafCertificate** | Adds trusted signers at the individual signing certificate level. The benefit of using this level versus the individual hash level is that new versions of the product will have different hash values but typically the same signing certificate. Using this level, no policy update would be needed to run the new version of the application. However, leaf certificates have much shorter validity periods than PCA certificates, so additional administrative overhead is associated with updating the code integrity policy when these certificates expire. |
-| **PcaCertificate** | Adds the highest certificate in the provided certificate chain to signers. This is typically one certificate below the root certificate, because the scan does not validate anything above the presented signature by going online or checking local root stores. |
-| **RootCertificate** | Currently unsupported. |
-| **WHQL** | Trusts binaries if they have been validated and signed by WHQL. This is primarily for kernel binaries. |
-| **WHQLPublisher** | This is a combination of the WHQL and the CN on the leaf certificate and is primarily for kernel binaries. |
-| **WHQLFilePublisher** | Specifies that the binaries are validated and signed by WHQL, with a specific publisher (WHQLPublisher), and that the binary is the specified version or newer. This is primarily for kernel binaries. |
-
->**Note:**  When you create code integrity policies with the **New-CIPolicy** cmdlet, you can specify a primary file rule level by including the **–Level** parameter. For discovered binaries that cannot be trusted based on the primary file rule criteria, use the **–Fallback** parameter. For example, if the primary file rule level is PCACertificate but you would like to trust the unsigned applications as well, using the Hash rule level as a fallback adds the hash values of binaries that did not have a signing certificate.
-
-### Create code integrity policies from golden PCs
-
-The process to create a golden code integrity policy from a reference system is straightforward. This section outlines the process that is required to successfully create a code integrity policy with Windows PowerShell. First, for this example, you must initiate variables to be used during the creation process. Rather than using variables, you can simply use the full file paths in the command. Next, you create the code integrity policy by scanning the system for installed applications. When created, the policy file is converted to binary format so that Windows can consume its contents.
-
->**Note:**  Before you begin this procedure, ensure that the reference PC is clean of viruses or malware. Each piece of installed software should be validated as trustworthy before you create this policy. Also, be sure that any software that you would like to be scanned is installed on the system before you create the code integrity policy.
-
-To create a code integrity policy, copy each of the following commands into an elevated Windows PowerShell session, in order:
-
-1.  Initialize variables that you will use:
-
-    `$CIPolicyPath=$env:userprofile+"\Desktop\"`
-    `$InitialCIPolicy=$CIPolicyPath+"InitialScan.xml"`
-    `$CIPolicyBin=$CIPolicyPath+"DeviceGuardPolicy.bin"`
-
-2.  Create a new code integrity policy by scanning the system for installed applications:
-
-    `New-CIPolicy -Level PcaCertificate -FilePath $InitialCIPolicy –UserPEs 3> CIPolicyLog.txt `
-
-   >**Note:**  By specifying the *–UserPEs* parameter, rule option **0 Enabled:UMCI** is automatically added to the code integrity policy. If you do not specify this parameter, use the following command to enable UMCI:
-   
-    `Set-RuleOption -Option 0 -FilePath $InitialCIPolicy`
-   
-   >**Note:**  You can add the *–Fallback* parameter to catch any applications not discovered using the primary file rule level specified by the *–Level* parameter. For more information about file rule level options, see the [Code integrity policy rules](#code-integrity-policy-rules) section.
-   
-   >**Note:**  If you would like to specify the code integrity policy scan to look only at a specific drive, you can do so by using the *–ScanPath* parameter. Without this parameter, as shown in the example, the entire system is scanned.
-
-3.  Convert the code integrity policy to a binary format:
-
-    `ConvertFrom-CIPolicy $InitialCIPolicy $CIPolicyBin`
-
-After you complete these steps, the Device Guard binary file (DeviceGuardPolicy.bin) and original .xml file (IntialScan.xml) will be available on your desktop. You can use the binary version as a code integrity policy or sign it for additional security.
-
->**Note:**  Microsoft recommends that you keep the original .xml file of the policy for use when you need to merge the code integrity policy with another policy or update its rule options. Alternatively, you would have to create a new policy from a new scan for servicing. For more information about how to merge code integrity policies, see the [Merge code integrity policies](#merge-code-integrity-policies) section.
-
-Microsoft recommends that every code integrity policy be run in audit mode before being enforced. Doing so allows administrators to discover any issues with the policy without receiving error message dialog boxes. For information about how to audit a code integrity policy, see the [Audit code integrity policies](#audit-code-integrity-policies) section.
-
-### Audit code integrity policies
-
-When code integrity policies are run in audit mode, it allows administrators to discover any applications that were missed during an initial policy scan and to identify any new applications that have been installed and run since the original policy was created. While a code integrity policy is running in audit mode, any binary that runs and would have been denied had the policy been enforced is logged in the Applications and Services Logs\\Microsoft\\CodeIntegrity\\Operational event log. When these logged binaries have been validated, they can easily be added to a new code integrity policy. When the new exception policy is created, you can merge it with your existing code integrity policies.
-
->**Note:**  Before you begin this process, you need to create a code integrity policy binary file. If you have not already done so, see the [Create an audit code integrity policy](#create-an-audit-code-integrity-policy) section for a step-by-step walkthrough of the process to create a code integrity policy and convert it to binary format.
-
-To audit a code integrity policy with local policy:
-
-1.  Copy the DeviceGuardPolicy.bin file that you created in the [Create code integrity policies from golden PCs](#create-code-integrity-policies-from-golden-pcs) section to C:\\Windows\\System32\\CodeIntegrity.
-2.  On the system you want to run in audit mode, open the Local Group Policy Editor by running **GPEdit.msc**.
-3.  Navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard, and then select **Deploy Code Integrity Policy**. Enable this setting by using the file path C:\\Windows\\System32\\CodeIntegrity\\DeviceGuardPolicy.bin, as shown in Figure 22.
-
-   >**Note:**  *DeviceGuardPolicy.bin* is not a required policy name. This name was simply used in the [Create code integrity policies from golden PCs](#create-code-golden) section and so was used here. Also, this policy file does not need to be copied to every system. Alternatively, you can copy the code integrity policies to a file share to which all computer accounts have access.
-   
-   >**Note:**  Any policy you select here is converted to SIPolicy.p7b when it is deployed to the individual computers.
-   
-   ![figure 22](images/dg-fig22-deploycode.png)
-   
-   Figure 22. Deploy your code integrity policy
-   
-   >**Note:**     You may have noticed that the GPO setting references a .p7b file and this policy uses a .bin file. Regardless of the type of policy you deploy (.bin, .p7b, or .p7), they are all converted to SIPolicy.p7b when dropped on the Windows 10 computers. Microsoft recommends that you make your code integrity policies friendly and allow the system to convert the policy names for you. By doing this, it ensures that the policies are easily distinguishable when viewed in a share or any other central repository.
-
-4.  Restart reference system for the code integrity policy to take effect.
-5.  Monitor the CodeIntegrity event log. While in audit mode, any exception to the deployed code integrity policy will be logged in the Applications and Services Logs\\Microsoft\\CodeIntegrity\\Operational event log, as shown in 
-Figure 23.
-
-   ![figure 23](images/dg-fig23-exceptionstocode.png)
-
-   Figure 23. Exceptions to the deployed code integrity policy
-
-6.  Validate any code integrity policy exceptions.
-
-    After you run a code integrity policy in audit mode, Microsoft recommends that each logged exception be researched and validated. In addition to discovering which application is causing the exception and ensuring that it should be added to the code integrity policy, be sure to check which file level should be used to trust each application. Although the Hash file rule level will catch all of these exceptions, it may not be the best way to trust all of the exceptions. For information about file rule levels and their purpose, see the [Code integrity policy rules](#code-integrity-policy-rules) section.
-
-7.  Create code integrity policy from audit events.
-
-    For information about how to create code integrity policies from audit events, see the [Create code integrity policies from golden PCs](#create-code-golden) section.
-
->**Note:**  An alternative method to test a policy is to rename the test file to SIPolicy.p7b and drop it into C:\\Windows\\System32\\CodeIntegrity, rather than deploy it with the local machine policy.
-
-### Create an audit code integrity policy
-
-When you run code integrity policies in audit mode, validate any exceptions and determine whether you will need to add them to the code integrity policy you want to audit. Use the system as you normally would to ensure that any use exceptions are logged. When you are ready to create a code integrity policy from the auditing events, complete the following steps in an elevated Windows PowerShell session:
-
-1.  Initialize the variables that will be used:
-
-    `$CIPolicyPath=$env:userprofile+"\Desktop\"`
-    `$CIAuditPolicy=$CIPolicyPath+"DeviceGuardAuditPolicy.xml"`
-
-2.  Analyze audit results.
-
-    Before you create a code integrity policy from audit events, Microsoft recommends that each exception be analyzed, as discussed in steps 5 and 6 of the [Audit code integrity policies](#audit-code-integrity-policies) section.
-
-3.  Generate a new code integrity policy from logged audit events:
-
-    `New-CIPolicy -Audit -Level Hash -FilePath $CIAuditPolicy –UserPEs 3> CIPolicylog.txt`
-
->**Note:**  When you create policies from audit events, you should carefully consider the file rule level that you select to trust. In this example, you use the Hash rule level, which should be used as a last resort.
-After you complete these steps, the Device Guard audit policy .xml file (DeviceGuardAuditPolicy.xml) will be available on your desktop. You can now use this file to update the existing code integrity policy that you ran in audit mode by merging the two policies. For instructions on how to merge this audit policy with the existing code integrity policy, see the [Merge code integrity policies](#merge-code-integrity-policies) section.
-
->**Note:**  You may have noticed that you did not generate a binary version of this policy as you did in the [Create code integrity policies from golden PCs](#create-code-integrity-policies-from-golden-pcs) section. This is because code integrity policies created from an audit log are not intended to run as stand-alone policies but rather to update existing code integrity policies.
-
-### Merge code integrity policies
-
-When you develop code integrity policies, you will occasionally need to merge two policies. A common example is when a code integrity policy is initially created and audited. Another example is when you create a single master policy by using multiple code integrity policies previously created from golden PCs. Because each Windows 10 machine can have only one code integrity policy, it is important to properly maintain these policies. In this example, audit events have been saved into a secondary code integrity policy that you then merge with the initial code integrity policy.
-
->**Note:**  The following example uses the code integrity policy .xml files that you created in the [Create code integrity policies from golden PCs](#create-code-integrity-policies-from-golden-pcs) and [Audit code integrity policies](#audit-code-integrity-policies) sections. You can follow this process, however, with any two code integrity policies you would like to combine.
-
-To merge two code integrity policies, complete the following steps in an elevated Windows PowerShell session:
-
-1.  Initialize the variables that will be used:
-
-    ` $CIPolicyPath=$env:userprofile+"\Desktop\"`
-    `$InitialCIPolicy=$CIPolicyPath+"InitialScan.xml"`
-    `$AuditCIPolicy=$CIPolicyPath+"DeviceGuardAuditPolicy.xml"`
-    `$MergedCIPolicy=$CIPolicyPath+"MergedPolicy.xml"`
-    `    $CIPolicyBin=$CIPolicyPath+"NewDeviceGuardPolicy.bin"`
-    
-    >**Note:**  The variables in this section specifically expect to find an initial policy on your desktop called InitialScan.xml and an audit code integrity policy called DeviceGuardAuditPolicy.xml. If you want to merge other code integrity policies, update the variables accordingly.
-     
-2.  Merge two policies to create a new code integrity policy:
-    
-    `Merge-CIPolicy -PolicyPaths $InitialCIPolicy,$AuditCIPolicy -OutputFilePath $MergedCIPolicy`
-3.  
-Convert the merged code integrity policy to binary format:
-
-    ` ConvertFrom-CIPolicy $MergedCIPolicy $CIPolicyBin `
-
-Now that you have created a new code integrity policy called NewDeviceGuardPolicy.bin, you can deploy the policy to systems manually or by using Group Policy or Microsoft client management solutions. For information about how to deploy this new policy with Group Policy, see the [Deploy and manage code integrity policies with Group Policy](#deploy-manage-code-gp) section.
-
-**Enforce code integrity policies**
-
-Every code integrity policy is created with audit mode enabled. After you have successfully deployed and tested a code integrity policy in audit mode and are ready to test the policy in enforced mode, complete the following steps in an elevated Windows PowerShell session:
-
->**Note:**  Every code integrity policy should be tested in audit mode first. For information about how to audit code integrity policies, see the [Audit code integrity policies](#audit-code-integrity) section.
-
-1.  Initialize the variables that will be used:
-
-    `$CIPolicyPath=$env:userprofile+"\Desktop\"`
-    `$InitialCIPolicy=$CIPolicyPath+"InitialScan.xml" `
-    `$EnforcedCIPolicy=$CIPolicyPath+"EnforcedPolicy.xml"`
-    `$CIPolicyBin=$CIPolicyPath+"EnforcedDeviceGuardPolicy.bin"`
-
-    >**Note:**  The initial code integrity policy that this section referenced was created in the [Create code integrity polices from golden PCs](#create-code-golden) section. If you are using a different code integrity policy, update the **CIPolicyPath** and **InitialCIPolicy** variables.
-     
-2.  Copy the initial file to maintain an original copy:
-
-    `cp $InitialCIPolicy $EnforcedCIPolicy`
-
-3.  Remove the audit mode rule option:
-
-    `Set-RuleOption -Option 3 -FilePath $EnforcedCIPolicy -Delete`
-
-    >**Note:**  Rather than adding an **Enforced** option, code integrity policies are implicitly enforced if no **Audit Mode Enabled** option is present.
-     
-4.  Convert the new code integrity policy to binary format:
-    
-    `ConvertFrom-CIPolicy $EnforcedCIPolicy $CIPolicyBin`
-    >**Note:**  Microsoft strongly recommends that you enable rule options 9 and 10 before you run any enforced policy for the first time. If already present in the policy, do not remove it. Doing so allows Windows to start if the code integrity policy blocks a kernel-mode driver from running and provides administrators with a pre-boot command prompt. When ready for enterprise deployment, you can remove these options.
-     
-Now that this policy has been enforced, you can deploy it to your test machines. Rename the policy to SIPolicy.p7b and copy it to C:\\Windows\\System32\\CodeIntegrity for testing, or deploy the policy through Group Policy by following the instructions in the [Deploy and manage code integrity policies with Group Policy](#deploy-and-manage-code-integrity-policies-with-group-policy) section, or through client management software by following the instructions in the section “Deploying and managing code integrity policies by using Microsoft client management solutions.”
-
-**Signing code integrity policies with SignTool.exe**
-
-Signed code integrity policies give organizations the highest level of malware protection available in Windows 10. In addition to their enforced policy rules, signed policies cannot be modified or deleted by a user or administrator on the machine. These policies are designed to prevent administrative tampering and kernel mode exploit access. With this in mind, it is much more difficult to remove signed code integrity policies than unsigned ones. Before you sign and deploy a signed code integrity policy, Microsoft recommends that you audit the policy to discover any blocked applications that should be allowed to run. For more information about how to audit code integrity policies, see the [Audit code integrity policies](#audit-code-integrity-policies) section.
-
-Signing code integrity policies by using an on-premises CA-generated certificate or a purchased code signing certificate is straightforward. If you do not currently have a code signing certificate exported in .pfx format (containing private keys, extensions, and root certificates), see [Create a Device Guard code signing certificate](#create-a-device-guard-code-signing-certificate) to create one with your on-premises CA. Before signing code integrity policies for the first time, be sure to enable rule options 9 and 10 to leave troubleshooting options available to test administrators. When validated and ready for enterprise deployment, you can remove these options. For information about how to add rule options, see the [Code integrity policy rules](#code-integrity-policy-rules) section.
-
->**Note:**  Signing code integrity policies is the last step in a code integrity deployment. It is much more difficult to remove a signed code integrity policy than an unsigned one. Before you deploy a signed code integrity policy to deployed client computers, be sure to test its effect on a subset of machines.
-
-To sign a code integrity policy with SignTool.exe, you need the following components:
-
--   SignTool.exe, found in the Windows SDK (Windows 7 or later)
--   The binary format of the code integrity policy that you generated in the [Create code integrity policies from golden PCs](#create-code-golden) section or another code integrity policy that you have created
--   An internal CA code signing certificate or a purchased code signing certificate
-
-If you do not have a code signing certificate, see the [Create a Device Guard code signing certificate](#create-dg-code) section for instructions on how to create one. If you use an alternate certificate or code integrity policy, be sure to update the following steps with the appropriate variables and certificate so that the commands will function properly. To sign the existing code integrity policy, copy each of the following commands into an elevated 
-Windows PowerShell session:
-
-1.  Initialize the variables that will be used:
-
-    `$CIPolicyPath=$env:userprofile+"\Desktop\" $InitialCIPolicy=$CIPolicyPath+"InitialScan.xml" $CIPolicyBin=$CIPolicyPath+"DeviceGuardPolicy.bin"`
-
-    >**Note:**  This example uses the code integrity policy that you created in the [Create code integrity policies from golden PCs](#create-code-golden) section. If you are signing another policy, be sure to update the **$CIPolicyPath** and **$CIPolicyBin** variables with the correct information.
-
-2.  Import the .pfx code signing certificate. Import the code signing certificate that you will use to sign the code integrity policy into the signing user’s personal store on the machine that will be doing the signing. In this example, you use the certificate that was created in the [Create a Device Guard code signing certificate](#create-dg-code) section.
-
-3.  Export the .cer code signing certificate. After the code signing certificate has been imported, export the .cer version to your desktop. This version will be added to the policy so that it can be updated later.
-
-4.  Navigate to your desktop as the working directory:
-
-    `cd $env:USERPROFILE\Desktop `
-
-5.  Add an update signer certificate to the code integrity policy:
-
-    `Add-SignerRule -FilePath $InitialCIPolicy -CertificatePath <Path to exported .cer certificate> -Kernel -User –Update`
-
-   >**Note:**  *&lt;Path to exported .cer certificate&gt;* should be the full path to the certificate that you exported in step 3.
-   
-   >**Note:**  Adding update signers is crucial to being able to modify or disable this policy in the future. For more information about how to disable signed code integrity policies, see the [Disable signed code integrity policies within Windows](#disable-signed-code) section.
-
-6.  Remove the unsigned policy rule option:
-
-    `Set-RuleOption -Option 6 -FilePath $InitialCIPolicy -Delete`
-
-7.  Convert the policy to binary format:
-
-    `ConvertFrom-CIPolicy $InitialCIPolicy $CIPolicyBin`
-
-8.  Sign the code integrity policy by using SignTool.exe:
-
-    `<Path to signtool.exe> sign -v /n "ContosoDGSigningCert" -p7 . -p7co 1.3.6.1.4.1.311.79.1 -fd sha256 $CIPolicyBin`
-    >**Note:**  The *&lt;Path to signtool.exe&gt;* variable should be the full path to the SignTool.exe utility. **ContosoDGSigningCert** is the subject name of the certificate that will be used to sign the code integrity policy. You should import this certificate to your personal certificate store on the machine you use to sign the policy.
-
-9.  Validate the signed file. When complete, the commands should output a signed policy file called DeviceGuardPolicy.bin.p7 to your desktop. You can deploy this file the same way you deploy an enforced or non-enforced policy. For information about how to deploy code integrity policies, see the [Deploy and manage code integrity policies with Group Policy](#deploy-and-manage-code-integrity-policies-with-group-policy) section.
-
-### Disable unsigned code integrity policies
-
-There may come a time when an administrator wants to disable a code integrity policy. For unsigned code integrity policies, this process is simple. Depending on how the code integrity policy was deployed, unsigned policies can be disabled in one of two ways. If a code integrity policy was manually enabled and copied to the code integrity folder location, simply delete the file and restart the machine. The following locations can contain executing code integrity policies:
-
--   &lt;EFI System Partition&gt;\\Microsoft\\Boot\\
--   &lt;OS Volume&gt;\\Windows\\System32\\CodeIntegrity\\
-
-If the code integrity policy was deployed by using Group Policy, the GPO that is currently enabling and deploying the policy must be set to disabled. Then, the code integrity policy will be disabled on the next computer restart.
-
-### Disable signed code integrity policies within Windows
-
-Signed policies protect Windows from administrative manipulation as well as malware that has gained administrative-level access to the system. For this reason, signed code integrity policies are intentionally more difficult to remove than unsigned policies. They inherently protect themselves from modification or removal and therefore are difficult even for administrators to remove successfully. If the signed code integrity policy is manually enabled and copied to the CodeIntegrity folder, to remove the policy, you must complete the following steps:
-
->**Note:**  For reference, signed code integrity policies should be replaced and removed from the following locations:
-
--   &lt;EFI System Partition&gt;\\Microsoft\\Boot\\
--   &lt;OS Volume&gt;\\Windows\\System32\\CodeIntegrity\\
-
-1.  Replace the existing policy with another signed policy that has the **6 Enabled: Unsigned System Integrity Policy** rule option enabled.
-
-    >**Note:**  To take effect, this policy must be signed with a certificate previously added to the **UpdatePolicySigners** section of the original signed policy you want to replace.
-
-2.  Restart the client computer.
-
-3.  Verify that the new signed policy exists on the client.
-
-    >**Note:**  If the signed policy that contains rule option 6 has not been processed on the client, the addition of an unsigned policy may cause boot failures.
-
-4.  Delete the new policy.
-
-5.  Restart the client computer.
-
-If the signed code integrity policy has been deployed using by using Group Policy, you must complete the following steps:
-
-1.  Replace the existing policy in the GPO with another signed policy that has the **6 Enabled: Unsigned System Integrity Policy** rule option enabled.
-    >**Note:**  To take effect, this policy must be signed with a certificate previously added to the **UpdatePolicySigners** section of the original signed policy you want to replace.
-     
-2.  Restart the client computer.
-
-3.  Verify that the new signed policy exists on the client.
-
-    >**Note:**  If the signed policy that contains rule option 6 has not been processed on the client, the addition of an unsigned policy may cause boot failures.
-
-4.  Set the GPO to disabled.
-5.  Delete the new policy.
-6.  Restart the client computer.
-
-### Disable signed code integrity policies within the BIOS
-
-There may be a time when signed code integrity policies cause a boot failure. Because code integrity policies enforce kernel mode drivers, it is important that they be thoroughly tested on each software and hardware configuration before being enforced and signed. Signed code integrity policies are validated in the pre-boot sequence by using Secure Boot. When you disable the Secure Boot feature in the BIOS, and then delete the file from the following locations on the operating system disk, it allows the system to boot into Windows:
-
--   &lt;EFI System Partition&gt;\\Microsoft\\Boot\\
--   &lt;OS Volume&gt;\\Windows\\System32\\CodeIntegrity\\
-
-### <a href="" id="deploy-manage-code-gp"></a>
-
-**Deploy and manage code integrity policies with Group Policy**
-
-Code integrity policies can easily be deployed and managed with Group Policy. A Device Guard administrative template will be available in Windows Server 2016 that allows you to simplify deployment of Device Guard hardware-based security features and code integrity policies. The following procedure walks you through how to deploy a code integrity policy called **DeviceGuardPolicy.bin** to a test OU called *DG Enabled PCs* by using a GPO called **Contoso GPO Test**.
-
->**Note:**  This walkthrough requires that you have previously created a code integrity policy and have a Windows 10 client PC on which to test a Group Policy deployment. For more information about how to create a code integrity policy, see the [Create code integrity polices from golden PCs](#create-code-integrity-polices-from-golden-pcs) section.
-
->**Note:**  Signed code integrity policies can cause boot failures when deployed. Microsoft recommends that signed code integrity policies be thoroughly tested on each hardware platform before enterprise deployment.
-To deploy and manage a code integrity policy with Group Policy:
-
-1.  On a domain controller on a client computer on which RSAT is installed, open the GPMC by running **GPMC.MSC** or searching for “Group Policy Management” in Windows Search.
-
-2.  Create a new GPO: right-click the DG Enabled PCs OU, and then click **Create a GPO in this domain, and Link it here**, as shown in Figure 24.
-
-    >**Note:**  The DG Enabled PCs OU is just an example of where to link the test GPO created in this section. Any OU name can be used. Also, security group filtering is an option when considering policy partitioning options based on the strategy discussed in the [Approach enterprise code integrity deployment](#approach-enterprise) section.
-   
-   ![figure 24](images/dg-fig24-creategpo.png)
-   
-   Figure 24. Create a GPO
-
-3.  Name new GPO **Contoso GPO Test**. This example uses Contoso GPO Test as the name of the GPO. You can choose any name that you prefer for this example.
-
-4.  Open the Group Policy Management Editor: right-click the new GPO, and then click **Edit**.
-
-5.  In the selected GPO, navigate to Computer Configuration\\Administrative Templates\\System\\Device Guard. Then, right-click **Deploy Code Integrity Policy**, and then click **Edit**.
-
-    ![figure 25](images/dg-fig25-editcode.png)
-
-    Figure 25. Edit the code integration policy
-
-6.  In the **Display Code Integrity Policy** dialog box, select the **Enabled** option, and then specify the code integrity policy deployment path.
-   In this policy setting, you specify either the local path in which the policy will exist on the client computer or a Universal Naming Convention (UNC) path that the client computers will look to retrieve the latest version of the policy. This example copied the DeviceGuardPolicy.bin file onto the test machine and will enable this setting and use the file path C:\\Windows\\System32\\CodeIntegrity\\DeviceGuardPolicy.bin, as shown in Figure 26.
-
-   >**Note:**  *DeviceGuardPolicy.bin* is not a required policy name: It was simply used in the [Create code integrity policies from golden PCs](#create-code-golden) section and so is used here, as well. Also, this policy file does not need to be copied to every computer. Alternatively, you can copy the code integrity policies to a file share to which the computer accounts have access. Any policy selected here is converted to SIPolicy.p7b when it is deployed to the individual client computers.
-   
-   ![figure 26](images/dg-fig26-enablecode.png)
-   
-   Figure 26. Enable the code integrity policy
-   
-   >**Note:**  You may have noticed that the GPO setting references a .p7b file and this example uses a .bin file for the policy. Regardless of the type of policy you deploy (.bin, .p7b, or .p7), they are all converted to SIPolicy.p7b when dropped on the Windows 10 client computers. Make your code integrity policies friendly and allow the system to convert the policy names for you to ensure that the policies are easily distinguishable when viewed in a share or any other central repository.
-
-7.  Close the Group Policy Management Editor, and then restart the Windows 10 test machine. Restarting the client computer updates the code integrity policy. For information about how to audit code integrity policies, see the [Audit code integrity policies](#audit-code-integrity-policies)section.
-
-## Create a Device Guard code signing certificate
-
-To sign catalog files or code integrity policies internally, you will either need a publicly issued code signing certificate or an internal CA. If you have purchased a code signing certificate, you can skip these steps and proceed to the sections that outline the steps to sign catalog files and code integrity policies. If you have not purchased a certificate but have an internal CA, complete these steps to create a code signing certificate:
-
-1.  Open the Certification Authority Microsoft Management Console (MMC) snap-in, and then select your issuing CA.
-2.  When connected, right-click **Certificate Templates**, and then click **Manage** to open the Certification Templates Console.
-
-    ![figure 27](images/dg-fig27-managecerttemp.png)
-
-    Figure 27. Manage the certificate templates
-
-3.  In the navigation pane, right-click the Code Signing certificate, and then click **Duplicate Template**.
-
-4.  On the **Compatibility** tab, clear the **Show resulting changes** check box. Select **Windows Server 2012** from the **Certification Authority** list, and then select **Windows 8 / Windows Server 2012** from the **Certificate recipient** list.
-5.  On the **General** tab, specify the **Template display name** and **Template name**. This example uses **DG Catalog Signing Certificate**.
-6.  On the **Request Handling** tab, select the **Allow private key to be exported** check box.
-7.  On the **Extensions** tab, select the **Basic Constraints** check box, and then click **Edit**.
-8.  In the **Edit Basic Constraints Extension** dialog box, select the **Enable the extension** check box, as shown in Figure 28.
-    
-    ![figure 28](images/dg-fig29-enableconstraints.png)
-    
-    Figure 28. Enable constraints on the new template
-9.  
-If a certificate manager is required to approve any issued certificates, on the **Issuance Requirements** tab, select **CA certificate manager approval**.
-10. On the **Subject Name** tab, select **Supply in the request**.
-11. On the **Security** tab, verify that whatever account will be used to request the certificate has the right to enroll the certificate.
-12. Click **OK** to create the template, and then close the Certificate Template Console.
-When this certificate template has been created, you must publish it to the CA published template store. To do so, complete the following steps:
-1.  In the Certification Authority MMC snap-in, right-click **Certification Templates**, point to **New**, and then click **Certificate Template to Issue**, as shown in Figure 29.
-
-    A list of available templates to issue appears, including the template you just created.
-    
-    ![figure 29](images/dg-fig30-selectnewcert.png)
-    
-    Figure 29. Select the new certificate template to issue
-    
-2.  Select the DG Catalog signing certificate, and then click **OK**.
-Now that the template is available to be issued, you must request one from the Windows 10 computer that you use to create and sign catalog files. To begin, open the MMC, and then complete the following steps:
-1.  In MMC, from the **File** menu, click **Add/Remove Snap-in**. Double-click **Certificates**, and then select **My user account**.
-2.  In the Certificates snap-in, right-click the Personal store folder, point to **All Tasks**, and then click **Request New Certificate**.
-3.  Click **Next** twice to get to the certificate selection list.
-4.  In the **Request Certificate** list, select your newly created code signing certificate, and then select the blue text that requests additional information, as shown in Figure 30.
-    
-    ![figure 30](images/dg-fig31-getmoreinfo.png)
-    
-    Figure 30. Get more information for your code signing certificate
-5.  
-In the **Certificate Properties** dialog box, for **Type**, select **Common name**. For **Value**, select **ContosoDGSigningCert**, and then click **Add**. When added, click **OK.**
-6.  Enroll and finish.
-
->**Note:**  If a certificate manager is required to approve any issued certificates and you selected to require management approval on the template, the request will need to be approved in the CA before it will be issued to the client.
-
-This certificate must be installed in the user’s personal store on the computer that will be signing the catalog files and code integrity policies. If the signing is going to be taking place on the machine on which you just requested the certificate, exporting the certificate to a .pfx file will not be required because it already exists in your personal store. If you are signing on another computer, you will need to export the .pfx certificate with the necessary keys and properties. To do so, complete the following steps:
-
-1.  Right-click the certificate, point to **All Tasks**, and then click **Export**.
-2.  Click **Next**, and then select **Yes, export the private key**.
-3.  Choose the default settings, and then select **Export all extended properties**.
-4.  Set a password, select an export path, and then select **DGCatSigningCert.pfx** as the file name.
-When the certificate has been exported, import it into the personal store for the user who will be signing the catalog files or code integrity policies on the specific computer that will be signing them.
+- [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md)
 
 ## Related topics
 
-- [AppLocker overview](applocker-overview.md)
-- [Code integrity](http://go.microsoft.com/fwlink/p/?LinkId=624173)
-- [Credential guard](credential-guard.md)
-- [Driver compatibility with Device Guard in Windows 10](http://go.microsoft.com/fwlink/p/?LinkId=624843)
-- [Dropping the Hammer Down on Malware Threats with Windows 10’s Device Guard](http://go.microsoft.com/fwlink/p/?LinkId=624844)
+[AppLocker overview](applocker-overview.md)
+
+<!-- The following topic is EIGHT YEARS OLD, but I don't really see anything better out there on Code Integrity that existed before Windows 10. -->
+
+[Code integrity](https://technet.microsoft.com/library/dd348642.aspx)
+
+[Protect derived domain credentials with Credential Guard](credential-guard.md)
+
+[Driver compatibility with Device Guard in Windows 10](https://blogs.msdn.microsoft.com/windows_hardware_certification/2015/05/22/driver-compatibility-with-device-guard-in-windows-10)
+
+[Dropping the Hammer Down on Malware Threats with Windows 10’s Device Guard](https://channel9.msdn.com/Events/Ignite/2015/BRK2336)
+
+
diff --git a/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md b/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md
new file mode 100644
index 0000000000..07a789467a
--- /dev/null
+++ b/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md
@@ -0,0 +1,78 @@
+---
+title: Introduction to Device Guard - virtualization-based security and code integrity policies (Windows 10)
+description: Microsoft Device Guard is a feature set that consists of both hardware and software system integrity hardening features that revolutionize the Windows operating system’s security.
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Introduction to Device Guard: virtualization-based security and code integrity policies
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+With thousands of new malicious files created every day, using traditional methods like antivirus solutions—signature-based detection to fight against malware—provides an inadequate defense against new attacks. Device Guard on Windows 10 Enterprise changes from a mode where apps are trusted unless blocked by an antivirus or other security solution, to a mode where the operating system trusts only apps authorized by your enterprise. You designate these trusted apps by creating *code integrity policies*.
+
+Like the operating system, code integrity contains two primary components: kernel mode code integrity (KMCI) and user mode code integrity (UMCI). KMCI has been available in previous versions of the Windows operating system, and protects the kernel mode from running unsigned drivers. In Windows 10 and Windows Server 2016, UMCI is also available, to help protect against viruses and malware.
+
+To increase the security level offered by code integrity policies, Device Guard can leverage advanced hardware features on hardware that supports them. These features include CPU virtualization extensions (called "Intel VT-x" or "AMD-V") and second-level address translation (SLAT). In addition, hardware that includes input/output memory management units (IOMMUs) provides even stronger protections. When you enable the features associated with CPU virtualization extensions and SLAT, the Code Integrity service can run alongside the kernel in a Windows hypervisor-protected container. The following table provides more information about how Device Guard and these hardware features can help protect against various threats.
+
+For an overview of the process of deploying Device Guard features, see [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+## How Device Guard features help protect against threats
+
+The following table lists security threats and describes the corresponding Device Guard features:
+
+| Security threat in the enterprise | How a Device Guard feature helps protect against the threat |
+| --------------------------------- | ----------------------------------------------------------- |
+| **Exposure to new malware**, for which the "signature" is not yet known | **Code integrity policies**:&nbsp;&nbsp;You can maintain a whitelist of software that is allowed to run (a configurable code integrity policy), rather than trying to stay ahead of attackers by maintaining a constantly-updated list of "signatures" of software that should be blocked. This approach uses the trust-nothing model well known in mobile device operating systems.<br><br>**Specialized hardware required?** No security-related hardware features are required, although code integrity policies are strengthened by such features, as described in the last three rows of this table. |
+| **Exposure to unsigned code** (most malware is unsigned) | **Code integrity policies, plus catalog files as needed**:&nbsp;&nbsp;Because most malware is unsigned, using a code integrity policy (which in most cases requires signed code) can immediately help protect against a large number of threats. However, many organizations use unsigned line-of-business (LOB) applications, for which the process of signing might be difficult. This has changed in Windows 10, because you can use a tool called Package Inspector to create a *catalog* of all deployed and executed binary files for your trusted applications. After you sign and distribute the catalog, your trusted applications can be handled by code integrity policies in the same way as any other signed application. With this foundation, you can more easily block all unsigned applications, allowing only signed applications to run.<br><br>**Specialized hardware required?** No security-related hardware features are required for creating and using code integrity policies and catalogs. However, code integrity policies and catalogs are strengthened by the hardware features, as described in later rows of this table. |
+| **Malware that gains access to the kernel** and then, from within the kernel, captures sensitive information or damages the system | **Virtualization-based security (VBS)**:&nbsp;&nbsp;This is protection that uses the hypervisor to help protect the kernel and other parts of the operating system. When VBS is enabled, it strengthens either the default kernel-mode code integrity policy (which protects against bad drivers or system files), or the configurable code integrity policy that you deploy. With VBS, even if malware gains access to the kernel, the effects can be severely limited, because the hypervisor can prevent the malware from executing code.<br><br>**Specialized hardware required?** Yes, VBS requires at least CPU virtualization extensions and SLAT, as described in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard). |
+| **DMA-based attacks**, for example, attacks launched from a malicious device that reads secrets from memory, making the enterprise more vulnerable to attack | **Virtualization-based security (VBS) using IOMMUs**:&nbsp;&nbsp;With this type of VBS protection, when the DMA-based attack makes a memory request, input/output memory management units (IOMMUs) will evaluate the request and deny access.<br><br>**Specialized hardware required?** Yes, IOMMUs are a hardware feature that supports the hypervisor, and if you choose hardware that includes them, they can help protect against malicious attempts to access memory. |
+| **Exposure to boot kits** or to other forms of malware that runs early in the boot process, or in kernel after startup | **Universal Extensible Firmware Interface (UEFI) Secure Boot**:&nbsp;&nbsp; Secure Boot and related methods protect the boot process and firmware from tampering.<br><br>**Specialized hardware required?** With UEFI Secure Boot, the requirements are firmware requirements. For more information, see [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard).  | 
+
+In this guide, you learn about the individual features found within Device Guard as well as how to plan for, configure, and deploy them. Device Guard with configurable code integrity is intended for deployment alongside additional threat-mitigating Windows features such as [Credential Guard](credential-guard.md) and [AppLocker](applocker-overview.md).
+
+## Tools for managing Device Guard features
+
+You can easily manage Device Guard features by using familiar enterprise and client-management tools that IT pros use every day:
+
+<!-- The item about "Intune" below could be updated at some point, when more information and a link are available. -->
+
+-   **Group Policy**. Windows 10 provides an administrative template to configure and deploy the configurable code integrity policies for your organization. This template also allows you to specify which hardware-based security features you would like to enable and deploy. You can manage these settings along with your existing Group Policy Objects (GPOs), which makes it simpler to implement Device Guard features. In addition to these code integrity and hardware-based security features, you can use Group Policy to help you manage your catalog files.
+
+    - For a description of catalog files, see the table row describing **Exposure to unsigned code** in [How Device Guard features help protect against threats](#how-device-guard-features-help-protect-against-threats), earlier in this topic.
+    - For information about using Group Policy as a deployment tool, see:<br>[Deploy catalog files with Group Policy](deploy-catalog-files-to-support-code-integrity-policies.md#deploy-catalog-files-with-group-policy)<br>[Deploy and manage code integrity policies with Group Policy](deploy-code-integrity-policies-steps.md#deploy-and-manage-code-integrity-policies-with-group-policy)
+
+-   **Microsoft System Center Configuration Manager**. You can use System Center Configuration Manager to simplify deployment and management of catalog files, code integrity policies, and hardware-based security features, as well as provide version control. For more information, see [Deploy catalog files with System Center Configuration Manager](deploy-catalog-files-to-support-code-integrity-policies.md#deploy-catalog-files-with-system-center-configuration-manager).
+
+- **Microsoft Intune**. In a future release of Microsoft Intune, Microsoft is considering including features that will support the deployment and management of code integrity policies and catalog files.
+
+-   **Windows PowerShell**. You can use Windows PowerShell to create and service code integrity policies. For more information, see [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md) and [Configurable Code Integrity Policy for Windows PowerShell](https://technet.microsoft.com/library/mt634481.aspx).
+
+These options provide the same experience you're used to in order to manage your existing enterprise management solutions. 
+
+For more information about the deployment of Device Guard features, see:
+- [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
+- [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md)
+
+## Other features that relate to Device Guard
+
+### Device Guard with AppLocker
+
+Although [AppLocker](applocker-overview.md) is not considered a new Device Guard feature, it complements Device Guard functionality when enforced code integrity cannot be fully implemented or its functionality does not cover every desired scenario. There are many scenarios in which code integrity policies would be used alongside AppLocker rules. As a best practice, you should enforce code integrity policies at the most restrictive level possible for your organization, and then you can use AppLocker to fine-tune the restrictions to an even lower level.
+
+> **Note**&nbsp;&nbsp;One example of how Device Guard functionality can be enhanced by AppLocker is when you want to limit universal applications. Universal applications have already been validated by Microsoft to be trustworthy to run, but an organization may not want to allow specific universal applications to run in their environment. You can accomplish this enforcement by using an AppLocker rule.
+
+AppLocker and Device Guard should run side-by-side in your organization, which offers the best of both security features at the same time and provides the most comprehensive security to as many devices as possible. In addition to these features, we recommend that you continue to maintain an enterprise antivirus solution for a well-rounded enterprise security portfolio.
+
+### Device Guard with Credential Guard
+
+Another Windows 10 feature that employs VBS is [Credential Guard](credential-guard.md). Credential Guard provides additional protection to Active Directory domain users by storing domain credentials within the same type of VBS virtualization container that hosts code integrity. By isolating these domain credentials from the active user mode and kernel mode, they have a much lower risk of being stolen. For more information about Credential Guard (which is not a feature within Device Guard), see [Protect derived domain credentials with Credential Guard](credential-guard.md).
+
+Credential Guard is targeted at resisting pass-the-hash and pass-the-ticket techniques. By employing multifactor authentication with Credential Guard, organizations can gain additional protection against such threats. 
+
+In addition to the client-side enabling of Credential Guard, organizations can deploy mitigations at both the CA and domain controller level to help prevent credential theft. For more information, see the [Additional mitigations](https://technet.microsoft.com/en-us/itpro/windows/keep-secure/credential-guard#additional-mitigations) section in “Protect derived domain credentials with Credential Guard.”
+
diff --git a/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md b/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md
new file mode 100644
index 0000000000..55f3a36e0e
--- /dev/null
+++ b/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md
@@ -0,0 +1,101 @@
+---
+title: Optional - Create a code signing certificate for code integrity policies (Windows 10)
+description: This article describes how to create a code signing certificate for code integrity policies, one of the main features that are part of Device Guard in Windows 10. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Optional: Create a code signing certificate for code integrity policies (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+As you deploy code integrity policies (part of Device Guard), you might need to sign catalog files or code integrity policies internally. To do this, you will either need a publicly issued code signing certificate or an internal CA. If you have purchased a code signing certificate, you can skip this topic and instead follow other topics listed in [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md). 
+
+If you have not purchased a certificate but have an internal CA, complete these steps to create a code signing certificate:
+
+1.  Open the Certification Authority Microsoft Management Console (MMC) snap-in, and then select your issuing CA.
+
+2.  When connected, right-click **Certificate Templates**, and then click **Manage** to open the Certification Templates Console.
+
+    ![CA snap-in showing Certificate Templates](images/dg-fig27-managecerttemp.png)
+
+    Figure 1. Manage the certificate templates
+
+3.  In the navigation pane, right-click the Code Signing certificate, and then click **Duplicate Template**.
+
+4.  On the **Compatibility** tab, clear the **Show resulting changes** check box. Select **Windows Server 2012** from the **Certification Authority** list, and then select **Windows 8 / Windows Server 2012** from the **Certificate recipient** list.
+
+5.  On the **General** tab, specify the **Template display name** and **Template name**. This example uses the name **DG Catalog Signing Certificate**.
+
+6.  On the **Request Handling** tab, select the **Allow private key to be exported** check box.
+
+7.  On the **Extensions** tab, select the **Basic Constraints** check box, and then click **Edit**.
+
+8.  In the **Edit Basic Constraints Extension** dialog box, select **Enable this extension**, as shown in Figure 2.
+
+    ![Edit Basic Constraints Extension](images/dg-fig29-enableconstraints.png)
+
+    Figure 2. Select constraints on the new template
+
+9.  If a certificate manager is required to approve any issued certificates, on the **Issuance Requirements** tab, select **CA certificate manager approval**.
+
+10. On the **Subject Name** tab, select **Supply in the request**.
+
+11. On the **Security** tab, verify that whatever account will be used to request the certificate has the right to enroll the certificate.
+
+12. Click **OK** to create the template, and then close the Certificate Template Console.
+
+When this certificate template has been created, you must publish it to the CA published template store. To do so, complete the following steps:
+
+1.  In the Certification Authority MMC snap-in, right-click **Certification Templates**, point to **New**, and then click **Certificate Template to Issue**, as shown in Figure 3.
+
+    ![Select Certificate Template to Issue](images/dg-fig30-selectnewcert.png)
+
+    Figure 3. Select the new certificate template to issue
+
+    A list of available templates to issue appears, including the template you just created.
+
+2.  Select the DG Catalog signing certificate, and then click **OK**.
+
+Now that the template is available to be issued, you must request one from the computer running Windows 10 on which you create and sign catalog files. To begin, open the MMC, and then complete the following steps:
+
+1.  In MMC, from the **File** menu, click **Add/Remove Snap-in**. Double-click **Certificates**, and then select **My user account**.
+
+2.  In the Certificates snap-in, right-click the Personal store folder, point to **All Tasks**, and then click **Request New Certificate**.
+
+3.  Click **Next** twice to get to the certificate selection list.
+
+4.  In the **Request Certificate** list, select your newly created code signing certificate, and then select the blue text that requests additional information, as shown in Figure 4.
+
+    ![Request Certificates: more information required](images/dg-fig31-getmoreinfo.png)
+
+    Figure 4. Get more information for your code signing certificate
+
+5.  In the **Certificate Properties** dialog box, for **Type**, select **Common name**. For **Value**, select **ContosoDGSigningCert**, and then click **Add**. When added, click **OK.**
+
+6.  Enroll and finish.
+
+> **Note**&nbsp;&nbsp;If a certificate manager is required to approve any issued certificates and you selected to require management approval on the template, the request will need to be approved in the CA before it will be issued to the client.
+
+This certificate must be installed in the user’s personal store on the computer that will be signing the catalog files and code integrity policies. If the signing is going to be taking place on the computer on which you just requested the certificate, exporting the certificate to a .pfx file will not be required because it already exists in your personal store. If you are signing on another computer, you will need to export the .pfx certificate with the necessary keys and properties. To do so, complete the following steps:
+
+1.  Right-click the certificate, point to **All Tasks**, and then click **Export**.
+
+2.  Click **Next**, and then select **Yes, export the private key**.
+
+3.  Choose the default settings, and then select **Export all extended properties**.
+
+4.  Set a password, select an export path, and then select **DGCatSigningCert.pfx** as the file name.
+
+When the certificate has been exported, import it into the personal store for the user who will be signing the catalog files or code integrity policies on the specific computer that will be signing them.
+
+## Related topics
+
+- [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+
+- [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
+
diff --git a/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md b/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md
new file mode 100644
index 0000000000..9b96e7267b
--- /dev/null
+++ b/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md
@@ -0,0 +1,56 @@
+---
+title: Planning and getting started on the Device Guard deployment process (Windows 10)
+description: To help you plan and begin the initial test stages of a deployment of Microsoft Device Guard, this article outlines how to gather information, create a plan, and begin to create and test initial code integrity policies. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Planning and getting started on the Device Guard deployment process (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+This topic provides a roadmap for planning and getting started on the Device Guard deployment process, with links to topics that provide additional detail. Planning for Device Guard deployment involves looking at both the end-user and the IT pro impact of your choices. Use the following steps to guide you.
+
+**Planning**
+
+1. **Review requirements, especially hardware requirements for VBS**. Review the virtualization-based security (VBS) features described in [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md#how-device-guard-features-help-protect-against-threats). Then you can assess your end-user systems to see how many support the VBS features you are interested in, as described in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard). 
+
+2. **Group devices by degree of control needed**. Group devices according to the table in [Device Guard deployment in different scenarios: types of devices](requirements-and-deployment-planning-guidelines-for-device-guard.md#device-guard-deployment-in-different-scenarios-types-of-devices). Do most devices fit neatly into a few categories, or are they scattered across all categories? Are users allowed to install any application or must they choose from a list? Are users allowed to use their own peripheral devices?<br>Deployment is simpler if everything is locked down in the same way, but meeting individual departments’ needs, and working with a wide variety of devices, may require a more complicated and flexible deployment.
+
+3. **Review how much variety in software and hardware is needed by roles or departments**. When several departments all use the same hardware and software, you might need to deploy only one code integrity policy for them. More variety across departments might mean you need to create and manage more code integrity policies. The following questions can help you clarify how many code integrity policies to create:
+    - How standardized is the hardware?<br>This can be relevant because of drivers. You could create a code integrity policy on hardware that uses a particular set of drivers, and if other drivers in your environment use the same signature, they would also be allowed to run. However, you might need to create several code integrity policies on different "reference" hardware, then merge the policies together, to ensure that the resulting policy recognizes all the drivers in your environment.
+
+    - Is there already a list of accepted applications?<br>A list of accepted applications can be used to help create a baseline code integrity policy.
+        
+    - What software does each department or role need? Should they be able to install and run other departments’ software?<br>If multiple departments are allowed to run the same list of software, you might be able to merge several code integrity policies to simplify management.
+         
+    - Are there departments or roles where unique, restricted software is used?<br>If one department needs to run an application that no other department is allowed, it might require a separate code integrity policy. Similarly, if only one department must run an old version of an application (while other departments allow only the newer version), it might require a separate code integrity policy.
+
+4.  **Identify LOB applications that are currently unsigned**. Although requiring signed code (through code integrity policies) protects against many threats, your organization might use unsigned LOB applications, for which the process of signing might be difficult. You might also have applications that are signed, but you want to add a secondary signature to them. If so, identify these applications, because you will need to create a catalog file for them. For a basic description of catalog files, see the table in [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md). For more background information about catalog files, see [Reviewing your applications: application signing and catalog files](requirements-and-deployment-planning-guidelines-for-device-guard.md#reviewing-your-applications-application-signing-and-catalog-files).
+
+**Getting started on the deployment process**
+
+1.  **Optionally, create a signing certificate for code integrity policies**. As you deploy code integrity policies, you might need to sign catalog files or code integrity policies internally. To do this, you will either need a publicly issued code signing certificate (that you purchase) or an internal CA. If you choose to use an internal CA, you will need to create a code signing certificate. For more information, see [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md).
+
+2.  **Create code integrity policies from “golden” computers**. When you have identified departments or roles that use distinctive or partly-distinctive sets of hardware and software, you can set up “golden” computers containing that software and hardware. In this respect, creating and managing code integrity policies to align with the needs of roles or departments can be similar to managing corporate images. From each “golden” computer, you can create a code integrity policy, and decide how to manage that policy. You can merge code integrity policies to create a broader policy or a master policy, or you can manage and deploy each policy individually. For more information, see:
+    - [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md)
+    - [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)<br>
+
+3.  **Audit the code integrity policy and capture information about applications that are outside the policy**. We recommend that you use “audit mode” to carefully test each code integrity policy before you enforce it. With audit mode, no application is blocked—the policy just logs an event whenever an application outside the policy is started. Later, you can expand the policy to allow these applications, as needed. For more information, see [Audit code integrity policies](deploy-code-integrity-policies-steps.md#audit-code-integrity-policies).
+
+4.  **Create a “catalog file” for unsigned LOB applications**. Use the Package Inspector tool to create and sign a catalog file for your unsigned LOB applications. For more information, review step 4 **Identify LOB applications that are currently unsigned**, earlier in this list, and see [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md). In later steps, you can merge the catalog file's signature into your code integrity policy, so that applications in the catalog will be allowed by the policy. 
+
+6.  **Capture needed policy information from the event log, and merge information into the existing policy as needed**. After a code integrity policy has been running for a time in audit mode, the event log will contain information about applications that are outside the policy. To expand the policy so that it allows for these applications, use Windows PowerShell commands to capture the needed policy information from the event log, and then merge that information into the existing policy. You can merge code integrity policies from other sources also, for flexibility in how you create your final code integrity policies. For more information, see:
+    - [Create a code integrity policy that captures audit information from the event log](deploy-code-integrity-policies-steps.md#create-a-code-integrity-policy-that-captures-audit-information-from-the-event-log)
+    - [Merge code integrity policies](deploy-code-integrity-policies-steps.md#merge-code-integrity-policies)<br>
+
+7.  **Deploy code integrity policies and catalog files**. After you confirm that you have completed all the preceding steps, you can begin deploying catalog files and taking code integrity policies out of auditing mode. We strongly recommend that you begin this process with a test group of users. This provides a final quality-control validation before you deploy the catalog files and code integrity policies more broadly. For more information, see:
+    - [Enforce code integrity policies](deploy-code-integrity-policies-steps.md#enforce-code-integrity-policies)
+    - [Deploy and manage code integrity policies with Group Policy](deploy-code-integrity-policies-steps.md#deploy-and-manage-code-integrity-policies-with-group-policy)<br>
+
+8.  **Enable desired hardware (VBS) security features**. Hardware-based security features—also called virtualization-based security (VBS) features—strengthen the protections offered by code integrity policies, as described in [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md#how-device-guard-features-help-protect-against-threats). For information about enabling VBS features, see [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md).
+
diff --git a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
new file mode 100644
index 0000000000..0cfc7f0b0e
--- /dev/null
+++ b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
@@ -0,0 +1,124 @@
+---
+title: Requirements and deployment planning guidelines for Device Guard (Windows 10)
+description: To help you plan a deployment of Microsoft Device Guard, this article describes hardware requirements for Device Guard, outlines deployment approaches, and describes methods for code signing and the deployment of code integrity policies. 
+keywords: virtualization, security, malware
+ms.prod: w10
+ms.mktglfcycl: deploy
+author: brianlic-msft
+---
+
+# Requirements and deployment planning guidelines for Device Guard (Windows 10)
+
+**Applies to**
+-   Windows 10
+-   Windows Server 2016
+
+This article describes the following:
+
+- [Hardware, firmware, and software requirements for Device Guard](#hardware-firmware-and-software-requirements-for-device-guard)
+    - [Device Guard requirements for baseline protections](#device-guard-requirements-for-baseline-protections)
+    - [Device Guard requirements for additional protections](#device-guard-requirements-for-additional-protections)
+- [Device Guard deployment in different scenarios: types of devices](#device-guard-deployment-in-different-scenarios-types-of-devices)	
+- [Reviewing your applications: application signing and catalog files](#reviewing-your-applications-application-signing-and-catalog-files)
+- [Code integrity policy formats and signing](#code-integrity-policy-formats-and-signing)
+
+The information in this article provides a foundation for [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+## Hardware, firmware, and software requirements for Device Guard
+
+To deploy Device Guard in a way that uses all of its virtualization-based security (VBS) features, the computers you are protecting must meet certain hardware, firmware, and software requirements. However, computers lacking some of the hardware and firmware requirements will still receive some protection when you deploy code integrity policies—the difference is that those computers will not be as hardened against certain threats. 
+
+For example, hardware that includes CPU virtualization extensions and SLAT will be hardened against malware that attempts to gain access to the kernel, but without protected BIOS options such as “Boot only from internal hard drive,” the computer could be booted (by a malicious person who has physical access) into an operating system on bootable media. For an outline of how VBS-related hardware strengthens the hardening offered by Device Guard, see [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md).
+
+You can deploy Device Guard in phases, and plan these phases in relation to the computer purchases you plan for your next hardware refresh.
+
+The following tables provide more information about the hardware, firmware, and software required for deployment of various Device Guard features. 
+
+<!-- POTENTIAL FUTURE ADDITION--PUT RIGHT AFTER PREVIOUS SENTENCE: The tables describe baseline protections, plus additional protections associated with hardware and firmware options available in 2015, available in 2016, and announced as options for 2017. -->
+
+> **Note**&nbsp;&nbsp;For new computers running Windows 10, Trusted Platform Module (TPM 2.0) must be enabled by default. This requirement is not restated in the tables that follow.
+
+## Device Guard requirements for baseline protections
+
+|Baseline Protections - requirement           | Description                                        |
+|---------------------------------------------|----------------------------------------------------|
+| Hardware: **64-bit CPU**              | A 64-bit computer is required for the Windows hypervisor to provide VBS. |
+| Hardware: **CPU virtualization extensions**,<br>plus **extended page tables** | **Requirements**: These hardware features are required for VBS:<br>One of the following virtualization extensions:<br>- VT-x (Intel) or<br>- AMD-V<br>And:<br>- Extended page tables, also called Second Level Address Translation (SLAT).<br><br>**Security benefits**: VBS provides isolation of secure kernel from normal operating system. Vulnerabilities and Day 0s in normal operating system cannot be exploited because of this isolation. |
+| Firmware: **UEFI firmware version 2.3.1.c or higher with UEFI Secure Boot** | **Requirements**: See the following Windows Hardware Compatibility Program requirement: [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot)<br><br>**Security benefits**: UEFI Secure Boot helps ensure that the device boots only authorized code. This can prevent boot kits and root kits from installing and persisting across reboots.  |
+| Firmware: **Secure firmware update process**      | **Requirements**: UEFI firmware must support secure firmware update found under the following Windows Hardware Compatibility Program requirement: [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot).<br><br>**Security benefits**: UEFI firmware just like software can have security vulnerabilities that, when found, need to be patched through firmware updates. Patching helps prevent root kits from getting installed. |
+| Software: **HVCI compatible drivers**       | **Requirements**: See the Windows Hardware Compatibility Program requirements under [Filter.Driver.DeviceGuard.DriverCompatibility](https://msdn.microsoft.com/library/windows/hardware/mt589732(v=vs.85).aspx).<br><br>**Security benefits**: [HVCI Compatible](https://blogs.msdn.microsoft.com/windows_hardware_certification/2015/05/22/driver-compatibility-with-device-guard-in-windows-10/) drivers help ensure that VBS can maintain appropriate memory permissions. This increases resistance to bypassing vulnerable kernel drivers and helps ensure that malware cannot run in kernel. Only code verified through code integrity can run in kernel mode. |
+| Software: Qualified **Windows operating system**  | **Requirement**: Windows 10 Enterprise, Windows 10 Education, Windows 2016 Server, or Windows Enterprise IoT<br><br>**Security benefits**: Support for VBS and for management features that simplify configuration of Device Guard. |
+
+<!-- When additional tables are added, change "The following table lists" to "The following tables list" in the Important just below. -->
+
+> **Important**&nbsp;&nbsp;The preceding table lists requirements for baseline protections. The following table lists requirements for additional protections. You can use Device Guard with hardware, firmware, and software that support baseline protections, even if they do not support additional protections.
+
+## Device Guard requirements for additional protections
+
+The following tables describes additional hardware and firmware requirements, and the additional protections that are available when those requirements are met. We strongly recommend the following additional protections, which help you maximize the benefits that Device Guard can provide.
+
+ to take advantage of all the security options Device Guard can provide.
+
+### 2015 Additional Qualification Requirements for Device Guard (Windows 10, version 1507 and Windows 10, version 1511)
+
+|Additional Protections - requirement         | Description                                        |
+|---------------------------------------------|----------------------------------------------------|
+| Firmware: **Securing Boot Configuration and Management** | **Requirements**:<br>- BIOS password or stronger authentication must be supported.<br>- In the BIOS configuration, BIOS authentication must be set.<br>- There must be support for protected BIOS option to configure list of permitted boot devices (for example, “Boot only from internal hard drive”) and boot device order, overriding BOOTORDER modification made by operating system.<br>- In the BIOS configuration, BIOS options related to security and boot options (list of permitted boot devices, boot order) must be secured to prevent other operating systems from starting and to prevent changes to the BIOS settings.<br><br>**Security benefits**:<br>- BIOS password or stronger authentication helps ensure that only authenticated Platform BIOS administrators can change BIOS settings. This helps protect against a physically present user with BIOS access.<br>- Boot order when locked provides protection against the computer being booted into WinRE or another operating system on bootable media. |
+
+## Device Guard deployment in different scenarios: types of devices
+
+Typically, deployment of Device Guard happens best in phases, rather than being a feature that you simply “turn on.” The choice and sequence of phases depends on the way various computers and other devices are used in your organization, and to what degree IT manages those devices. The following table can help you begin to develop a plan for deploying Device Guard in your organization.
+
+| **Type of device**                 | **How Device Guard relates to this type of device**  | **Device Guard components that you can use to protect this kind of device**    |
+|------------------------------------|------------------------------------------------------|--------------------------------------------------------------------------------|
+| **Fixed-workload devices**: Perform same tasks every day.<br>Lists of approved applications rarely change.<br>Examples: kiosks, point-of-sale systems, call center computers. | Device Guard can be deployed fully, and deployment and ongoing administration are relatively straightforward.<br>After Device Guard deployment, only approved applications can run. This is because of protections offered by the Hypervisor Code Integrity (HVCI) service. | - VBS (hardware-based) protections, enabled.<br><br>- Code integrity policies in enforced mode, with UMCI enabled. |
+| **Fully managed devices**: Allowed software is restricted by IT department.<br>Users can request additional software, or install from a list of applications provided by IT department.<br>Examples: locked-down, company-owned desktops and laptops. | An initial baseline code integrity policy can be established and enforced. Whenever the IT department approves additional applications, it will update the code integrity policy and (for unsigned LOB applications) the catalog.<br>Code integrity policies are supported by the HVCI service. | - VBS (hardware-based) protections, enabled.<br><br>- Code integrity policies in enforced mode, with UMCI enabled. |
+| **Lightly managed devices**: Company-owned, but users are free to install software.<br>Devices are required to run organization's antivirus solution and client management tools. | Device Guard can be used to help protect the kernel, and to monitor (audit) for problem applications rather than limiting the applications that can be run. | - VBS (hardware-based) protections, enabled. When enabled with a code integrity policy in audit mode only, VBS means the hypervisor helps enforce the default kernel-mode code integrity policy, which protects against unsigned drivers or system files.<br><br>- Code integrity policies, with UMCI enabled, but running in audit mode only. This means applications are not blocked—the policy just logs an event whenever an application outside the policy is started.  |
+| **Bring Your Own Device**: Employees are allowed to bring their own devices, and also use those devices away from work. | Device Guard does not apply. Instead, you can explore other hardening and security features with MDM-based conditional access solutions, such as Microsoft Intune. | N/A | 
+
+## Reviewing your applications: application signing and catalog files 
+
+Typically, code integrity policies are configured to use the application's signing certificate as part or all of what identifies the application as trusted. This means that applications must either use embedded signing—where the signature is part of the binary—or catalog signing, where you generate a “catalog file” from the applications, sign it, and through the signed catalog file, configure the code integrity policy to recognize the applications as signed.
+
+Catalog files can be very useful for unsigned LOB applications that cannot easily be given an embedded signature. However, catalogs need to be updated each time an application is updated. In contrast, with embedded signing, your code integrity policies typically do not have to be updated when an application is updated. For this reason, if code-signing is or can be included in your in-house application development process, it can simplify the management of your code integrity policies (compared to using catalog signing).
+
+To obtain signed applications or embed signatures in your in-house applications, you can choose from a variety of methods:
+
+- Using the Windows Store publishing process. All apps that come out of the Microsoft Store are automatically signed with special signatures that can roll-up to our certificate authority (CA) or to your own.
+
+- Using your own digital certificate or public key infrastructure (PKI). ISV's and enterprises can sign their own Classic Windows applications themselves, adding themselves to the trusted list of signers.
+
+- Using a non-Microsoft signing authority. ISV's and enterprises can use a trusted non-Microsoft signing authority to sign all of their own Classic Windows applications.
+
+To use catalog signing, you can choose from the following options:
+
+- Use the Device Guard signing portal available in the Windows Store for Business. The portal is a Microsoft web service that you can use to sign your Classic Windows applications. For more information, see [Device Guard signing](https://technet.microsoft.com/itpro/windows/manage/device-guard-signing-portal).
+
+- Create your own catalog files, which are described in the next section. For information about how creating catalog files fits into Device Guard deployment, see [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md).
+
+### Catalog files
+
+Catalog files (which you can create in Windows 10 with a tool called Package Inspector) contain information about all deployed and executed binary files associated with your trusted but unsigned applications. When you create catalog files, you can also include signed applications for which you do not want to trust the signer but rather the specific application. After creating a catalog, you must sign the catalog file itself by using enterprise public key infrastructure (PKI), or a purchased code signing certificate. Then you can distribute the catalog, so that your trusted applications can be handled by code integrity policies in the same way as any other signed application.
+
+Catalog files are simply Secure Hash Algorithm 2 (SHA2) hash lists of discovered binaries. These binaries’ hash values are updated each time an application is updated, which requires the catalog file to be updated also.
+
+After you have created and signed your catalog files, you can configure your code integrity policies to trust the signer or signing certificate of those files.
+
+> **Note**&nbsp;&nbsp;Package Inspector only works on operating systems that support Device Guard, such as Windows 10 Enterprise, Windows 10 Education, Windows 2016 Server, or Windows Enterprise IoT.
+
+For information about how creating catalog files fits into Device Guard deployment, see [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md). For procedures for working with catalog files, see [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md).
+
+## Code integrity policy formats and signing
+
+When you generate a code integrity policy, you are generating a binary-encoded XML document that includes configuration settings for both the User and Kernel-modes of Windows 10 Enterprise, along with restrictions on Windows 10 script hosts. You can view your original XML document in a text editor, for example if you want to check the rule options that are present in the **&lt;Rules&gt;** section of the file.
+
+We recommend that you keep the original XML file for use when you need to merge the code integrity policy with another policy or update its rule options. For deployment purposes, the file is converted to a binary format, which can be done using a simple Windows PowerShell command.
+
+When the code integrity policy is deployed, it restricts the software that can run on a device. The XML document can be signed, helping to add additional protection against administrative users changing or removing the policy. 
+
+## Related topics
+
+- [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md)
+- [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
+
+

From 245f1ee8537b33b785890ed2053ddf5b7bba1b8c Mon Sep 17 00:00:00 2001
From: JanKeller1 <v-jak@microsoft.com>
Date: Thu, 14 Jul 2016 12:57:47 -0700
Subject: [PATCH 26/69] Added Device Guard subtopics to TOC

---
 windows/keep-secure/TOC.md | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 6d463f47d2..ae6eec1804 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -816,6 +816,15 @@
 ## [Enterprise security guides](windows-10-enterprise-security-guides.md)
 ### [Control the health of Windows 10-based devices](protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md)
 ### [Device Guard deployment guide](device-guard-deployment-guide.md)
+#### [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+#### [Requirements and deployment planning guidelines for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md)
+#### [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md)
+#### [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
+##### [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md)
+##### [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md)
+##### [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)
+##### [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md)
+#### [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md)
 ### [Microsoft Passport guide](microsoft-passport-guide.md)
 ### [Windows 10 Mobile security guide](windows-10-mobile-security-guide.md)
 ### [Windows 10 security overview](windows-10-security-guide.md)

From 0359558c86cd26a19440362ac80ffd82e9beb519 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Thu, 14 Jul 2016 13:40:55 -0700
Subject: [PATCH 27/69] Fixed naming issues

---
 windows/keep-secure/create-edp-policy-using-intune.md  | 10 +++++-----
 windows/keep-secure/create-edp-policy-using-sccm.md    | 10 +++++-----
 windows/keep-secure/overview-create-edp-policy.md      |  4 ++--
 .../keep-secure/protect-enterprise-data-using-edp.md   |  2 +-
 4 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 8d593d6ed0..2aa5020b0e 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -46,7 +46,7 @@ During the policy-creation process in Intune, you can choose the apps you want t
 The steps to add your app rules are based on the type of rule template being applied. You can add a store app (also known as a Universal Windows Platform (UWP) app), a signed desktop app (also known as a Classic Windows app), or an AppLocker policy file.
 
 >**Important**<br>
-EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary, and EDP-unaware apps will encrypt all files they create or modify. This means that they could encrypt personal data and cause data loss during the revocation process.<p>Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your App rules list. If you don’t get this statement, it’s possible that you could experience app compat issues due to an app losing the ability to access a necessary file after revocation.
+EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary, and EDP-unaware apps will encrypt all files they create or modify. This means that they could encrypt personal data and cause data loss during the revocation process.<p>Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your App Rules list. If you don’t get this statement, it’s possible that you could experience app compat issues due to an app losing the ability to access a necessary file after revocation.
 
 <p>
 >**Note**<br>
@@ -56,7 +56,7 @@ If you want to use **File hash** or **Path** rules, instead of **Publisher** rul
 For this example, we’re going to add Microsoft OneNote, a store app, to the **App Rules** list.
 
 **To add a store app**
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
 
     The **Add App Rule** box appears.
 
@@ -138,7 +138,7 @@ If you don't know the publisher or product name, you can find them for both desk
 For this example, we’re going to add Internet Explorer, a desktop app, to the **App Rules** list.
 
 **To add a desktop app**
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
 
     The **Add App Rule** box appears.
 
@@ -278,7 +278,7 @@ For this example, we’re going to add an AppLocker XML file to the **App Rules*
 12.	After you’ve created your XML file, you need to import it by using Microsoft Intune.
 
 **To import your Applocker policy file app rule using Microsoft Intune**
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
     
     The **Add App Rule** box appears.
 
@@ -302,7 +302,7 @@ For this example, we’re going to add an AppLocker XML file to the **App Rules*
 If you're running into compatibility issues where your app is incompatible with EDP, but still needs to be used with enterprise data, you can exempt the app from the EDP restrictions. This means that your apps won't include auto-encryption or tagging and won't honor your network restrictions. It also means that your exempted apps might leak.
 
 **To exempt a store app, a desktop app, or an AppLocker policy file app rule**
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
     
     The **Add App Rule** box appears.
 
diff --git a/windows/keep-secure/create-edp-policy-using-sccm.md b/windows/keep-secure/create-edp-policy-using-sccm.md
index d96f3efa02..3bf3f76ddd 100644
--- a/windows/keep-secure/create-edp-policy-using-sccm.md
+++ b/windows/keep-secure/create-edp-policy-using-sccm.md
@@ -64,14 +64,14 @@ During the policy-creation process in System Center Configuration Manager, you c
 The steps to add your app rules are based on the type of rule template being applied. You can add a store app (also known as a Universal Windows Platform (UWP) app), a signed desktop app (also known as a Classic Windows app), or an AppLocker policy file.
 
 >**Important**<br>
-EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary, and EDP-unaware apps will encrypt all files they create or modify. This means that they could encrypt personal data and cause data loss during the revocation process. <p>Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your **App rules** list. If you don’t get this statement, it’s possible that you could experience app compat issues due to an app losing the ability to access a necessary file after revocation.
+EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary, and EDP-unaware apps will encrypt all files they create or modify. This means that they could encrypt personal data and cause data loss during the revocation process. <p>Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your **App Rules** list. If you don’t get this statement, it’s possible that you could experience app compat issues due to an app losing the ability to access a necessary file after revocation.
 
 #### Add a store app rule to your policy
 For this example, we’re going to add Microsoft OneNote, a store app, to the **App Rules** list.
 
 **To add a store app**
 
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
     
     The **Add app rule** box appears.
 
@@ -153,7 +153,7 @@ If you don't know the publisher or product name, you can find them for both desk
 For this example, we’re going to add Internet Explorer, a desktop app, to the **App Rules** list.
 
 **To add a desktop app to your policy**
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
     
     The **Add app rule** box appears.
 
@@ -293,7 +293,7 @@ For this example, we’re going to add an AppLocker XML file to the **App Rules*
 12. After you’ve created your XML file, you need to import it by using System Center Configuration Manager.
 
 **To import your Applocker policy file app rule using 1System Center Configuration Manager**
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
     
     The **Add app rule** box appears.
 
@@ -318,7 +318,7 @@ If you're running into compatibility issues where your app is incompatible with
 
 **To exempt a store app, a desktop app, or an AppLocker policy file app rule**
 
-1.	From the **App rules** area, click **Add**.
+1.	From the **App Rules** area, click **Add**.
     
     The **Add app rule** box appears.
 
diff --git a/windows/keep-secure/overview-create-edp-policy.md b/windows/keep-secure/overview-create-edp-policy.md
index caa34aa197..3b7920eae2 100644
--- a/windows/keep-secure/overview-create-edp-policy.md
+++ b/windows/keep-secure/overview-create-edp-policy.md
@@ -1,6 +1,6 @@
 ---
 title: Create an enterprise data protection (EDP) policy (Windows 10)
-description: Microsoft Intune and System Center Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
+description: Microsoft Intune and System Center Configuration Manager Technical Preview version 1605 helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
 ms.assetid: d2059e74-94bd-4e54-ab59-1a7b9b52bdc6
 ms.prod: w10
 ms.mktglfcycl: explore
@@ -17,7 +17,7 @@ author: eross-msft
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-Microsoft Intune and System Center Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
+Microsoft Intune and System Center Configuration Manager Technical Preview version 1605 helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
 
 ## In this section
 |Topic |Description |
diff --git a/windows/keep-secure/protect-enterprise-data-using-edp.md b/windows/keep-secure/protect-enterprise-data-using-edp.md
index 851776710e..6ac0d869db 100644
--- a/windows/keep-secure/protect-enterprise-data-using-edp.md
+++ b/windows/keep-secure/protect-enterprise-data-using-edp.md
@@ -27,7 +27,7 @@ You’ll need this software to run EDP in your enterprise:
 
 |Operating system | Management solution |
 |-----------------|---------------------|
-|Windows 10 Insider Preview | Microsoft Intune<br>-OR-<br>System Center Configuration Manager (version 1605 Tech Preview or later)<br>-OR-<br>Your current company-wide 3rd party mobile device management (MDM) solution. For info about 3rd party MDM solutions, see the documentation that came with your product. If your 3rd party MDM does not have UI support for the policies, refer to the [EnterpriseDataProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt697634.aspx) documentation.|
+|Windows 10 Insider Preview | Microsoft Intune<br>-OR-<br>System Center Configuration Manager Technical Preview version 1605<br>-OR-<br>Your current company-wide 3rd party mobile device management (MDM) solution. For info about 3rd party MDM solutions, see the documentation that came with your product. If your 3rd party MDM does not have UI support for the policies, refer to the [EnterpriseDataProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt697634.aspx) documentation.|
 
 ## How EDP works
 EDP helps address your everyday challenges in the enterprise. Including:

From 38f0db375c49eb5eade844f18d98e9b7ee37e414 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Thu, 14 Jul 2016 13:46:38 -0700
Subject: [PATCH 28/69] Fixed so that it says you have to use either IPv4 or
 IPv6

---
 windows/keep-secure/create-edp-policy-using-intune.md | 4 ++--
 windows/keep-secure/create-edp-policy-using-sccm.md   | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 2aa5020b0e..014cd3a221 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -392,12 +392,12 @@ There are no default locations included with EDP, you must add each of your netw
                 <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
             </tr>
             <tr>
-                <td>Enterprise IPv4 Range (Required)</td>
+                <td>Enterprise IPv4 Range (Required, if not using an IPv6 range)</td>
                 <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,<br>10.0.0.1-10.255.255.254</td>
                 <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
             </tr>
             <tr>
-                <td>Enterprise IPv6 Range</td>
+                <td>Enterprise IPv6 Range (Required, if not using an IPv4 range)</td>
                 <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
                 <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
             </tr>
diff --git a/windows/keep-secure/create-edp-policy-using-sccm.md b/windows/keep-secure/create-edp-policy-using-sccm.md
index 3bf3f76ddd..28d4d0a737 100644
--- a/windows/keep-secure/create-edp-policy-using-sccm.md
+++ b/windows/keep-secure/create-edp-policy-using-sccm.md
@@ -409,12 +409,12 @@ There are no default locations included with EDP, you must add each of your netw
             <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
         </tr>
         <tr>
-            <td>Enterprise IPv4 Range (Required)</td>
+            <td>Enterprise IPv4 Range (Required, if not using an IPv6 range)</td>
             <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,<br>10.0.0.1-10.255.255.254</td>
             <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
         </tr>
         <tr>
-            <td>Enterprise IPv6 Range</td>
+            <td>Enterprise IPv6 Range (Required, if not using an IPv4 range)</td>
             <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
             <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
         </tr>

From d5a25d1e17690d4cf5fbf16c5ec448125cf3de30 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Thu, 14 Jul 2016 14:52:34 -0700
Subject: [PATCH 29/69] Updated IPv4 and IPv6 language slightly

---
 windows/keep-secure/create-edp-policy-using-intune.md | 4 ++--
 windows/keep-secure/create-edp-policy-using-sccm.md   | 4 ++--
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 014cd3a221..7ec9a9ab6d 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -392,12 +392,12 @@ There are no default locations included with EDP, you must add each of your netw
                 <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
             </tr>
             <tr>
-                <td>Enterprise IPv4 Range (Required, if not using an IPv6 range)</td>
+                <td>Enterprise IPv4 Range (Required, if not using IPv6)</td>
                 <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,<br>10.0.0.1-10.255.255.254</td>
                 <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
             </tr>
             <tr>
-                <td>Enterprise IPv6 Range (Required, if not using an IPv4 range)</td>
+                <td>Enterprise IPv6 Range (Required, if not using IPv4)</td>
                 <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
                 <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
             </tr>
diff --git a/windows/keep-secure/create-edp-policy-using-sccm.md b/windows/keep-secure/create-edp-policy-using-sccm.md
index 28d4d0a737..819d99a608 100644
--- a/windows/keep-secure/create-edp-policy-using-sccm.md
+++ b/windows/keep-secure/create-edp-policy-using-sccm.md
@@ -409,12 +409,12 @@ There are no default locations included with EDP, you must add each of your netw
             <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
         </tr>
         <tr>
-            <td>Enterprise IPv4 Range (Required, if not using an IPv6 range)</td>
+            <td>Enterprise IPv4 Range (Required, if not using IPv6)</td>
             <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,<br>10.0.0.1-10.255.255.254</td>
             <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
         </tr>
         <tr>
-            <td>Enterprise IPv6 Range (Required, if not using an IPv4 range)</td>
+            <td>Enterprise IPv6 Range (Required, if not using IPv4)</td>
             <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
             <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
         </tr>

From a1567a40b66bc1e22cb859af19b226e124e31647 Mon Sep 17 00:00:00 2001
From: Brian Lich <brianlic@microsoft.com>
Date: Thu, 14 Jul 2016 14:56:06 -0700
Subject: [PATCH 30/69] tech review feedback

---
 windows/keep-secure/credential-guard.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/credential-guard.md b/windows/keep-secure/credential-guard.md
index acf87038bb..3974a748e2 100644
--- a/windows/keep-secure/credential-guard.md
+++ b/windows/keep-secure/credential-guard.md
@@ -29,7 +29,8 @@ Credential Guard isolates secrets that previous versions of Windows stored in th
 
 For security reasons, the isolated LSA process doesn't host any device drivers. Instead, it only hosts a small subset of operating system binaries that are needed for security and nothing else. All of these binaries are signed with a certificate that is trusted by virtualization-based security and these signatures are validated before launching the file in the protected environment.
 
-Credential Guard also does not allow older variants of NTLM, unconstrained Kerberos delegation, and Kerberos authentication protocols and cipher suites when using default derived credentials, including NTLMv1, MS-CHAPv2, and weaker Kerberos encryption types, such as DES.
+Credential Guard also does not allow unconstrained Kerberos delegation, NTLMv1, MS-CHAPv2, Digest, CredSSP, and Kerberos DES encryption.
+
 Here's a high-level overview on how the LSA is isolated by using virtualization-based security:
 
 ![Credential Guard overview](images/credguard.png)

From 841bd4085ab4e49aa8fa37614348f6d598df2184 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Thu, 14 Jul 2016 15:03:15 -0700
Subject: [PATCH 31/69] Changed SCCM name

---
 windows/keep-secure/create-edp-policy-using-sccm.md      | 6 +++---
 windows/keep-secure/overview-create-edp-policy.md        | 6 +++---
 windows/keep-secure/protect-enterprise-data-using-edp.md | 2 +-
 3 files changed, 7 insertions(+), 7 deletions(-)

diff --git a/windows/keep-secure/create-edp-policy-using-sccm.md b/windows/keep-secure/create-edp-policy-using-sccm.md
index 819d99a608..aeb770bed1 100644
--- a/windows/keep-secure/create-edp-policy-using-sccm.md
+++ b/windows/keep-secure/create-edp-policy-using-sccm.md
@@ -15,14 +15,14 @@ author: eross-msft
 
 -   Windows 10 Insider Preview
 -   Windows 10 Mobile Preview
--   System Center Configuration Manager (version 1605 Tech Preview or later)
+-   System Center Configuration Manager Technical Preview version 1605 or later
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-System Center Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection mode, and how to find enterprise data on the network.
+System Center Configuration Manager Technical Preview version 1605 or later helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection mode, and how to find enterprise data on the network.
 
 >**Important**<br>
-If you previously created an EDP policy using System Center Configuration Manager version 1511 or 1602, you’ll need to recreate it using version 1605 Tech Preview or later. Editing an EDP policy created in version 1511 or 1602 is not supported in version 1605 Tech Preview. There is no migration path between EDP policies across these versions.
+If you previously created an EDP policy using System Center Configuration Manager version 1511 or 1602, you’ll need to recreate it using Configuration Manager Technical Preview version 1605 or later. Editing an EDP policy created in version 1511 or 1602 is not supported in the Technical Preview version 1605 or later. There is no migration path between EDP policies across these versions.
 
 ## Add an EDP policy
 After you’ve installed and set up System Center Configuration Manager for your organization, you must create a configuration item for EDP, which in turn becomes your EDP policy.
diff --git a/windows/keep-secure/overview-create-edp-policy.md b/windows/keep-secure/overview-create-edp-policy.md
index 3b7920eae2..02e9e28ec7 100644
--- a/windows/keep-secure/overview-create-edp-policy.md
+++ b/windows/keep-secure/overview-create-edp-policy.md
@@ -1,6 +1,6 @@
 ---
 title: Create an enterprise data protection (EDP) policy (Windows 10)
-description: Microsoft Intune and System Center Configuration Manager Technical Preview version 1605 helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
+description: Microsoft Intune and System Center Configuration Manager Technical Preview version 1605 or later helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
 ms.assetid: d2059e74-94bd-4e54-ab59-1a7b9b52bdc6
 ms.prod: w10
 ms.mktglfcycl: explore
@@ -17,13 +17,13 @@ author: eross-msft
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-Microsoft Intune and System Center Configuration Manager Technical Preview version 1605 helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
+Microsoft Intune and System Center Configuration Manager Technical Preview version 1605 or later helps you create and deploy your enterprise data protection (EDP) policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network.
 
 ## In this section
 |Topic |Description |
 |------|------------|
 |[Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) |Intune helps you create and deploy your EDP policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network. |
-|[Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |Configuration Manager (version 1605 Tech Preview or later) helps you create and deploy your EDP policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network. |
+|[Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |System Center Configuration Manager Technical Preview version 1605 or later helps you create and deploy your EDP policy, including letting you choose your protected apps, your EDP-protection level, and how to find enterprise data on the network. |
  
 
  
diff --git a/windows/keep-secure/protect-enterprise-data-using-edp.md b/windows/keep-secure/protect-enterprise-data-using-edp.md
index 6ac0d869db..9e052274d5 100644
--- a/windows/keep-secure/protect-enterprise-data-using-edp.md
+++ b/windows/keep-secure/protect-enterprise-data-using-edp.md
@@ -27,7 +27,7 @@ You’ll need this software to run EDP in your enterprise:
 
 |Operating system | Management solution |
 |-----------------|---------------------|
-|Windows 10 Insider Preview | Microsoft Intune<br>-OR-<br>System Center Configuration Manager Technical Preview version 1605<br>-OR-<br>Your current company-wide 3rd party mobile device management (MDM) solution. For info about 3rd party MDM solutions, see the documentation that came with your product. If your 3rd party MDM does not have UI support for the policies, refer to the [EnterpriseDataProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt697634.aspx) documentation.|
+|Windows 10 Insider Preview | Microsoft Intune<br>-OR-<br>System Center Configuration Manager Technical Preview version 1605 or later<br>-OR-<br>Your current company-wide 3rd party mobile device management (MDM) solution. For info about 3rd party MDM solutions, see the documentation that came with your product. If your 3rd party MDM does not have UI support for the policies, refer to the [EnterpriseDataProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt697634.aspx) documentation.|
 
 ## How EDP works
 EDP helps address your everyday challenges in the enterprise. Including:

From b5ca417354224a370d204aa7226a97e5c1b0b0c0 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 15 Jul 2016 16:10:14 +1000
Subject: [PATCH 32/69] fix location of title

---
 ...tal-access-windows-defender-advanced-threat-protection.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/windows/keep-secure/assign-portal-access-windows-defender-advanced-threat-protection.md b/windows/keep-secure/assign-portal-access-windows-defender-advanced-threat-protection.md
index 9f3059a07b..eb788e5359 100644
--- a/windows/keep-secure/assign-portal-access-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/assign-portal-access-windows-defender-advanced-threat-protection.md
@@ -9,6 +9,9 @@ ms.sitesec: library
 ms.pagetype: security
 author: mjcaparas
 ---
+
+# Assign user access to the Windows Defender ATP portal
+
 **Applies to:**
 
 - Windows 10 Insider Preview Build 14332 or later
@@ -18,8 +21,6 @@ author: mjcaparas
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-# Assign user access to the Windows Defender ATP portal
-
 Windows Defender ATP users and access permissions are managed in Azure Active Directory (AAD). User can be assigned one of the following levels of permissions:
 - Full access (Read and Write)
 - Read only access

From 9646c34e74745769337af17892e619498aa5e770 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Fri, 15 Jul 2016 16:33:06 +1000
Subject: [PATCH 33/69] add table back

---
 ...nts-windows-defender-advanced-threat-protection.md | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
index a31bfe61a7..d2cc59754d 100644
--- a/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
@@ -115,7 +115,16 @@ These policies are categorized into two groups:
 
 > **Warning**&nbsp;&nbsp;These two groups must not be deployed on the same machine at same time, otherwise this will cause unpredictable collisions.
 
- ![Table of policies used in Microsoft Intune ](images/oma-uri.png)
+Policy | OMA-URI | Type | Description | Value
+:---|:---|:---|:---|:---
+Onboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Onboarding | String | Onboarding | Copy content from onboarding MDM file
+Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is running | TRUE
+ | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Onboarded to Windows Defender ATP | 1
+  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OrgId | String | Onboarded to Organization ID | Use OrgID from onboarding file
+ Configuration for onboarded machines  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Configuration/SampleSharing | Integer | Windows Defender ATP Sample sharing is enabled | 0 or 1 <br> Default value: 1
+ Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding | String | Offboarding | Copy content from offboarding MDM file
+ Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is not running | FALSE
+  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Offboarded from Windows Defender ATP  | 0
 
 > **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** and **Health Status for offboarded machines** use read-only properties and can't be remediated.
 

From e0196fb516587708a6dd349af748f576b83afd8d Mon Sep 17 00:00:00 2001
From: JanKeller1 <v-jak@microsoft.com>
Date: Fri, 15 Jul 2016 09:35:38 -0700
Subject: [PATCH 34/69] Tidying TOC & parent topics for Device Guard content

---
 windows/keep-secure/TOC.md                    |  23 +-
 ...g-a-device-guard-policy-for-signed-apps.md | 109 +-------
 ...iles-to-support-code-integrity-policies.md |   2 +-
 ...ty-policies-policy-rules-and-file-rules.md |   2 +-
 .../deploy-code-integrity-policies-steps.md   |   2 +-
 ...ce-guard-deploy-code-integrity-policies.md |   2 +-
 ...rd-enable-virtualization-based-security.md |   2 +-
 ...vice-guard-certification-and-compliance.md | 105 +-------
 .../device-guard-deployment-guide.md          |   2 +-
 ...o-run-on-device-guard-protected-devices.md | 254 +-----------------
 windows/keep-secure/index.md                  |   4 +-
 ...certificate-for-code-integrity-policies.md |   2 +-
 ...-on-the-device-guard-deployment-process.md |   2 +-
 ...nt-planning-guidelines-for-device-guard.md |   2 +-
 .../windows-10-enterprise-security-guides.md  |   8 +-
 windows/whats-new/device-guard-overview.md    |  94 +------
 16 files changed, 34 insertions(+), 581 deletions(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index ae6eec1804..215f9a8b8f 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -1,9 +1,6 @@
 # [Keep Windows 10 secure](index.md)
 ## [Change history for Keep Windows 10 secure](change-history-for-keep-windows-10-secure.md)
 ## [Block untrusted fonts in an enterprise](block-untrusted-fonts-in-enterprise.md)
-## [Device Guard certification and compliance](device-guard-certification-and-compliance.md)
-### [Get apps to run on Device Guard-protected devices](getting-apps-to-run-on-device-guard-protected-devices.md)
-### [Create a Device Guard code integrity policy based on a reference device](creating-a-device-guard-policy-for-signed-apps.md)
 ## [Manage identity verification using Microsoft Passport](manage-identity-verification-using-microsoft-passport.md)
 ### [Implement Microsoft Passport in your organization](implement-microsoft-passport-in-your-organization.md)
 ### [Why a PIN is better than a password](why-a-pin-is-better-than-a-password.md)
@@ -14,6 +11,16 @@
 ## [Windows Hello biometrics in the enterprise](windows-hello-in-enterprise.md)
 ## [Configure S/MIME for Windows 10 and Windows 10 Mobile](configure-s-mime.md)
 ## [Install digital certificates on Windows 10 Mobile](installing-digital-certificates-on-windows-10-mobile.md)
+## [Device Guard deployment guide](device-guard-deployment-guide.md)
+### [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
+### [Requirements and deployment planning guidelines for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md)
+### [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md)
+### [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
+#### [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md)
+#### [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md)
+#### [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)
+#### [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md)
+### [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md)
 ## [Protect derived domain credentials with Credential Guard](credential-guard.md)
 ## [Protect your enterprise data using enterprise data protection (EDP)](protect-enterprise-data-using-edp.md)
 ### [Create an enterprise data protection (EDP) policy](overview-create-edp-policy.md)
@@ -815,16 +822,6 @@
 ###### [Verify That Network Traffic Is Authenticated](verify-that-network-traffic-is-authenticated.md)
 ## [Enterprise security guides](windows-10-enterprise-security-guides.md)
 ### [Control the health of Windows 10-based devices](protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md)
-### [Device Guard deployment guide](device-guard-deployment-guide.md)
-#### [Introduction to Device Guard: virtualization-based security and code integrity policies](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md)
-#### [Requirements and deployment planning guidelines for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md)
-#### [Planning and getting started on the Device Guard deployment process](planning-and-getting-started-on-the-device-guard-deployment-process.md)
-#### [Deploy Device Guard: deploy code integrity policies](deploy-device-guard-deploy-code-integrity-policies.md)
-##### [Optional: Create a code signing certificate for code integrity policies](optional-create-a-code-signing-certificate-for-code-integrity-policies.md)
-##### [Deploy code integrity policies: policy rules and file rules](deploy-code-integrity-policies-policy-rules-and-file-rules.md)
-##### [Deploy code integrity policies: steps](deploy-code-integrity-policies-steps.md)
-##### [Deploy catalog files to support code integrity policies](deploy-catalog-files-to-support-code-integrity-policies.md)
-#### [Deploy Device Guard: enable virtualization-based security](deploy-device-guard-enable-virtualization-based-security.md)
 ### [Microsoft Passport guide](microsoft-passport-guide.md)
 ### [Windows 10 Mobile security guide](windows-10-mobile-security-guide.md)
 ### [Windows 10 security overview](windows-10-security-guide.md)
diff --git a/windows/keep-secure/creating-a-device-guard-policy-for-signed-apps.md b/windows/keep-secure/creating-a-device-guard-policy-for-signed-apps.md
index a1b2db57b3..fdf497e545 100644
--- a/windows/keep-secure/creating-a-device-guard-policy-for-signed-apps.md
+++ b/windows/keep-secure/creating-a-device-guard-policy-for-signed-apps.md
@@ -1,112 +1,5 @@
 ---
 title: Create a Device Guard code integrity policy based on a reference device (Windows 10)
-description: To implement Device Guard app protection, you will need to create a code integrity policy. Code integrity policies determine what apps are considered trustworthy and are allowed to run on a protected device.
-ms.assetid: 6C94B14E-E2CE-4F6C-8939-4B375406E825
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-author: brianlic-msft
+redirect_url: device-guard-deployment-guide.md
 ---
 
-# Create a Device Guard code integrity policy based on a reference device
-**Applies to**
--   Windows 10
-
-To implement Device Guard app protection, you will need to create a code integrity policy. Code integrity policies determine what apps are considered trustworthy and are allowed to run on a protected device.
-
-## <a href="" id="create-a-device-guard-code-integrity-policy-based-on--a-reference-device"></a>Create a Device Guard code integrity policy based on a reference device
-
-To create a code integrity policy, you'll first need to create a reference image that includes the signed applications you want to run on your protected devices. For information on how to sign applications, see [Getting apps to run on Device Guard-protected devices](getting-apps-to-run-on-device-guard-protected-devices.md).
-> **Note:**  Before creating a code integrity policy, make sure your reference device is clean of viruses and malware.
- 
-**To create a code integrity policy based on a reference device**
-
-1.  On your reference device, start PowerShell as an administrator.
-2.  In PowerShell, initialize variables by typing:
-    ``` syntax
-    $CIPolicyPath=$env:userprofile+"\Desktop\"
-    $InitialCIPolicy=$CIPolicyPath+"InitialScan.xml"
-    $CIPolicyBin=$CIPolicyPath+"DeviceGuardPolicy.bin"
-    ```
-3.  Scan your device for installed applications and create a new code integrity policy by typing:
-    ``` syntax
-    New-CIPolicy -Level <RuleLevel> -FilePath $InitialCIPolicy -UserPEs -Fallback Hash 3> Warningslog.txt
-    ```
-    Where *&lt;RuleLevel&gt;* can be set to any of the following options:
-    <table>
-    <colgroup>
-    <col width="50%" />
-    <col width="50%" />
-    </colgroup>
-    <thead>
-    <tr class="header">
-    <th align="left">Rule level</th>
-    <th align="left">Description</th>
-    </tr>
-    </thead>
-    <tbody>
-    <tr class="odd">
-    <td align="left"><p>Hash</p></td>
-    <td align="left"><p>Specifies individual hash values for each discovered app. Each time an app is updated the hash value will change and you will need to update your policy.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>FileName</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>SignedVersion</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>Publisher</p></td>
-    <td align="left"><p>This level is a combination of the PCA certificate and the common name (CN) on the leaf certificate. When a PCA certificate is used to sign apps from multiple companies (such as VeriSign), this rule level allows you to trust the PCA certificate but only for the company whose name is on the leaf certificate.</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>FilePublisher</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>LeafCertificate</p></td>
-    <td align="left"><p>Adds trusted signers at the individual signing certificate level. When an app is updated, the hash value is modified but the signing certificate stays the same. You will only need to update your policy if the signing certificate for an app changes.</p>
-    <div class="alert">
-    <strong>Note</strong>  Leaf certificates have much shorter validity periods than PCA certificates. You will need to update your policy if a certificate expires.
-    </div>
-    <div>
-     
-    </div></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>PcaCertificate</p></td>
-    <td align="left"><p>Adds the highest certificate in the provided certificate chain to signers. This is typically one certificate below the root certificate, as the scan does not validate anything above the presented signature by going online or checking local root stores.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>RootCertificate</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>WHQL</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>WHQLPublisher</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>WHQLFilePublisher</p></td>
-    <td align="left"><p>Currently unsupported.</p></td>
-    </tr>
-    </tbody>
-    </table>
-     
-4.  Type the following to convert the code integrity policy to a binary format:
-    ``` syntax
-    ConvertFrom-CIPolicy $InitialCIPolicy $CIPolicyBin
-    ```
-Once you have completed these steps, the Device Guard policy binary file (DeviceGuardPolicy.bin) and original xml file (InitialScan.xml) will be available on your desktop.
->**Note:**  We recommend that you keep a copy of InitialScan.xml to use if you need to merge this code integrity policy with another policy, or update policy rule options.
- 
-## Related topics
-[Getting apps to run on Device Guard-protected devices](getting-apps-to-run-on-device-guard-protected-devices.md)
- 
- 
diff --git a/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md b/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md
index 626a9a939b..a20497761c 100644
--- a/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md
+++ b/windows/keep-secure/deploy-catalog-files-to-support-code-integrity-policies.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Deploy catalog files to support code integrity policies (Windows 10)
+# Deploy catalog files to support code integrity policies
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md b/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md
index 6710758326..f9cae0de10 100644
--- a/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md
+++ b/windows/keep-secure/deploy-code-integrity-policies-policy-rules-and-file-rules.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Deploy code integrity policies: policy rules and file rules (Windows 10)
+# Deploy code integrity policies: policy rules and file rules
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/deploy-code-integrity-policies-steps.md b/windows/keep-secure/deploy-code-integrity-policies-steps.md
index e754b2139e..d9fa657c72 100644
--- a/windows/keep-secure/deploy-code-integrity-policies-steps.md
+++ b/windows/keep-secure/deploy-code-integrity-policies-steps.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Deploy code integrity policies: steps (Windows 10)
+# Deploy code integrity policies: steps
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md b/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md
index 6a0dfeabe2..02ce631862 100644
--- a/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md
+++ b/windows/keep-secure/deploy-device-guard-deploy-code-integrity-policies.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Deploy Device Guard: deploy code integrity policies (Windows 10)
+# Deploy Device Guard: deploy code integrity policies
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md b/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md
index 85ae77b74a..9eda4d82c8 100644
--- a/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md
+++ b/windows/keep-secure/deploy-device-guard-enable-virtualization-based-security.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Deploy Device Guard: enable virtualization-based security (Windows 10)
+# Deploy Device Guard: enable virtualization-based security
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/device-guard-certification-and-compliance.md b/windows/keep-secure/device-guard-certification-and-compliance.md
index 6ac463047e..5e60c5e980 100644
--- a/windows/keep-secure/device-guard-certification-and-compliance.md
+++ b/windows/keep-secure/device-guard-certification-and-compliance.md
@@ -1,107 +1,4 @@
 ---
 title: Device Guard certification and compliance (Windows 10)
-description: Device Guard is a combination of hardware and software security features that, when configured together, will lock a device down so that it can only run trusted applications.
-ms.assetid: 94167ECA-AB08-431D-95E5-7A363F42C7E3
-ms.pagetype: security
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-author: brianlic-msft
+redirect_url: device-guard-deployment-guide.md
 ---
-# Device Guard certification and compliance
-**Applies to**
--   Windows 10
-
-Device Guard is a combination of hardware and software security features that, when configured together, will lock a device down so that it can only run trusted applications. If the app isn’t trusted it can’t run, period. It also means that even if an attacker manages to get control of the Windows kernel, he or she will be much less likely to be able to run malicious executable code after the computer restarts because of how decisions are made about what can run and when.
-Device Guard uses the new virtualization-based security in Windows 10 to isolate the Code Integrity service from the Windows kernel itself, letting the service use signatures defined by your enterprise-controlled policy to help determine what is trustworthy. In effect, the Code Integrity service runs alongside the kernel in a Windows hypervisor-protected container.
-For details on how to implement Device Guard, see [Device Guard deployment guide](device-guard-deployment-guide.md).
-## Why use Device Guard
-With thousands of new malicious files created every day, using traditional methods like signature-based detection to fight against malware provides an inadequate defense against new attacks. Device Guard on Windows 10 changes from a mode where apps are trusted unless blocked by an antivirus or other security solutions, to a mode where the operating system trusts only apps authorized by your enterprise.
-Device Guard also helps protect against [zero day attacks](http://go.microsoft.com/fwlink/p/?linkid=534209) and works to combat the challenges of [polymorphic viruses](http://go.microsoft.com/fwlink/p/?LinkId=534210).
-
-### Advantages to using Device Guard
-
-You can take advantage of the benefits of Device Guard, based on what you turn on and use:
--   Helps provide strong malware protection with enterprise manageability
--   Helps provide the most advanced malware protection ever offered on the Windows platform
--   Offers improved tamper resistance
-
-## How Device Guard works
-
-Device Guard restricts the Windows 10 operating system to only running code that’s signed by trusted signers, as defined by your Code Integrity policy through specific hardware and security configurations, including:
--   User Mode Code Integrity (UMCI)
--   New kernel code integrity rules (including the new Windows Hardware Quality Labs (WHQL) signing constraints)
--   Secure Boot with database (db/dbx) restrictions
--   Virtualization-based security to help protect system memory and kernel mode apps and drivers from possible tampering.
--   Optional: Trusted Platform Module (TPM) 1.2 or 2.0
-Device Guard works with your image-building process, so you can turn the virtualization-based security feature on for capable devices, configure your Code Integrity policy, and set any other operating system settings you require for Windows 10. After that, Device Guard works to help protect your devices:
-1.  Your device starts up using Universal Extensible Firmware Interface (UEFI) Secure Boot, so that boot kits can’t run and so that Windows 10 starts before anything else.
-2.  After securely starting up the Windows boot components, Windows 10 can start the Hyper-V virtualization-based security services, including Kernel Mode Code Integrity. These services help protect the system core (kernel), privileged drivers, and system defenses, like anti-malware solutions, by preventing malware from running early in the boot process, or in kernel after startup.
-3.  Device Guard uses UMCI to make sure that anything that runs in User mode, such as a service, a Universal Windows Platform (UWP) app, or a Classic Windows application is trusted, allowing only trusted binaries to run.
-4.  At the same time that Windows 10 starts up, so too does the trusted platform module (TPM). TPM provides an isolated hardware component that helps protect sensitive information, such as user credentials and certificates.
-## Required hardware and software
-The following table shows the hardware and software you need to install and configure to implement Device Guard.
-<table>
-<colgroup>
-<col width="50%" />
-<col width="50%" />
-</colgroup>
-<thead>
-<tr class="header">
-<th align="left">Requirement</th>
-<th align="left">Description</th>
-</tr>
-</thead>
-<tbody>
-<tr class="odd">
-<td align="left"><p>Windows 10 Enterprise</p></td>
-<td align="left"><p>The PC must be running Windows 10 Enterprise.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>UEFI firmware version 2.3.1 or higher with UEFI Secure Boot and Platform Secure Boot</p></td>
-<td align="left"><p>UEFI Secure Boot ensures that the device boots only authorized code. Additionally, Boot Integrity, also known as Platform Secure Boot must be supported. You can validate it against the following Windows Hardware Compatibility Program requirements:</p>
-<ul>
-<li><p>[System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot)</p></li>
-<li><p>[System.Fundamentals.Firmware.CS.UEFISecureBoot.ConnectedStandby](http://msdn.microsoft.com/library/windows/hardware/dn932807.aspx#system-fundamentals-firmware-cs-uefisecureboot-connectedstandby)</p></li>
-</ul></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>Virtualization extensions</p></td>
-<td align="left"><p>The following virtualization extensions are required to support virtualization-based security:</p>
-<ul>
-<li>Intel VT-x or AMD-V</li>
-<li>Second Level Address Translation</li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><p>Firmware lock</p></td>
-<td align="left"><ul>
-<li><p>The firmware setup should be locked to prevent other operating systems from starting and to prevent changes to the UEFI settings.</p></li>
-<li><p>Work with your hardware manufacturer to ensure that the devices are Device Guard ready</p></li>
-<li><p>You should require a firmware password or higher authentication to change firmware settings.</p></li>
-</ul></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>x64 architecture</p></td>
-<td align="left"><p>The features that virtualization-based security uses in the Windows hypervisor can only run on a 64-bit PC.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>A VT-d or AMD-Vi IOMMU (Input/output memory management unit)</p></td>
-<td align="left"><p>In Windows 10, an IOMMU enhances system resiliency against memory attacks.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>Secure firmware update process</p></td>
-<td align="left"><p>To verify that the firmware complies with the secure firmware update process, you can validate it against the [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot) Windows Hardware Compatibility Program requirement.</p><p>Device Guard relies on the security of the underlying hardware and firmware. It is critical to keep the firmware updated with the latest security fixes.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>Signed processor microcode updates</p></td>
-<td align="left"><p>If the processor supports it, you must require signed microcode updates.</p></td>
-</tr>
-</tbody>
-</table>
- 
-## Related topics
-[Get apps to run on Device Guard-protected devices](getting-apps-to-run-on-device-guard-protected-devices.md)
-[Create a Device Guard code integrity policy based on a reference device](creating-a-device-guard-policy-for-signed-apps.md)
- 
- 
diff --git a/windows/keep-secure/device-guard-deployment-guide.md b/windows/keep-secure/device-guard-deployment-guide.md
index 85dec6ce25..e82f511105 100644
--- a/windows/keep-secure/device-guard-deployment-guide.md
+++ b/windows/keep-secure/device-guard-deployment-guide.md
@@ -8,7 +8,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Device Guard deployment guide (Windows 10)
+# Device Guard deployment guide
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/getting-apps-to-run-on-device-guard-protected-devices.md b/windows/keep-secure/getting-apps-to-run-on-device-guard-protected-devices.md
index 42e7d1cff1..542e85c56f 100644
--- a/windows/keep-secure/getting-apps-to-run-on-device-guard-protected-devices.md
+++ b/windows/keep-secure/getting-apps-to-run-on-device-guard-protected-devices.md
@@ -1,256 +1,4 @@
 ---
 title: Get apps to run on Device Guard-protected devices (Windows 10)
-description: Windows 10 introduces several new features and settings that when combined all equal what we're calling, Device Guard.
-ms.assetid: E62B68C3-8B9F-4842-90FC-B4EE9FF8A67E
-keywords: Package Inspector, packageinspector.exe, sign catalog file
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-author: brianlic-msft
+redirect_url: device-guard-deployment-guide.md
 ---
-
-# Get apps to run on Device Guard-protected devices
-
-**Applies to**
--   Windows 10
-
-Windows 10 introduces several new features and settings that when combined all equal what we're calling, Device Guard. Device Guard can help to protect your enterprise devices against the accidental running of malicious apps by requiring all of your apps to be signed by a trusted entity.
-
-To use Device Guard in an enterprise, you must be able to get your existing line-of-business and Independent Software Vendor (ISV)-developed apps to run on a protected device. Unfortunately, many line-of-business apps aren't signed, and in many cases, aren't even being actively developed. Similarly, you may have unsigned software from an ISV that you want to run, or you want to run certain applications from an ISV while not trusting all applications from that ISV. As part of the Device Guard features, Windows 10 includes a new tool called Package Inspector. Package Inspector scans your unsigned apps, and creates catalog files of the installed and running binaries, which can then be signed by the Sign Tool Windows SDK utility and distributed using Group Policy so that your apps will run on Device Guard-protected devices.
-
-## What you need to run your apps on Device-Guard protected devices
-
-Before you can get your apps to run on Device Guard-protected devices, you must have:
-
--   A device running Windows 10 Enterprise, Windows 10 Education, or Windows Server 2016 Technical Preview.
--   Determined which unsigned apps you need to include in your catalog file.
--   Created a code integrity policy for use by Device Guard.
--   A [code signing certificate](http://go.microsoft.com/fwlink/p/?LinkId=619282), created using an internal public key infrastructure (PKI).
--   [SignTool]( http://go.microsoft.com/fwlink/p/?LinkId=619283). A command-line tool that digitally signs files, verifies signatures in files, or time stamps files. The tool is installed in the \\Bin folder of the Microsoft Windows Software Development Kit (SDK) installation path.
-
-## Create a catalog file for unsigned apps
-
-You must run Package Inspector on a device that's running a temporary Code Integrity Policy in audit mode, created explicitly for this purpose. Audit mode lets this policy catch any binaries missed by the inspection tool, but because it's audit mode, allows everything to continue running.
-> **Important:**  This temporary policy, shouldn't be used for normal business purposes.
- 
-**To create a catalog file for an existing app**
-1.  Start PowerShell as an administrator, and create your temporary policy file by typing:
-    ``` syntax
-    mkdir temp
-    New-CIPolicy -l FileName -f .\tempdeny.xml -s .\temp -u
-    ConvertFrom-CIPolicy .\tempdeny.xml .\tempdeny.bin
-    cp .\tempdeny.bin C:\Windows\System32\CodeIntegrity\SIPolicy.p7b
-    ```
-2.  Restart your device.
-3.  Start PowerShell as an administrator, and start scanning your file system by typing:
-    ``` syntax
-    PackageInspector.exe start c:
-    ```
-    Where:
-    <table>
-    <colgroup>
-    <col width="50%" />
-    <col width="50%" />
-    </colgroup>
-    <thead>
-    <tr class="header">
-    <th align="left">Option</th>
-    <th align="left">Description</th>
-    </tr>
-    </thead>
-    <tbody>
-    <tr class="odd">
-    <td align="left"><p>start &lt;<em>drive_letter</em>&gt;:</p></td>
-    <td align="left"><p>Specifies to start a scan. For example, starting to scan the C: drive.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>-path</p></td>
-    <td align="left"><p>File path to the package being inspected.</p></td>
-    </tr>
-    </tbody>
-    </table>
-     
-4.  Copy the app installation media to your C:\\ drive, and then install and run the program.
-
-    Copying the media to your local drive helps to make sure that the installer and its related files are included in your catalog file. If you miss the install files, your Code Integrity Policy might trust the app to run, but not to install. After you've installed the app, you should check for updates. If updates happen while the app is open, you should close and restart the app to make sure everything is caught during the inspection process.
-    
-    > **Note:**  Because the Package Inspector creates a log entry in the catalog for every binary laid down on the file system, we recommend that you don't run any other installations or updates during the scanning process.
-     
-5.  **Optional:** If you want to create a multi-app catalog (many apps included in a single catalog file), you can continue to run Steps 2-3 for each additional app. After you've added all of the apps you want to add, you can continue to Step 5.
-    > **Note: **  To streamline your process, we suggest:
-    -   **Actively supported and updated apps.** Create a single catalog file for each app.
-    -   **Legacy apps, non-active or not updated.** Create a single catalog file for all of your legacy apps.
-     
-6.  Stop the scanning process and create the .\\InspectedPackage.cat and InspectedPackage.cdf files for your single app in your specified location, by typing:
-    ``` syntax
-    PackageInspector.exe stop c:
-    ```
-You can also use the `scan` command in place of using both `start` and `stop` if you want to create a catalog of files that are already present on your hard drive. The `scan` command recursively scans a specified directory and includes all signable files in the catalog. You can scan a specified directory by typing:
-``` syntax
-PackageInspector.exe scan c:\<insert directory path>
-```
-The following table shows the available options for both the `scan` and `stop` commands.
-<table>
-<colgroup>
-<col width="50%" />
-<col width="50%" />
-</colgroup>
-<thead>
-<tr class="header">
-<th align="left">Option</th>
-<th align="left">Description</th>
-</tr>
-</thead>
-<tbody>
-<tr class="odd">
-<td align="left"><p>stop &lt;<em>drive_letter</em>&gt;:</p></td>
-<td align="left"><p>Specifies that a scan of the specified location is complete, creating either a catalog or a definition file. For example, <em>C:</em></p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>scan <em>&lt;path to scan&gt;</em></p></td>
-<td align="left"><p>Specifies a directory path to scan. This command recursively scans a specified directory and includes all signable files in the catalog.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>-out</p></td>
-<td align="left"><p>Specifies what type of info should be created by the tool. You can use either <code>CAT</code> for a catalog file, <code>CDF</code> for a catalog definition file or <code>list</code> for a delimited list of files.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>-listpath</p></td>
-<td align="left"><p>Specifies the location where the installer will output the list of files for <code>-out list</code>.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>-cdfPath &lt;<em>file_name</em>&gt;</p></td>
-<td align="left"><p>Specifies where the tool should put the created .cdf file. If you use this option, you must also specify the file name.</p>
-<p>We recommend that you use the full path to the file. However, relative paths are supported.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>-resdir</p></td>
-<td align="left"><p>This option isn't currently supported.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>-name</p></td>
-<td align="left"><p>This option isn't currently supported.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>-ph <code>[true|false]</code></p></td>
-<td align="left"><p>Specifies whether to include page hashes in the catalog. You can use either <code>True</code> to add the hashes or <code>False</code> to not add the hashes.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>-en</p></td>
-<td align="left"><p>Specifies the catalog's encoding type. By default, it's PKCS_7_ASN_ENCODING | X509_ASN_ENCODING, 0x00010001.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>-ca1</p></td>
-<td align="left"><p>Specifies the CATATTR1 in the catalog and catalog definition files.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>-ca2</p></td>
-<td align="left"><p>Specifies the CATATTR2 in the catalog and catalog definition files.</p></td>
-</tr>
-</tbody>
-</table>
- 
-You can add additional parameters to your catalog beyond what's listed here. For more info, see the [MakeCat](http://go.microsoft.com/fwlink/p/?LinkId=618024) topic.
-
-## Sign your catalog file using Sign Tool
-
-You can sign your catalog file using Sign Tool, located in the Windows 7 or later Windows Software Development Kit (SDK) or by using the Device Guard signing portal. For details on using the Device Guard signing portal, see [Device Guard signing](http://go.microsoft.com/fwlink/p/?LinkID=698760).
-This process shows how to use a password-protected Personal Information Exchange (.pfx) file to sign the catalog file.
-
-> **Important:**  To use this tool, you must have an internal certificate authority code signing certificate, or a code signing certificate issued by an external third-party certificate authority.
- 
-**To use Sign Tool**
-
-1.  Check that your code signing certificates have been imported into your certificate store or that they're on the file system.
-2.  Open SignTool.exe and sign the catalog file, based on where your certificate is stored.
-    If you are using the PFX from a file system location:
-    ``` syntax
-    signtool sign /f <\\SignCertLocation> /p <\\password> /fd sha256 /v
-    ```
-    If you have imported the certificate into your cert store:
-    ``` syntax
-    signtool sign /n <\\CertSubjectName> /fd sha256 /v <CatalogNameAndLocation>
-    ```
-    Where:
-    <table>
-    <colgroup>
-    <col width="50%" />
-    <col width="50%" />
-    </colgroup>
-    <thead>
-    <tr class="header">
-    <th align="left">Option</th>
-    <th align="left">Description</th>
-    </tr>
-    </thead>
-    <tbody>
-    <tr class="odd">
-    <td align="left"><p>signtool</p></td>
-    <td align="left"><p>Specifies the full path location to SignTool.exe.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>sign</p></td>
-    <td align="left"><p>Digitally signs files. For a list of the options supported by the sign command, see the [SignTool options](http://go.microsoft.com/fwlink/p/?LinkId=619283).</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>/n <em>SubjectName</em></p></td>
-    <td align="left"><p>Specifies the name of the subject of the signing certificate. This value can be a substring of the entire subject name.</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>/f <em>SignCertFileLocation</em></p></td>
-    <td align="left"><p>Specifies the signing certificate in a file.</p>
-    <p>If the file is in .pfx format and protected by a password, use the /p option to specify the password. If the file does not contain private keys, use the /csp and /k options to specify the .csp and private key container name.</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>/p <em>Password</em></p></td>
-    <td align="left"><p>Specifies the password to use when opening a PFX file. (Use the /f option to specify a PFX file.)</p></td>
-    </tr>
-    <tr class="even">
-    <td align="left"><p>/fd <em>Algorithm</em></p></td>
-    <td align="left"><p>Specifies the file digest algorithm to use for creating file signatures. The default is SHA2.</p></td>
-    </tr>
-    <tr class="odd">
-    <td align="left"><p>/v</p></td>
-    <td align="left"><p>Displays verbose output regardless of whether the command runs successfully or fails, and displays warning messages.</p></td>
-    </tr>
-    </tbody>
-    </table>
-     
-    For more detailed info and examples using the available options, see the [SignTool.exe (Sign Tool)](http://go.microsoft.com/fwlink/p/?LinkId=618026) topic.
-    
-3.  In File Explorer, right-click your catalog file, click **Properties**, and then click the **Digital Signatures** tab to make sure your catalog file's digital signature is accurate.
-4.  Copy your catalog file to C:\\Windows\\System32\\catroot\\{F750E6C3-38EE-11D1-85E5-00C04FC295EE} and test the file.
-
-    >**Note:**  For testing purposes, you can manually copy your file to this location. However, we recommend that you use Group Policy to copy the catalog file to all of your devices for large-scale implementations.
-    
-## Troubleshooting the Package Inspector
-
-If you see "Error 1181" while stopping the Package Inspector, you'll need to increase your USN journal size and then clear all of the cached data before re-scanning the impacted apps.
-
-You must make sure that you clear the cache by creating and setting a new temporary policy. If you reuse the same policy, the Package Inspector will fail.
-
-**To increase your journal size**
-1.  Open a command-prompt window, and then type:
-    ``` syntax
-    fsutil usn createjournal m=0x8000000 a=0x800000 C:
-    ```
-    Where the "m" value needs to be increased. We recommend that you change the value to at least 4 times the default value of m=0x2000000.
-2.  Re-run the failed app installation(s).
-
-**To clear your cached data and re-scan your apps**
-
-1.  Delete the SIPolicy.p7b file from the C:\\Windows\\System32\\CodeIntegrity\\ folder.
-2.  Create a new temporary Code Integrity Policy to clear all of the cached data by starting Windows Powershell as an administrator and typing:
-    ``` syntax
-    mkdir temp
-    cp C:\Windows\System32\PackageInspector.exe .\temp\
-    New-CIPolicy -l Hash -f .\DenyPackageInspector.xml -s .\temp -u -deny
-    ConvertFrom-CIPolicy .\DenyPackageInspector.xml .\DenyPackageInspector.bin
-    cp .\DenyPackageInspector.bin C:\Windows\System32\SIPolicy.p7b
-    ```
-3.  Restart your device and follow the steps in the [Create a catalog file for unsigned apps](#create-a-catalog-file-for-unsigned-apps) section.
-
-## Related topics
-
-[Download SignTool]( http://go.microsoft.com/fwlink/p/?LinkId=619283)
diff --git a/windows/keep-secure/index.md b/windows/keep-secure/index.md
index c400267003..08feae0e2e 100644
--- a/windows/keep-secure/index.md
+++ b/windows/keep-secure/index.md
@@ -18,18 +18,18 @@ Learn about keeping Windows 10 and Windows 10 Mobile secure.
 | - | - |
 | [Change history for Keep Windows 10 secure](change-history-for-keep-windows-10-secure.md) | This topic lists new and updated topics in the Keep Windows 10 secure documentation for [Windows 10 and Windows 10 Mobile](../index.md). |
 | [Block untrusted fonts in an enterprise](block-untrusted-fonts-in-enterprise.md) | To help protect your company from attacks which may originate from untrusted or attacker controlled font files, we’ve created the Blocking Untrusted Fonts feature. Using this feature, you can turn on a global setting that stops your employees from loading untrusted fonts processed using the Graphics Device Interface (GDI) onto your network. Untrusted fonts are any font installed outside of the %windir%/Fonts directory. Blocking untrusted fonts helps prevent both remote (web-based or email-based) and local EOP attacks that can happen during the font file-parsing process. |
-| [Device Guard certification and compliance](device-guard-certification-and-compliance.md) | Device Guard is a combination of hardware and software security features that, when configured together, will lock a device down so that it can only run trusted applications. If the app isn’t trusted it can’t run, period. It also means that even if an attacker manages to get control of the Windows kernel, he or she will be much less likely to be able to run malicious executable code after the computer restarts because of how decisions are made about what can run and when. |
 | [Manage identity verification using Microsoft Passport](manage-identity-verification-using-microsoft-passport.md) | In Windows 10, Microsoft Passport replaces passwords with strong two-factor authentication on PCs and mobile devices. This authentication consists of a new type of user credential that is tied to a device and a Windows Hello (biometric) or PIN. |
 | [Windows Hello biometrics in the enterprise](windows-hello-in-enterprise.md) | Windows Hello is the biometric authentication feature that helps strengthen authentication and helps to guard against potential spoofing through fingerprint matching and facial recognition. |
 | [Configure S/MIME for Windows 10 and Windows 10 Mobile](configure-s-mime.md) | In Windows 10, S/MIME lets users encrypt outgoing messages and attachments so that only intended recipients who have a digital identification (ID), also known as a certificate, can read them. Users can digitally sign a message, which provides the recipients with a way to verify the identity of the sender and that the message hasn't been tampered with. |
 | [Install digital certificates on Windows 10 Mobile](installing-digital-certificates-on-windows-10-mobile.md) | Digital certificates bind the identity of a user or computer to a pair of keys that can be used to encrypt and sign digital information. Certificates are issued by a certification authority (CA) that vouches for the identity of the certificate holder, and they enable secure client communications with websites and services. |
+| [Device Guard deployment guide](device-guard-deployment-guide.md) | Device Guard is a combination of hardware and software security features that, when configured together, will lock a device down so that it can only run trusted applications. If the app isn’t trusted it can’t run, period. It also means that even if an attacker manages to get control of the Windows kernel, he or she will be much less likely to be able to run malicious executable code after the computer restarts because of how decisions are made about what can run and when. |
 | [Protect derived domain credentials with Credential Guard](credential-guard.md) | Introduced in Windows 10 Enterprise, Credential Guard uses virtualization-based security to isolate secrets so that only privileged system software can access them. Unauthorized access to these secrets can lead to credential theft attacks, such as Pass-the-Hash or Pass-The-Ticket. Credential Guard prevents these attacks by protecting NTLM password hashes and Kerberos Ticket Granting Tickets. |
 | [Protect your enterprise data using enterprise data protection (EDP)](protect-enterprise-data-using-edp.md) | With the increase of employee-owned devices in the enterprise, there’s also an increasing risk of accidental data leak through apps and services, like email, social media, and the public cloud, which are outside of the enterprise’s control. For example, when an employee sends the latest engineering pictures from their personal email account, copies and pastes product info into a tweet, or saves an in-progress sales report to their public cloud storage. |
 | [Use Windows Event Forwarding to help with intrusion detection](use-windows-event-forwarding-to-assist-in-instrusion-detection.md) | Learn about an approach to collect events from devices in your organization. This article talks about events in both normal operations and when an intrusion is suspected. |
 | [VPN profile options](vpn-profile-options.md) | Virtual private networks (VPN) let you give your users secure remote access to your company network. Windows 10 adds useful new VPN profile options to help you manage how users connect. |
 | [Windows security baselines](windows-security-baselines.md) | Learn why you should use security baselines in your organization. |
 | [Security technologies](security-technologies.md) | Learn more about the different security technologies that are available in Windows 10 and Windows 10 Mobile. |
-| [Enterprise security guides](windows-10-enterprise-security-guides.md) | Get proven guidance to help you better secure and protect your enterprise by using technologies such as Credential Guard, Device Guard, Microsoft Passport, and Windows Hello. This section offers technology overviews and step-by-step guides. |
+| [Enterprise security guides](windows-10-enterprise-security-guides.md) | Get proven guidance to help you better secure and protect your enterprise by using technologies such as Credential Guard, Microsoft Passport, and Windows Hello. This section offers technology overviews and step-by-step guides. |
  
 ## Related topics
 
diff --git a/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md b/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md
index 55f3a36e0e..f915647f15 100644
--- a/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md
+++ b/windows/keep-secure/optional-create-a-code-signing-certificate-for-code-integrity-policies.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Optional: Create a code signing certificate for code integrity policies (Windows 10)
+# Optional: Create a code signing certificate for code integrity policies
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md b/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md
index 9b96e7267b..2715141f20 100644
--- a/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md
+++ b/windows/keep-secure/planning-and-getting-started-on-the-device-guard-deployment-process.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Planning and getting started on the Device Guard deployment process (Windows 10)
+# Planning and getting started on the Device Guard deployment process
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
index 0cfc7f0b0e..2c6b76c490 100644
--- a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
+++ b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
@@ -7,7 +7,7 @@ ms.mktglfcycl: deploy
 author: brianlic-msft
 ---
 
-# Requirements and deployment planning guidelines for Device Guard (Windows 10)
+# Requirements and deployment planning guidelines for Device Guard
 
 **Applies to**
 -   Windows 10
diff --git a/windows/keep-secure/windows-10-enterprise-security-guides.md b/windows/keep-secure/windows-10-enterprise-security-guides.md
index 30f130d499..a5c487491c 100644
--- a/windows/keep-secure/windows-10-enterprise-security-guides.md
+++ b/windows/keep-secure/windows-10-enterprise-security-guides.md
@@ -1,6 +1,6 @@
 ---
 title: Enterprise security guides (Windows 10)
-description: Get proven guidance to help you better secure and protect your enterprise by using technologies such as Credential Guard, Device Guard, Microsoft Passport, and Windows Hello. This section offers technology overviews and step-by-step guides.
+description: Get proven guidance to help you better secure and protect your enterprise by using technologies such as Credential Guard, Microsoft Passport, and Windows Hello. This section offers technology overviews and step-by-step guides.
 ms.assetid: 57134f84-bd4b-4b1d-b663-4a2d36f5a7f8
 ms.prod: w10
 ms.mktglfcycl: deploy
@@ -14,7 +14,7 @@ author: challum
 
 ## Purpose
 
-Get proven guidance to help you better secure and protect your enterprise by using technologies such as Credential Guard, Device Guard, Microsoft Passport, and Windows Hello. This section offers technology overviews and step-by-step guides.
+Get proven guidance to help you better secure and protect your enterprise by using technologies such as Credential Guard, Microsoft Passport, and Windows Hello. This section offers technology overviews and step-by-step guides.
 
 ## In this section
 
@@ -34,10 +34,6 @@ Get proven guidance to help you better secure and protect your enterprise by usi
 <td align="left"><p>[Control the health of Windows 10-based devices](protect-high-value-assets-by-controlling-the-health-of-windows-10-based-devices.md)</p></td>
 <td align="left"><p>This article details an end-to-end solution that helps you protect high-value assets by enforcing, controlling, and reporting the health of Windows 10-based devices.</p></td>
 </tr>
-<tr class="even">
-<td align="left"><p>[Device Guard deployment guide](device-guard-deployment-guide.md)</p></td>
-<td align="left"><p>Microsoft Device Guard is a feature set that consists of both hardware and software system integrity hardening features that revolutionize the Windows operating system’s security. Windows 10 employs Device Guard as well as code integrity and advanced hardware features such as CPU virtualization extensions, Trusted Platform Module, and second-level address translation to offer comprehensive modern security to its users. This guide explores the individual features in Device Guard as well as how to plan for, configure, and deploy them.</p></td>
-</tr>
 <tr class="odd">
 <td align="left"><p>[Microsoft Passport guide](microsoft-passport-guide.md)</p></td>
 <td align="left"><p>This guide describes the new Windows Hello and Microsoft Passport technologies that are part of the Windows 10 operating system. It highlights specific capabilities of these technologies that help mitigate threats from conventional credentials and provides guidance about how to design and deploy these technologies as part of your Windows 10 rollout.</p></td>
diff --git a/windows/whats-new/device-guard-overview.md b/windows/whats-new/device-guard-overview.md
index c96f390c98..28e92f028b 100644
--- a/windows/whats-new/device-guard-overview.md
+++ b/windows/whats-new/device-guard-overview.md
@@ -18,94 +18,16 @@ author: brianlic-msft
 -   Windows Server 2016
 
 Device Guard is a combination of enterprise-related hardware and software security features that, when configured together, will lock a device down so that it can only run trusted applications. If the app isn’t trusted it can’t run, period. It also means that even if an attacker manages to get control of the Windows kernel, he or she will be much less likely to be able to run malicious executable code after the computer restarts because of how decisions are made about what can run and when.
+
 Device Guard uses the new virtualization-based security in Windows 10 Enterprise to isolate the Code Integrity service from the Microsoft Windows kernel itself, letting the service use signatures defined by your enterprise-controlled policy to help determine what is trustworthy. In effect, the Code Integrity service runs alongside the kernel in a Windows hypervisor-protected container.
+
 For details on how to implement Device Guard, see [Device Guard deployment guide](../keep-secure/device-guard-deployment-guide.md).
+
 ## Why use Device Guard
 With thousands of new malicious files created every day, using traditional methods like signature-based detection to fight against malware provides an inadequate defense against new attacks. Device Guard on Windows 10 Enterprise changes from a mode where apps are trusted unless blocked by an antivirus or other security solutions, to a mode where the operating system trusts only apps authorized by your enterprise.
 Device Guard also helps protect against [zero day attacks](http://go.microsoft.com/fwlink/p/?linkid=534209) and works to combat the challenges of [polymorphic viruses](http://go.microsoft.com/fwlink/p/?LinkId=534210).
-### Advantages to using Device Guard
-You can take advantage of the benefits of Device Guard, based on what you turn on and use:
--   Helps provide strong malware protection with enterprise manageability
--   Helps provide the most advanced malware protection ever offered on the Windows platform
--   Offers improved tamper resistance
-## How Device Guard works
-Device Guard restricts the Windows 10 Enterprise operating system to only running code that’s signed by trusted signers, as defined by your Code Integrity policy through specific hardware and security configurations, including:
--   User Mode Code Integrity (UMCI)
--   New kernel code integrity rules (including the new Windows Hardware Quality Labs (WHQL) signing constraints)
--   Secure Boot with database (db/dbx) restrictions
--   Virtualization-based security to help protect system memory and kernel mode apps and drivers from possible tampering.
--   **Optional:** Trusted Platform Module (TPM) 1.2 or 2.0
-Device Guard works with your image-building process, so you can turn the virtualization-based security feature on for capable devices, configure your Code Integrity policy, and set any other operating system settings you require for Windows 10 Enterprise. After that, Device Guard works to help protect your devices:
-1.  Your device starts up using Universal Extensible Firmware Interface (UEFI) Secure Boot, so that boot kits can’t run and so that Windows 10 Enterprise starts before anything else.
-2.  After securely starting up the Windows boot components, Windows 10 Enterprise can start the Hyper-V virtualization-based security services, including Kernel Mode Code Integrity. These services help protect the system core (kernel), privileged drivers, and system defenses, like anti-malware solutions, by preventing malware from running early in the boot process, or in kernel after startup.
-3.  Device Guard uses UMCI to make sure that anything that runs in User mode, such as a service, a Universal Windows Platform (UWP) app, or a Classic Windows application is trusted, allowing only trusted binaries to run.
-4.  At the same time that Windows 10 Enterprise starts up, so too does the trusted platform module (TPM). TPM provides an isolated hardware component that helps protect sensitive information, such as user credentials and certificates.
-## Required hardware and software
-The following table shows the hardware and software you need to install and configure to implement Device Guard.
-<table>
-<colgroup>
-<col width="50%" />
-<col width="50%" />
-</colgroup>
-<thead>
-<tr class="header">
-<th align="left">Requirement</th>
-<th align="left">Description</th>
-</tr>
-</thead>
-<tbody>
-<tr class="odd">
-<td align="left"><p>Windows 10 Enterprise</p></td>
-<td align="left"><p>The PC must be running Windows 10 Enterprise.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>UEFI firmware version 2.3.1 or higher and Secure Boot</p></td>
-<td align="left"><p>To verify that the firmware is using UEFI version 2.3.1 or higher and Secure Boot, you can validate it against the [System.Fundamentals.Firmware.CS.UEFISecureBoot.ConnectedStandby](http://msdn.microsoft.com/library/windows/hardware/dn932807.aspx#system-fundamentals-firmware-cs-uefisecureboot-connectedstandby) Windows Hardware Compatibility Program requirement.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>Virtualization extensions</p></td>
-<td align="left"><p>The following virtualization extensions are required to support virtualization-based security:</p>
-<ul>
-<li>Intel VT-x or AMD-V</li>
-<li>Second Level Address Translation</li>
-</ul></td>
-</tr>
-<tr class="even">
-<td align="left"><p>Firmware lock</p></td>
-<td align="left"><p>The firmware setup should be locked to prevent other operating systems from starting and to prevent changes to the UEFI settings. You should also disable boot methods other than from the hard drive.</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>x64 architecture</p></td>
-<td align="left"><p>The features that virtualization-based security uses in the Windows hypervisor can only run on a 64-bit PC.</p></td>
-</tr>
-<tr class="even">
-<td align="left"><p>A VT-d or AMD-Vi IOMMU (Input/output memory management unit)</p></td>
-<td align="left"><p>In Windows 10, an IOMMU enhances system resiliency against memory attacks. ¹</p></td>
-</tr>
-<tr class="odd">
-<td align="left"><p>Secure firmware update process</p></td>
-<td align="left"><p>To verify that the firmware complies with the secure firmware update process, you can validate it against the [System.Fundamentals.Firmware.UEFISecureBoot](http://msdn.microsoft.com/library/windows/hardware/dn932805.aspx#system-fundamentals-firmware-uefisecureboot) Windows Hardware Compatibility Program requirement.</p><p>Device Guard relies on the security of the underlying hardware and firmware. It is critical to keep the firmware updated with the latest security fixes.</p></td>
-</tr>
-</tbody>
-</table>
- 
-## <a href="" id="before-you-begin"></a>Before using Device Guard in your company
-Before you can successfully use Device Guard, you must set up your environment and your policies.
-### Signing your apps
-Device Guard mode supports both UWP apps and Classic Windows applications. Trust between Device Guard and your apps happen when your apps are signed using a signature that you determine to be trustworthy. Not just any signature will work.
-This signing can happen by:
--   **Using the Windows Store publishing process.** All apps that come out of the Microsoft Store are automatically signed with special signatures that can roll-up to our certificate authority (CA) or to your own.
--   **Using your own digital certificate or public key infrastructure (PKI).** ISV's and enterprises can sign their own Classic Windows applications themselves, adding themselves to the trusted list of signers.
--   **Using a non-Microsoft signing authority.** ISV's and enterprises can use a trusted non-Microsoft signing authority to sign all of their own Classic Windows applications.
--   **Use the Device Guard signing portal**. Available in the Windows Store for Business, you can use a Microsoft web service to sign your Classic Windows applications. For more info, see [Device Guard signing](../manage/device-guard-signing-portal.md).
-### Code Integrity policy
-Before you can use the app protection included in Device Guard, you must create a Code Integrity policy using tools provided by Microsoft, but deployed using your current management tools, like Group Policy. The Code Integrity policy is a binary-encoded XML document that includes configuration settings for both the User and Kernel-modes of Windows 10 Enterprise, along with restrictions on Windows 10 script hosts. This policy restricts what code can run on a device.
-For the Device Guard feature, devices should only have Code Integrity pre-configured if the settings are provided by a customer for a customer-provided image.
-**Note**  This XML document can be signed in Windows 10 Enterprise, helping to add additional protection against administrative users changing or removing this policy.
- 
-### <a href="" id="virtualization-based-security-using-windows-10-hypervisor"></a>Virtualization-based security using Windows 10 Enterprise Hypervisor
-Windows 10 Enterprise Hypervisor introduces new capabilities around virtual trust levels, which helps Windows 10 Enterprise services to run in a protected environment, in isolation from the running operating system. Windows 10 Enterprise virtualization-based security helps protect kernel code integrity and helps to provide credential isolation for the local security authority (LSA). Letting the Kernel Code Integrity service run as a hypervisor-hosted service increases the level of protection around the root operating system, adding additional protections against any malware that compromises the kernel layer.
-**Important**  Device Guard devices that run Kernel Code Integrity with virtualization-based security must have compatible drivers - legacy drivers can be updated - and have all virtualization capabilities turned on. This includes virtualization extensions and input/output memory management unit (IOMMU) support.
- 
- 
- 
+## Virtualization-based security using Windows 10 Enterprise Hypervisor
+
+Windows 10 Enterprise Hypervisor introduces new capabilities around virtual trust levels, which helps Windows 10 Enterprise services to run in a protected environment, in isolation from the running operating system. Windows 10 Enterprise virtualization-based security helps protect kernel code integrity and helps to provide credential isolation for the local security authority (LSA). Letting the Kernel Code Integrity service run as a hypervisor-hosted service increases the level of protection around the root operating system, adding additional protections against any malware that compromises the kernel layer. 
+
+>**Important**&nbsp;&nbsp;Device Guard devices that run Kernel Code Integrity with virtualization-based security (VBS) must have compatible drivers (legacy drivers can be updated) and meet requirements for the hardware and firmware that support virtualization-based security. For more information, see [Hardware, firmware, and software requirements for Device Guard](../keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard)

From 42bb28e4dfe877a4c1a96154da4e917136e8da71 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 15 Jul 2016 09:36:48 -0700
Subject: [PATCH 35/69] Updated to include both IPv4 and IPv6

---
 windows/keep-secure/mandatory-settings-for-wip.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/mandatory-settings-for-wip.md b/windows/keep-secure/mandatory-settings-for-wip.md
index 9c265848d2..9a23e25d67 100644
--- a/windows/keep-secure/mandatory-settings-for-wip.md
+++ b/windows/keep-secure/mandatory-settings-for-wip.md
@@ -27,5 +27,5 @@ All sections provided for more info appear in either the [Create a Windows Infor
 |Pick your WIP protection level. |You must choose the level of protection level you want to apply to your WIP-protected content, including Override, Silent, or Block. For more info about where this area is and how to decide on your protection level, see the **Manage the EDP protection level for your enterprise data** section of the policy creation topics.|
 |Specify your corporate identity. |You must specify your corporate identity, usually expressed as your primary Internet domain (for example, contoso.com). For more info about where this area is and what it means, see the **Define your enterprise-managed corporate identity** section of the policy creation topics. |
 |Specify your Enterprise Network Domain Names. |You must specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected. For more info about where this area is and how to add your suffixes, see the table that appears in the **Choose where apps can access enterprise data** section of the policy creation topics. |
-|Specify your Enterprise IPv4 Ranges. |Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries. For more info about where this area is and what it means, see the table that appears in the **Define your enterprise-managed corporate identity** section of the policy creation topics. |
+|Specify your Enterprise IPv4 or IPv6 Ranges. |Specify the addresses for a valid IPv4 or IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries. For more info about where this area is and what it means, see the table that appears in the **Define your enterprise-managed corporate identity** section of the policy creation topics. |
 |Include your Data Recovery Agent (DRA) certificate. |This certificate makes sure that any of your WIP-encrypted data can be decrypted, even if the security keys are lost. For more info about where this area is and what it means, see the **Create and verify an Encrypting File System (EFS) DRA certificate for EDP** section of the policy creation topics. |
\ No newline at end of file

From 0e901ee45dc367875a0307977a8a2dabf0a66d4f Mon Sep 17 00:00:00 2001
From: JanKeller1 <v-jak@microsoft.com>
Date: Fri, 15 Jul 2016 09:52:31 -0700
Subject: [PATCH 36/69] Added to the chg history topic

---
 windows/keep-secure/change-history-for-keep-windows-10-secure.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/keep-secure/change-history-for-keep-windows-10-secure.md b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
index 2c19fa25f2..c9bbc186b5 100644
--- a/windows/keep-secure/change-history-for-keep-windows-10-secure.md
+++ b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
@@ -18,6 +18,7 @@ This topic lists new and updated topics in the [Keep Windows 10 secure](index.md
 |----------------------|-------------|
 |[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
 |[Windows Defender Advanced Threat Protection](windows-defender-advanced-threat-protection.md) (multiple topics) | Updated |
+|[Device Guard deployment guide](device-guard-deployment-guide.md) (multiple topics) | Updated |
 
 
 ## June 2016

From 58c3cf81b95b0df8133fb5af8a02d7b7939cd17e Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 15 Jul 2016 10:17:23 -0700
Subject: [PATCH 37/69] Fixing image issue

---
 .../create-edp-policy-using-intune.md         | 540 +++++++++++-------
 1 file changed, 337 insertions(+), 203 deletions(-)

diff --git a/windows/keep-secure/create-edp-policy-using-intune.md b/windows/keep-secure/create-edp-policy-using-intune.md
index 81f4eb2745..7f51444b81 100644
--- a/windows/keep-secure/create-edp-policy-using-intune.md
+++ b/windows/keep-secure/create-edp-policy-using-intune.md
@@ -27,315 +27,449 @@ We've received some great feedback from you, our Windows 10 Insider Preview cust
 Note that if you exit the **Policy** page before you've saved your new policy, your existing deployments won't be affected. However, if you save the policy without reconfiguring your apps, an updated policy will be deployed to your employees with an empty app rules list.
  
 ## Add an EDP policy
-After you’ve installed and set up Intune for your organization, you must create an EDP-specific policy.
+After you’ve set up Intune for your organization, you must create an EDP-specific policy.
 
 **To add an EDP policy**
 1.  Open the Intune administration console, and go to the **Policy** node, and then click **Add Policy** from the **Tasks** area.
 
-2.  Go to **Windows**, click the **Enterprise Data Protection (Windows 10 and Mobile and later) policy**, pick the EDP template, click **Create and Deploy a Custom Policy**, and then click **Create Policy**.
+2.  Go to **Windows**, click the **Enterprise data protection (Windows 10 Desktop and Mobile and later) policy**, click **Create and Deploy a Custom Policy**, and then click **Create Policy**.
 
     ![Microsoft Intune: Create your new policy from the New Policy screen](images/intune-createnewpolicy.png)
 
 3.  Type a name (required) and an optional description for your policy into the **Name** and **Description** boxes.
 
-    ![Microsoft Intune: Fill out the required Name and optional Description fields](images/intune-namedescription.png)
+    ![Microsoft Intune: Fill out the required Name and optional Description fields](images/intune-generalinfo.png)
 
-## Add individual apps to your Protected App list
+### Add app rules to your policy
 During the policy-creation process in Intune, you can choose the apps you want to give access to your enterprise data through EDP. Apps included in this list can protect data on behalf of the enterprise and are restricted from copying or moving enterprise data to unprotected apps.
 
-The steps to add your apps are based on the type of app it is; either a Universal Windows Platform (UWP) app, or a signed Desktop app, also known as a Classic Windows application.
+The steps to add your app rules are based on the type of rule template being applied. You can add a store app (also known as a Universal Windows Platform (UWP) app), a signed desktop app (also known as a Classic Windows app), or an AppLocker policy file.
 
->**Important**<br>EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary and will encrypt all files they create or modify, meaning that they could encrypt personal data and cause data loss during the revocation process. Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your **Protected App** list.<p>
+>**Important**<br>
+EDP-aware apps are expected to prevent enterprise data from going to unprotected network locations and to avoid encrypting personal data. On the other hand, EDP-unaware apps might not respect the corporate network boundary, and EDP-unaware apps will encrypt all files they create or modify. This means that they could encrypt personal data and cause data loss during the revocation process.<p>Care must be taken to get a support statement from the software provider that their app is safe with EDP before adding it to your App Rules list. If you don’t get this statement, it’s possible that you could experience app compat issues due to an app losing the ability to access a necessary file after revocation.
 
->**Note**<br>If you want to use **File hash** or **Path** rules, instead of Publisher rules, you must follow the steps in the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic.
+<p>
+>**Note**<br>
+If you want to use **File hash** or **Path** rules, instead of **Publisher** rules, you must follow the steps in the [Add apps using Microsoft Intune and custom URI](add-apps-to-protected-list-using-custom-uri.md) topic.
 
-**To add a UWP app**
+#### Add a store app rule to your policy
+For this example, we’re going to add Microsoft OneNote, a store app, to the **App Rules** list.
 
-1.  From the **Configure the following apps to be protected by EDP** table in the **Protected Apps** area, click **Add.**
+**To add a store app**
+1.	From the **App Rules** area, click **Add**.
 
-2.  Click **Universal App**, type the **Publisher Name** and the **Product Name** into the associated boxes, and then click **OK**. If you don't have the publisher or product name, you can find them for both desktop devices and Windows 10 Mobile phones by following these steps.
+    The **Add App Rule** box appears.
 
-    **To find the Publisher and Product name values for Microsoft Store apps without installing them**
+        ![Microsoft Intune, Add a store app to your policy](images/intune-add-uwp-apps.png)
 
-    1.  Go to the [Windows Store for Business](http://go.microsoft.com/fwlink/p/?LinkID=722910) website, and find your app. For example, Microsoft OneNote.
-    
-        >**Note**<br>If your app is already installed on desktop devices, you can use the AppLocker local security policy MMC snap-in to gather the info for adding the app to the **Protected App** list. For info about how to do this, see the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic.
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Microsoft OneNote*.
 
-    2.  Copy the ID value from the app URL. For example, Microsoft OneNote's ID URL is https://www.microsoft.com/store/apps/onenote/9wzdncrfhvjl, and you'd copy the ID value, `9wzdncrfhvjl`.
+3.	Click **Allow** from the **Enterprise data protection mode** drop-down list.
+
+    Allow turns on EDP, helping to protect that app’s corporate data through the enforcement of EDP restrictions. Instructions for exempting an app are included in the [Exempt apps from EDP restrictions](#exempt-apps-from-edp-restrictions) section of this topic.
+
+4.	Pick **Store App** from the **Rule template** drop-down list.
+
+    The box changes to show the store app rule options.
+
+5.	Type the name of the app and the name of its publisher, and then click **OK**. For this UWP app example, the **Publisher** is`CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US` and the **Product name** is `Microsoft.Office.OneNote`.
+
+If you don't know the publisher or product name, you can find them for both desktop devices and Windows 10 Mobile phones by following these steps.
+
+**To find the Publisher and Product Name values for Store apps without installing them**
+1.	Go to the [Windows Store for Business](http://go.microsoft.com/fwlink/p/?LinkID=722910) website, and find your app. For example, *Microsoft OneNote*.
+
+    >**Note**<br>
+    If your app is already installed on desktop devices, you can use the AppLocker local security policy MMC snap-in to gather the info for adding the app to the protected apps list. For info about how to do this, see the [Add apps using Microsoft Intune and custom URI](add-apps-to-protected-list-using-custom-uri.md) topic.
+
+2.	Copy the ID value from the app URL. For example, Microsoft OneNote's ID URL is https://www.microsoft.com/store/apps/onenote/9wzdncrfhvjl, and you'd copy the ID value, `9wzdncrfhvjl`.
+
+3.	In a browser, run the Store for Business portal web API, to return a JavaScript Object Notation (JSON) file that includes the publisher and product name values. For example, run https://bspmts.mp.microsoft.com/v1/public/catalog/Retail/Products/9wzdncrfhvjl/applockerdata, where `9wzdncrfhvjl` is replaced with your ID value.
 
-    3.  In a browser, run the Store for Business portal web API, to return a JavaScript Object Notation (JSON) file that includes the publisher and product name values. For example, run https://bspmts.mp.microsoft.com/v1/public/catalog/Retail/Products/*9wzdncrfhvjl*/applockerdata, where *9wzdncrfhvjl* is replaced with your ID value.
-    <p>
     The API runs and opens a text editor with the app details.
 
         ``` json
-        {
-          "packageIdentityName": "Microsoft.Office.OneNote",
-          "publisherCertificateName": "CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US"
-        }
+            {
+                "packageIdentityName": "Microsoft.Office.OneNote",
+                "publisherCertificateName": "CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US"
+            }
         ```
-    4.  Copy the `publisherCertificateName` value into the **Publisher Name** box and copy the `packageIdentityName` value into the **Product Name** box of Intune.
+4. Copy the `publisherCertificateName` value into the **Publisher Name** box and copy the `packageIdentityName` value into the **Product Name** box of Intune.
+
+    >**Important**<br>
+    The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as `CN=` followed by the `windowsPhoneLegacyId`.<p>For example:<br>
     
-    >**Important**<br>The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as “CN=” followed by the `windowsPhoneLegacyId`.
-    <p>For example:<br>
-     ``` json
+    ``` json
         {
-          "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
-        }
-       ```
-       
-    ![Microsoft Intune: Add a UWP app to the Protected Apps list](images/intune-addapps.png)
+	       "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
+	    }
+    ```
 
-    **To find the Publisher and Product name values for apps installed on Windows 10 Mobile phones**
+**To find the Publisher and Product Name values for apps installed on Windows 10 mobile phones**
+1.	If you need to add mobile apps that aren't distributed through the Store for Business, you must use the **Windows Device Portal** feature.
 
-    1.  If you need to add mobile apps that aren't distributed through the Store for Business, you must use the **Windows Device Portal** feature.
+    >**Note**<br>
+    Your PC and phone must be on the same wireless network.
+
+2.	On the Windows Phone, go to **Settings**, choose **Update & security**, and then choose **For developers**.
+
+3.	In the **For developers** screen, turn on **Developer mode**, turn on **Device Discovery**, and then turn on **Device Portal**.
+
+4.	Copy the URL in the **Device Portal** area into your device's browser, and then accept the SSL certificate.
+
+5.	In the **Device discovery** area, press **Pair**, and then enter the PIN into the website from the previous step.
+
+6.	On the **Apps** tab of the website, you can see details for the running apps, including the publisher and product names.
+
+7.	Start the app for which you're looking for the publisher and product name values.
+
+8.	Copy the `publisherCertificateName` value and paste it into the **Publisher Name** box and the `packageIdentityName` value into the **Product Name** box of Intune.
+
+    >**Important**<br>
+    The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as `CN=` followed by the `windowsPhoneLegacyId`.<p>For example:<br>
     
-        >**Note**<br>Your PC and phone must be on the same wireless network.
-
-    2.  On the Windows Phone, go to **Settings**, choose **Update & security**, and then choose **For developers**.
-
-    3.  In the **For developers** screen, turn on **Developer mode**, turn on **Device Discovery**, and then turn on **Device Portal**.
-
-    4.  Copy the URL in the **Device Portal** area into your device's browser, and then accept the SSL certificate.
-
-    5.  In the **Device discovery** area, press **Pair**, and then enter the PIN into the website from the previous step.
-
-    6.  On the **Apps** tab of the website, you can see details for the running apps, including the publisher and product names.
-    
-    7. Start the app for which you're looking for the publisher and product name values
-
-    8.  Copy the `publisherCertificateName` value and paste it into the **Publisher Name** box and the `packageIdentityName` value into the **Product Name** box of Intune.
-    
-        >**Important**<br>The JSON file might also return a `windowsPhoneLegacyId` value for both the **Publisher Name** and **Product Name** boxes. This means that you have an app that’s using a XAP package and that you must set the **Product Name** as `windowsPhoneLegacyId`, and set the **Publisher Name** as “CN=” followed by the `windowsPhoneLegacyId`.
-    <p>For example:<br>
-     ``` json
+    ``` json
         {
-          "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
-        }
-       ```
+	       "windowsPhoneLegacyId": "ca05b3ab-f157-450c-8c49-a1f127f5e71d",
+	    }
+    ```
 
-**To add a Classic Windows application**
+#### Add a desktop app rule to your policy
+For this example, we’re going to add Internet Explorer, a desktop app, to the **App Rules** list.
 
-1.  From the **Configure the following apps to be protected by EDP** table in the **Protected Apps** area, click **Add.**
-<p>A dialog box appears, letting you pick whether the app is a **Universal App** or a **Desktop App**.
+**To add a desktop app**
+1.	From the **App Rules** area, click **Add**.
+
+    The **Add App Rule** box appears.
+
+        ![Microsoft Intune, Add a desktop app to your policy](images/intune-add-classic-apps.png)
+
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Internet Explorer*.
+
+3.	Click **Allow** from the **Enterprise data protection mode** drop-down list.
+
+    Allow turns on EDP, helping to protect that app’s corporate data through the enforcement of EDP restrictions. Instructions for exempting an app are included in the [Exempt apps from EDP restrictions](#exempt-apps-from-edp-restrictions) section of this topic.
+
+4.	Pick **Desktop App** from the **Rule template** drop-down list.
+
+    The box changes to show the store app rule options.
+
+5. Pick the options you want to include for the app rule (see table), and then click **OK**.
 
-2.  Click **Desktop App**, pick the options you want (see table), and then click **OK**.
     <table>
         <tr>
             <th>Option</th>
             <th>Manages</th>
         </tr>
         <tr>
-            <td>All fields left as "*"</td>
+            <td>All fields left as “*”</td>
             <td>All files signed by any publisher. (Not recommended.)</td>
         </tr>
         <tr>
             <td><strong>Publisher</strong> selected</td>
             <td>All files signed by the named publisher.<p>This might be useful if your company is the publisher and signer of internal line-of-business apps.</td>
         </tr>
-         <tr>
+        <tr>
             <td><strong>Publisher</strong> and <strong>Product Name</strong> selected</td>
             <td>All files for the specified product, signed by the named publisher.</td>
-        </tr>  
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, and <strong>File Name</strong> selected</td>
+        </tr>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, and <strong>Binary name</strong> selected</td>
             <td>Any version of the named file or package for the specified product, signed by the named publisher.</td>
         </tr>
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>File Name</strong>, and <strong>File Version, Exactly</strong> selected</td>
-            <td>Specified version of the named file or package for the specified product, signed by the named publisher.</td>
-        </tr>
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>File Name</strong>, and <strong>File Version, And above</strong> selected</td>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>Binary name</strong>, and <strong>File Version, and above</strong>, selected</td>
             <td>Specified version or newer releases of the named file or package for the specified product, signed by the named publisher.<p>This option is recommended for enlightened apps that weren't previously enlightened.</td>
         </tr>
-         <tr>
-            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>File Name</strong>, and <strong>File Version, And below</strong> selected</td>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>Binary name</strong>, and <strong>File Version, And below</strong> selected</td>
             <td>Specified version or older releases of the named file or package for the specified product, signed by the named publisher.</td>
-        </tr>                                            
+        </tr>
+        <tr>
+            <td><strong>Publisher</strong>, <strong>Product Name</strong>, <strong>Binary name</strong>, and <strong>File Version, Exactly</strong> selected</td>
+            <td>Specified version of the named file or package for the specified product, signed by the named publisher.</td>
+        </tr>
     </table>
 
 If you’re unsure about what to include for the publisher, you can run this PowerShell command:
 
-``` ps1
-Get-AppLockerFileInformation -Path "<path of the exe>"
+```ps1
+    Get-AppLockerFileInformation -Path "<path of the exe>"
 ```
-Where `"<path_of_the_exe>"` goes to the location of the app on the device. For example, `Get-AppLockerFileInformation -Path "C:\Program Files\Internet Explorer\iexplore.exe"`.
+Where `"<path of the exe>"` goes to the location of the app on the device. For example, `Get-AppLockerFileInformation -Path "C:\Program Files\Internet Explorer\iexplore.exe"`.
 
 In this example, you'd get the following info:
 
 ``` json
-Path                                          Publisher
-----                                          ---------
-%PROGRAMFILES%\INTERNET EXPLORER\IEXPLORE.EXE O=MICROSOFT CORPORATION, L=REDMOND, S=WASHINGTON, C=US\INTERNET EXPLOR...
+    Path                   Publisher
+    ----                   ---------
+    %PROGRAMFILES%\INTERNET EXPLORER\IEXPLORE.EXE O=MICROSOFT CORPORATION, L=REDMOND, S=WASHINGTON, C=US\INTERNET EXPLOR...
 ```
 Where the text, `O=MICROSOFT CORPORATION, L=REDMOND, S=WASHINGTON, C=US` is the publisher name to enter in the **Publisher Name** box.
 
-![Microsoft Intune: Add a Classic Windows app to the Protected Apps list](images/intune-add-desktop-app.png)
+#### Add an AppLocker policy file
+For this example, we’re going to add an AppLocker XML file to the **App Rules** list. You’ll use this option if you want to add multiple apps at the same time. For more info about AppLocker, see the [AppLocker](https://technet.microsoft.com/en-us/itpro/windows/keep-secure/applocker-overview) content.
 
-## Exempt apps from EDP restrictions
+**To create an app rule and xml file using the AppLocker tool**
+1.	Open the Local Security Policy snap-in (SecPol.msc).
+    
+2.	In the left pane, expand **Application Control Policies**, expand **AppLocker**, and then click **Packaged App Rules**.
+
+    ![Local security snap-in, showing the Packaged app Rules](images/intune-local-security-snapin.png)
+
+3.	Right-click in the right-hand pane, and then click **Create New Rule**.
+
+    The **Create Packaged app Rules** wizard appears.
+
+4. On the **Before You Begin** page, click **Next**.
+
+    ![Create Packaged app Rules wizard, showing the Before You Begin page](images/intune-applocker-before-begin.png)
+
+5. On the **Permissions** page, make sure the **Action** is set to **Allow** and the **User or group** is set to **Everyone**, and then click **Next**.
+
+    ![Create Packaged app Rules wizard, showing the Before You Begin page](images/intune-applocker-permissions.png)
+
+6.	On the **Publisher** page, click **Select** from the **Use an installed packaged app as a reference** area.
+
+    ![Create Packaged app Rules wizard, showing the Publisher](images/intune-applocker-publisher.png)
+
+7. In the **Select applications** box, pick the app that you want to use as the reference for your rule, and then click **OK**. For this example, we’re using Microsoft Photos.
+
+    ![Create Packaged app Rules wizard, showing the Select applications page](images/intune-applocker-select-apps.png)
+
+8. On the updated **Publisher** page, click **Create**.
+
+    ![Create Packaged app Rules wizard, showing the Microsoft Photos on the Publisher page](images/intune-applocker-publisher-with-app.png)
+
+9. Review the Local Security Policy snap-in to make sure your rule is correct.
+
+    ![Local security snap-in, showing the new rule](images/intune-local-security-snapin-updated.png)
+
+10.	In the left pane, right-click on **AppLocker**, and then click **Export policy**.
+
+    The **Export policy** box opens, letting you export and save your new policy as XML.
+
+    ![Local security snap-in, showing the Export Policy option](images/intune-local-security-export.png)
+
+11.	In the **Export policy** box, browse to where the policy should be stored, give the policy a name, and then click **Save**.
+
+    The policy is saved and you’ll see a message that says 1 rule was exported from the policy.
+
+    **Example XML file**<br>
+    This is the XML file that AppLocker creates for Microsoft Photos.
+
+    ```xml
+     <AppLockerPolicy Version="1">
+        <RuleCollection Type="Exe" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Msi" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Script" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Dll" EnforcementMode="NotConfigured" />
+        <RuleCollection Type ="Appx" EnforcementMode="NotConfigured">
+            <FilePublisherRule Id="5e0c752b-5921-4f72-8146-80ad5f582110" Name="Microsoft.Windows.Photos, version 16.526.0.0 and above, from Microsoft Corporation" Description="" UserOrGroupSid="S-1-1-0" Action="Allow">
+                <Conditions>
+                    <FilePublisherCondition PublisherName="CN=Microsoft Corporation, O=Microsoft Corporation, L=Redmond, S=Washington, C=US" ProductName="Microsoft.Windows.Photos" BinaryName="*">
+                        <BinaryVersionRange LowSection="16.526.0.0" HighSection="*" />
+                    </FilePublisherCondition>
+                </Conditions>
+            </FilePublisherRule>
+        </RuleCollection>
+	</AppLockerPolicy>
+    ```
+12.	After you’ve created your XML file, you need to import it by using Microsoft Intune.
+
+**To import your Applocker policy file app rule using Microsoft Intune**
+1.	From the **App Rules** area, click **Add**.
+    
+    The **Add App Rule** box appears.
+
+        ![Microsoft Intune, Importing your AppLocker policy file using Intune](images/intune-add-applocker-xml-file.png)
+
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Allowed app list*.
+
+3.	Click **Allow** from the **Enterprise data protection mode** drop-down list.
+
+    Allow turns on EDP, helping to protect that app’s corporate data through the enforcement of EDP restrictions. Instructions for exempting an app are included in the [Exempt apps from EDP restrictions](#exempt-apps-from-edp-restrictions) section of this topic.
+
+4.	Pick **AppLocker policy file** from the **Rule template** drop-down list.
+
+    The box changes to let you import your AppLocker XML policy file.
+
+5.	Click **Import**, browse to your AppLocker XML file, click **Open**, and then click **OK** to close the **Add App Rule** box.
+
+    The file is imported and the apps are added to your **App Rules** list.
+
+#### Exempt apps from EDP restrictions
 If you're running into compatibility issues where your app is incompatible with EDP, but still needs to be used with enterprise data, you can exempt the app from the EDP restrictions. This means that your apps won't include auto-encryption or tagging and won't honor your network restrictions. It also means that your exempted apps might leak.
 
-**To exempt an UWP app**
-
-1.  Follow the **Add a UWP app** steps in the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic, through to Step 11.
-
-2.  In the **OMA-URI** box at Step 12, type `./Vendor/MSFT/AppLocker/EnterpriseDataProtection/<your_enterprise_name>edpexempt/StoreApp EXE`.<p>Where **edpexempt** is added as a substring, making the app exempt.
-
-3.  Open File Explorer, go to the location where you saved your new XML file, and open it using an XML editor, such as Notepad.
-
-4.  Copy the text that has a **Type** of Appx, within in the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
-
-    ``` 
-    <RuleCollection Type="Appx" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
-    ```
+**To exempt a store app, a desktop app, or an AppLocker policy file app rule**
+1.	From the **App Rules** area, click **Add**.
     
-5.  Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
+    The **Add App Rule** box appears.
 
-**To exempt a Classic Windows application**
+2.	Add a friendly name for your app into the **Title** box. In this example, it’s *Exempt apps list*.
 
-1.  Follow the **Add a Classic Windows application app** steps in the [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md) topic, through to Step 11.
+3.	Click **Exempt** from the **Enterprise data protection mode** drop-down list.
 
-2.  In the **OMA-URI** box at Step 12, type `./Vendor/MSFT/AppLocker/EnterpriseDataProtection/<your_enterprise_name>edpexempt/EXE`.<p>Where **edpexempt** is added as a substring, making the app exempt.
+    Be aware that when you exempt apps, they’re allowed to bypass the EDP restrictions and access your corporate data. To allow apps, see the [Add app rules to your policy](#add-app-rules-to-your-policy) section of this topic.
 
-3.  Open File Explorer, go to the location where you saved your new XML file, and open it using an XML editor, such as Notepad.
+4.	Fill out the rest of the app rule info, based on the type of rule you’re adding:
 
-4.  Copy the text that has a **Type** of EXE, within in the **RuleCollection** tags, and then go back to Intune and paste the text into the **Value** box of the **Add or edit OMA-URI Setting** box. For example:
+    - **Store app.** Follow the **Publisher** and **Product name** instructions in the [Add a store app rule to your policy](#add-a-store-app-rule-to-your-policy) section of this topic.
 
-    ``` 
-    <RuleCollection Type="Exe" EnforcementMode="Enabled"><your_xml_rules_here></RuleCollection>
-    ```
+    - **Desktop app.** Follow the **Publisher**, **Product name**, **Binary name**, and **Version** instructions in the [Add a desktop app rule to your policy](#add-a-desktop-app-rule-to-your-policy) section of this topic.
 
-5.  Click **OK** to close the **Add or edit OMA-URI Setting** box, and then click **Save Policy**.<p>After saving the policy, you’ll need to deploy it to your employee’s devices. For more info, see the [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md) topic.
+    - **AppLocker policy file.** Follow the **Import** instructions in the [Add an AppLocker policy file](#add-an-applocker-policy-file) section of this topic, using a list of exempted apps.
 
-## Manage the EDP protection level for your enterprise data
+5.	Click **OK**.
+
+### Manage the EDP protection mode for your enterprise data
 After you've added the apps you want to protect with EDP, you'll need to apply a management and protection mode.
 
-We recommend that you start with **Silent** or **Override** while verifying with a small group that you have the right apps on your **Protected Apps** list. After you're done, you can change to your final enforcement policy, either **Override** or **Block**.
+We recommend that you start with **Silent** or **Override** while verifying with a small group that you have the right apps on your protected apps list. After you're done, you can change to your final enforcement policy, either **Override** or **Block**.
 
-<table>
-    <tr>
-        <th>Mode</th>
-        <th>Description</th>
-    </tr>
-    <tr>
-        <td>Block</td>
-        <td>EDP looks for inappropriate data sharing practices and stops the employee from completing the action. This can include sharing info across non-enterprise-protected apps in addition to sharing enterprise data between other people and devices outside of your enterprise.</td>
-    </tr>
-    <tr>
-        <td>Override</td>
-        <td>EDP looks for inappropriate data sharing, warning employees if they do something deemed potentially unsafe. However, this management mode lets the employee override the policy and share the data, logging the action to your audit log, accessible through the [Reporting CSP](http://go.microsoft.com/fwlink/p/?LinkID=746459).</td>
-    </tr>
-    <tr>
-        <td>Silent</td>
-        <td>EDP runs silently, logging inappropriate data sharing, without blocking anything that would’ve been prompted for employee interaction while in Override mode. Unallowed actions, like apps inappropriately trying to access a network resource or EDP-protected data, are still blocked.</td>
-    </tr>
-    <tr>
-        <td>Off</td>
-        <td>EDP is turned off and doesn't help to protect or audit your data.<p>After you turn off EDP, an attempt is made to decrypt any closed EDP-tagged files on the locally attached drives.</td>
-    </tr> 
-</table>  
+|Mode |Description |
+|-----|------------|
+|Block |EDP looks for inappropriate data sharing practices and stops the employee from completing the action. This can include sharing info across non-enterprise-protected apps in addition to sharing enterprise data between other people and devices outside of your enterprise.|
+|Override |EDP looks for inappropriate data sharing, warning employees if they do something deemed potentially unsafe. However, this management mode lets the employee override the policy and share the data, logging the action to your audit log, accessible through the [Reporting CSP](http://go.microsoft.com/fwlink/p/?LinkID=746459). |
+|Silent |EDP runs silently, logging inappropriate data sharing, without blocking anything that would’ve been prompted for employee interaction while in Override mode. Unallowed actions, like apps inappropriately trying to access a network resource or EDP-protected data, are still blocked.|
+|Off (not recommended) |EDP is turned off and doesn't help to protect or audit your data.<p>After you turn off EDP, an attempt is made to decrypt any closed EDP-tagged files on the locally attached drives.|
 
-![Microsoft Intune: Add the protection level for your Protected Apps list](images/intune-encryption-level.png)
+![Microsoft Intune, Set the protection mode for your data](images/intune-protection-mode.png)
 
-## Define your enterprise-managed identity domains
-Specify your company’s enterprise identity, expressed as your primary internet domain. For example, if your company is Contoso, its enterprise identity might be contoso.com. The first listed domain (in this example, contoso.com) is the primary enterprise identity string used to tag files protected by any app on the **Protected App** list.
+### Define your enterprise-managed corporate identity
+Corporate identity, usually expressed as your primary Internet domain (for example, contoso.com), helps to identify and tag your corporate data from apps you’ve marked as protected by EDP. For example, emails using contoso.com are identified as being corporate and are restricted by your enterprise data protection policies.
 
-You can also specify all the domains owned by your enterprise that are used for user accounts, separating them with the "|" character. For example, if Contoso also has some employees with email addresses or user accounts on the fabrikam.com domain, you would use contoso.com|fabrikam.com.
+You can specify multiple domains owned by your enterprise by separating them with the "|" character. For example, (`contoso.com|newcontoso.com`). With multiple domains, the first one is designated as your corporate identity and all of the additional ones as being owned by the first one. We strongly recommend that you include all of your email address domains in this list.
 
-This list of managed identity domains, along with the primary domain, make up the identity of your managing enterprise. User identities (user@domain) that end in any of the domains on this list, are considered managed.
+**To add your corporate identity**
+- Type the name of your corporate identity into the **Corporate identity** field. For example, `contoso.com` or `contoso.com|newcontoso.com`.
 
-**To add your primary domain**
+    ![Microsoft Intune, Set your primary Internet domains](images/intune-corporate-identity.png)
 
--   Type the name of your primary domain into the **Primary domain** field. For example, *contoso.com*.<p>
-If you have multiple domains, you must separate them with the "|" character. For example, `contoso.com|fabrikam.com`.
+### Choose where apps can access enterprise data
+After you've added a protection mode to your apps, you'll need to decide where those apps can access enterprise data on your network.
 
-    ![Microsoft Intune: Add the primary internet domain for your enterprise identity](images/intune-primary-domain.png)
-
-## Choose where apps can access enterprise data
-After you've added a protection mode to your apps, you'll need to decide where those apps can access enterprise data on your network.<p>
-There are no default locations included with EDP, you must add each of your network locations. This area applies to any network endpoint device that gets an IP address in your enterprise’s range and is also bound to one of your enterprise domains, including SMB shares.  Local file system locations should just maintain encryption (for example, on local NTFS, FAT, ExFAT). 
+There are no default locations included with EDP, you must add each of your network locations. This area applies to any network endpoint device that gets an IP address in your enterprise’s range and is also bound to one of your enterprise domains, including SMB shares. Local file system locations should just maintain encryption (for example, on local NTFS, FAT, ExFAT).
 
 >**Important**<br>
--   Every EDP policy should include policy that defines your enterprise network locations.<p>
+- Every EDP policy should include policy that defines your enterprise network locations.<p>
 - Classless Inter-Domain Routing (CIDR) notation isn’t supported for EDP configurations.
 
-**To specify where your protected apps can find and send enterprise data on the network**
+**To define where your protected apps can find and send enterprise data on you network**
 
-1.  Add additional network locations your apps can access by clicking **Add**, typing a description into the **Description** box, and then choosing your location type, including:
+1. Add additional network locations your apps can access by clicking **Add**.
+
+    The **Add or edit corporate network definition** box appears.
+
+2.	Type a name for your corporate network element into the **Name** box, and then pick what type of network element it is, from the **Network element** drop-down box. This can include any of the options in the following table.
+
+    ![Microsoft Intune, Add your corporate network definitions](images/intune-networklocation.png)
+<p>
     <table>
-        <tr>
-            <th>Network location type</th>
-            <th>Format</th>
-            <th>Description</th>
-        </tr>
-        <tr>
-            <td>Enterprise Cloud Resources</td>
-            <td>**With proxy:**<p>contoso.sharepoint.com,proxy.contoso.com|<br>contoso.visualstudio.com,proxy.contoso.com<p>**Without proxy:**<p>contoso.sharepoint.com|contoso.visualstudio.com</td>
-            <td>Specify the cloud resources to be treated as corporate and protected by EDP.<p>For each cloud resource, you may also optionally specify an internal proxy server that routes your traffic through your Enterprise Internal Proxy Server.<p>If you have multiple resources, you must separate them using the "|" delimiter. If you don’t use proxy servers, you must also include the "," delimiter just before the "|". For example:<p>`URL <,proxy>|URL <,proxy>`<p>If Windows is unable to determine whether an app should be allowed to connect to a network resource, it will automatically block the connection. If instead you want Windows to allow the connections to happen, you can add the `/*AppCompat*/` string to this setting. For example:<p>`URL <,proxy>|URL <,proxy>|/*AppCompat*/`</td>     
-        </tr>
-        <tr>
-            <td>Enterprise Network Domain Names</td>
-            <td>domain1.contoso.com,domain2.contoso.com</td>
-            <td>Specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected.<p>This setting works with the IP ranges settings to detect whether a network endpoint is enterprise or personal on private networks.<p>If you have multiple resources, you must separate them using the "," delimiter.</td>                
-        </tr>
-        <tr>
-            <td>Enterprise Proxy Servers</td>
-            <td>domain1.contoso.com:80;<br>domain2.contoso.com:137</td>
-            <td>Specify your externally-facing proxy server addresses, along with the port through which traffic is allowed and protected with EDP.<p>This list shouldn’t include any servers listed in the Enterprise Internal Proxy Servers list, which are used for EDP-protected traffic.<p>This setting is also required if you use a proxy in your network. If you don't have a proxy server, you might find that enterprise resources are unavailable when a client is behind a proxy, such as when you’re visiting another company and not on that company’s guest network.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
-        </tr>
-        <tr>
-            <td>Enterprise Internal Proxy Servers</td>
-            <td>proxy1.contoso.com;<br>proxy2.contoso.com</td>
-            <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
-        </tr>
-        <tr>
-            <td>Enterprise IPv4 Range</td>
-            <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,10.0.0.1-10.255.255.254</td>
-            <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
-        </tr>
-        <tr>
-            <td>Enterprise IPv6 Range</td>
-            <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:<br>ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110::-2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
-            <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
-        </tr>
-    </table>  
-    
-    ![Microsoft Intune: Choose the primary domain and the other network locations for protected apps](images/intune-networklocation.png)
+            <tr>
+                <th>Network location type</th>
+                <th>Format</th>
+                <th>Description</th>
+            </tr>
+            <tr>
+                <td>Enterprise Cloud Resources</td>
+                <td>**With proxy:** contoso.sharepoint.com,proxy.contoso.com|<br>contoso.visualstudio.com,proxy.contoso.com<p>**Without proxy:** contoso.sharepoint.com|contoso.visualstudio.com</td>
+                <td>Specify the cloud resources to be treated as corporate and protected by EDP.<p>For each cloud resource, you may also optionally specify an internal proxy server that routes your traffic through your Enterprise Internal Proxy Server.<p>If you have multiple resources, you must separate them using the "|" delimiter. If you don’t use proxy servers, you must also include the "," delimiter just before the "|". For example: `URL <,proxy>|URL <,proxy>`.<p>If Windows is unable to determine whether an app should be allowed to connect to a network resource, it will automatically block the connection. If instead you want Windows to allow the connections to happen, you can add the `/*AppCompat*/` string to this setting. For example: `URL <,proxy>|URL <,proxy>|/*AppCompat*/`</td>
+            </tr>
+            <tr>
+                <td>Enterprise Network Domain Names (Required)</td>
+                <td>corp.contoso.com,region.contoso.com</td>
+                <td>Specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected.<p>This setting works with the IP ranges settings to detect whether a network endpoint is enterprise or personal on private networks.<p>If you have multiple resources, you must separate them using the "," delimiter.</td>                
+            </tr>
+            <tr>
+                <td>Enterprise Proxy Servers</td>
+                <td>proxy.contoso.com:80;proxy2.contoso.com:137</td>
+                <td>Specify your externally-facing proxy server addresses, along with the port through which traffic is allowed and protected with EDP.<p>This list shouldn’t include any servers listed in the Enterprise Internal Proxy Servers list, which are used for EDP-protected traffic.<p>This setting is also required if you use a proxy in your network. If you don't have a proxy server, you might find that enterprise resources are unavailable when a client is behind a proxy, such as when you’re visiting another company and not on that company’s guest network.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>
+            </tr>
+            <tr>
+                <td>Enterprise Internal Proxy Servers</td>
+                <td>contoso.internalproxy1.com;contoso.internalproxy2.com</td>
+                <td>Specify the proxy servers your devices will go through to reach your cloud resources.<p>Using this server type indicates that the cloud resources you’re connecting to are enterprise resources.<p>This list shouldn’t include any servers listed in the Enterprise Proxy Servers list, which are used for non-EDP-protected traffic.<p>If you have multiple resources, you must separate them using the ";" delimiter.</td>                
+            </tr>
+            <tr>
+                <td>Enterprise IPv4 Range (Required, if not using IPv6)</td>
+                <td>**Starting IPv4 Address:** 3.4.0.1<br>**Ending IPv4 Address:** 3.4.255.254<br>**Custom URI:** 3.4.0.1-3.4.255.254,<br>10.0.0.1-10.255.255.254</td>
+                <td>Specify the addresses for a valid IPv4 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
+            </tr>
+            <tr>
+                <td>Enterprise IPv6 Range (Required, if not using IPv4)</td>
+                <td>**Starting IPv6 Address:** 2a01:110::<br>**Ending IPv6 Address:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff<br>**Custom URI:** 2a01:110:7fff:ffff:ffff:ffff:ffff:ffff,<br>fd00::-fdff:ffff:ffff:ffff:ffff:ffff:ffff:ffff</td>
+                <td>Specify the addresses for a valid IPv6 value range within your intranet. These addresses, used with your Enterprise Network Domain Names, define your corporate network boundaries.<p>If you have multiple ranges, you must separate them using the "," delimiter.</td>
+            </tr>
+            <tr>
+                <td>Neutral Resources</td>
+                <td>sts.contoso.com,sts.contoso2.com</td>
+                <td>Specify your authentication redirection endpoints for your company.<p>These locations are considered enterprise or personal, based on the context of the connection before the redirection.<p>If you have multiple resources, you must separate them using the "," delimiter.</td>
+            </tr>           
+        </table>
 
-2.  Add as many locations as you need, and then click **OK**.<p>The **Add or Edit Enterprise Network Locations box** closes.
+3.	Add as many locations as you need, and then click **OK**.
 
-3.  In the **Use a data recovery certificate in case of data loss** box, click **Browse** to add a data recovery certificate for your policy.<p>After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the Data Recovery Agent (DRA) certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.<p>For steps about how to create and verify an EFS DRA certificate, see the [Create and verify an Encrypting File System (EFS) DRA certificate](create-and-verify-an-efs-dra-certificate.md) topic. For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.<p>
+    The **Add corporate network definition** box closes.
 
-    ![Microsoft Intune: Specify a data recovery certificate for your policy](images/intune-data-recovery.png)
+4. Decide if you want to Windows to look for additional network settings:
 
-## Choose your optional EDP-related settings
+    - **Enterprise Proxy Servers list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the proxy servers you specified in the network boundary definition as the complete list of proxy servers available on your network. If you clear this box, Windows will search for additional proxy servers in your immediate network.
+
+	- **Enterprise IP Ranges list is authoritative (do not auto-detect).** Click this box if you want Windows to treat the IP ranges you specified in the network boundary definition as the complete list of IP ranges available on your network. If you clear this box, Windows will search for additional IP ranges on any domain-joined devices connected to your network.
+
+	- **Show the enterprise data protection icon overlay on your allowed apps that are EDP-unaware in the Windows Start menu and on corporate file icons in the File Explorer.** Click this box if you want the enterprise data protection icon overlay to appear on corporate files or in the Start menu, on top the tiles for your unenlightened protected apps.
+
+5.	In the required **Upload a Data Recovery Agent (DRA) certificate to allow recovery of encrypted data** box, click **Browse** to add a data recovery certificate for your policy.
+
+        ![Microsoft Intune, Add your Data Recovery Agent (DRA) certificate](images/intune-data-recovery.png)
+
+    After you create and deploy your EDP policy to your employees, Windows will begin to encrypt your corporate data on the employees’ local device drive. If somehow the employees’ local encryption keys get lost or revoked, the encrypted data can become unrecoverable. To help avoid this possibility, the DRA certificate lets Windows use an included public key to encrypt the local data, while you maintain the private key that can unencrypt the data.
+
+    For steps about how to create and verify an EFS DRA certificate, see the [Create and verify an Encrypting File System (EFS) DRA certificate](create-and-verify-an-efs-dra-certificate.md) topic. For more info about how to find and export your data recovery certificate, see the [Data Recovery and Encrypting File System (EFS)](http://go.microsoft.com/fwlink/p/?LinkId=761462) topic.
+
+### Choose your optional EDP-related settings
 After you've decided where your protected apps can access enterprise data on your network, you’ll be asked to decide if you want to add any optional EDP settings.
 
-**To add your optional settings**
+![Microsoft Intune, Choose any additional, optional settings](images/intune-optional-settings.png)
 
-1.  Choose to set any or all of the optional EDP-related settings:
+**To set your optional settings**
+1.	Choose to set any or all of the optional settings:
 
-    -   **Allow the user to decrypt data that was created or edited by the apps configured above.** Clicking **Yes**, or turning off this setting in Intune, lets your employees right-click to decrypt their protected app data, along with the option to decrypt data in the **Save As** box and the **Save As** file picker . Clicking **No** removes the **Decrypt** option and saves all data for protected apps as enterprise-encrypted.
+    - **Show the Personal option in the File ownership menus of File Explorer and the Save As dialog box.** Determines whether users can see the Personal option for files within File Explorer and the **Save As** dialog box. The options are:
+    
+        - **Yes, or not configured (recommended).** Employees can choose whether a file is **Work** or **Personal** in File Explorer and the **Save As** dialog box. 
+	
+        - **No.** Hides the **Personal** option from employees. Be aware that if you pick this option, apps that use the **Save As** dialog box might encrypt new files as corporate data unless a different file path is given during the original file creation. After this happens, decryption of work files becomes more difficult.
 
-    -   **Protect app content when the device is in a locked state for the apps configured above.** Clicking **Yes** lets EDP help to secure protected app content when a mobile device is locked. We recommend turning this option on to help prevent data leaks from things such as email text that appears on the **Lock** screen of a Windows 10 Mobile phone.
+    - **Prevent corporate data from being accessed by apps when the device is locked. Applies only to Windows 10 Mobile**. Determines whether apps can show corporate data on a Windows 10 Mobile device **Lock** screen. The options are:
+	
+        - **Yes (recommended).** Stop apps from reading corporate data on Windows 10 Mobile device when the screen is locked.
+	
+        - **No, or not configured.**  Allows apps to read corporate data on Windows 10 Mobile device when the screen is locked.
 
-        ![Microsoft Intune: Optional EDP settings](images/intune-edpsettings.png)
+    - **Revoke encryption keys on unenroll.** Determines whether to revoke a user’s local encryption keys from a device when it’s unenrolled from enterprise data protection. If the encryption keys are revoked, a user no longer has access to encrypted corporate data. The options are:
 
-2.  Click **Save Policy**.
+        - **Yes, or not configured (recommended).** Revokes local encryption keys from a device during unenrollment.
+        
+        - **No.** Stop local encryption keys from being revoked from a device during unenrollment. For example, if you’re migrating between Mobile Device Management (MDM) solutions.
+
+    - **Allow Windows Search to search encrypted corporate data and Store apps.** Determines whether Windows Search can search and index encrypted corporate data and Store apps. The options are:
+
+	    - **Yes.** Allows Windows Search to search and index encrypted corporate data and Store apps.
+
+	    - **No, or not configured (recommended).** Stops Windows Search from searching and indexing encrypted corporate data and Store apps.
+
+    - **Show the enterprise data protection icon overlay.** Determines whether the enterprise data protection icon overlay appears on corporate files or in the **Start** menu, on top of the tiles for your unenlightened protected apps. The options are:
+
+    	- **Yes (recommended).** Allows the enterprise data protection icon overlay to appear for files or on top of the tiles for your unenlightened protected apps in the **Start** menu.
+
+	    - **No, or not configured.** Stops the enterprise data protection icon overlay from appearing for files or on top of the tiles for your unenlightened protected apps in the **Start** menu.
+
+2. Click **Save Policy**.
 
 ## Related topics
 - [Add multiple apps to your enterprise data protection (EDP) Protected Apps list](add-apps-to-protected-list-using-custom-uri.md)
 - [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md)
 - [Create and deploy a VPN policy for enterprise data protection (EDP) using Microsoft Intune](create-vpn-and-edp-policy-using-intune.md)
-- [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
-
-
-
- 
-
- 
-
-
-
-
-
+- [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
\ No newline at end of file

From fbe41720ed152269e3b4f3db517154804a320063 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 15 Jul 2016 11:22:20 -0700
Subject: [PATCH 38/69] Updated for publish

---
 .../keep-secure/change-history-for-keep-windows-10-secure.md | 1 +
 windows/keep-secure/mandatory-settings-for-wip.md            | 5 +++--
 2 files changed, 4 insertions(+), 2 deletions(-)

diff --git a/windows/keep-secure/change-history-for-keep-windows-10-secure.md b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
index 8a96eaa113..d43c87c4e9 100644
--- a/windows/keep-secure/change-history-for-keep-windows-10-secure.md
+++ b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
@@ -16,6 +16,7 @@ This topic lists new and updated topics in the [Keep Windows 10 secure](index.md
 
 |New or changed topic | Description |
 |----------------------|-------------|
+|[Mandatory settings for Windows Information Protection (WIP)](mandatory-settings-for-wip.md) |New |
 |[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
 |[Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) |New |
 |[Windows Defender Advanced Threat Protection](windows-defender-advanced-threat-protection.md) (multiple topics) | Updated |
diff --git a/windows/keep-secure/mandatory-settings-for-wip.md b/windows/keep-secure/mandatory-settings-for-wip.md
index 9a23e25d67..bc0c26537d 100644
--- a/windows/keep-secure/mandatory-settings-for-wip.md
+++ b/windows/keep-secure/mandatory-settings-for-wip.md
@@ -1,6 +1,7 @@
 ---
 title: Mandatory tasks and settings required to turn on Windows Information Protection (WIP) (Windows 10)
-description: This list provides all of the tasks that are required for the operating system to turn on Windows Information Protection (WIP) in your enterprise.
+description: This list provides all of the tasks that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection (EDP) in your enterprise.
+keywords: Windows Information Protection, WIP, EDP, Enterprise Data Protection, protected apps, protected app list, App Rules, Allowed apps list
 ms.prod: w10
 ms.mktglfcycl: explore
 ms.sitesec: library
@@ -15,7 +16,7 @@ ms.pagetype: security
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-This list provides all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP) in your enterprise.
+This list provides all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection(EDP), in your enterprise.
 
 >**Important**<br>
 All sections provided for more info appear in either the [Create a Windows Information Protection (WIP) policy using Microsoft Intune](create-edp-policy-using-intune.md) or [Create a Windows Information Protection (WIP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md), based on the tool you're using in your enterprise.

From ab1347da137452e8e0765e04c798d3e7c5b2fd26 Mon Sep 17 00:00:00 2001
From: JanKeller1 <v-jak@microsoft.com>
Date: Fri, 15 Jul 2016 11:58:45 -0700
Subject: [PATCH 39/69] Fixed a typo

---
 ...ments-and-deployment-planning-guidelines-for-device-guard.md | 2 --
 1 file changed, 2 deletions(-)

diff --git a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
index 2c6b76c490..9a91fc9bee 100644
--- a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
+++ b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
@@ -57,8 +57,6 @@ The following tables provide more information about the hardware, firmware, and
 
 The following tables describes additional hardware and firmware requirements, and the additional protections that are available when those requirements are met. We strongly recommend the following additional protections, which help you maximize the benefits that Device Guard can provide.
 
- to take advantage of all the security options Device Guard can provide.
-
 ### 2015 Additional Qualification Requirements for Device Guard (Windows 10, version 1507 and Windows 10, version 1511)
 
 |Additional Protections - requirement         | Description                                        |

From 46ca2a3d5eb56dfd20f5471417f0a8827a5fa4dc Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 15 Jul 2016 11:59:54 -0700
Subject: [PATCH 40/69] Changed App rules to App Rules

---
 windows/keep-secure/mandatory-settings-for-wip.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/mandatory-settings-for-wip.md b/windows/keep-secure/mandatory-settings-for-wip.md
index bc0c26537d..8a68a0c1ac 100644
--- a/windows/keep-secure/mandatory-settings-for-wip.md
+++ b/windows/keep-secure/mandatory-settings-for-wip.md
@@ -24,7 +24,7 @@ All sections provided for more info appear in either the [Create a Windows Infor
 
 |Task                                |Description               |
 |------------------------------------|--------------------------|
-|Add at least one app rule in the **App rules** area in your WIP policy. |You must have at least one app rule specified in the **App rules** area of your WIP policy. For more info about where this area is and how to add an app rule, see the **Add individual apps to your Protected App list** section of the policy creation topics.|
+|Add at least one app rule in the **App Rules** area in your WIP policy. |You must have at least one app rule specified in the **App Rules** area of your WIP policy. For more info about where this area is and how to add an app rule, see the **Add individual apps to your Protected App list** section of the policy creation topics.|
 |Pick your WIP protection level. |You must choose the level of protection level you want to apply to your WIP-protected content, including Override, Silent, or Block. For more info about where this area is and how to decide on your protection level, see the **Manage the EDP protection level for your enterprise data** section of the policy creation topics.|
 |Specify your corporate identity. |You must specify your corporate identity, usually expressed as your primary Internet domain (for example, contoso.com). For more info about where this area is and what it means, see the **Define your enterprise-managed corporate identity** section of the policy creation topics. |
 |Specify your Enterprise Network Domain Names. |You must specify the DNS suffixes used in your environment. All traffic to the fully-qualified domains appearing in this list will be protected. For more info about where this area is and how to add your suffixes, see the table that appears in the **Choose where apps can access enterprise data** section of the policy creation topics. |

From 025f685626aa1aed85a9dd08dfc69784348e90f0 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 15 Jul 2016 12:19:47 -0700
Subject: [PATCH 41/69] Updated parent topic for new child topic

---
 windows/keep-secure/guidance-and-best-practices-edp.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/keep-secure/guidance-and-best-practices-edp.md b/windows/keep-secure/guidance-and-best-practices-edp.md
index 805ac84dfc..dbbf9a2d3a 100644
--- a/windows/keep-secure/guidance-and-best-practices-edp.md
+++ b/windows/keep-secure/guidance-and-best-practices-edp.md
@@ -23,6 +23,7 @@ This section includes info about the enlightened Microsoft apps, including how t
 ## In this section
 |Topic |Description |
 |------|------------|
+|[Mandatory settings for Windows Information Protection (WIP)](mandatory-settings-for-wip.md) |A list of all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection(EDP), in your enterprise. |
 |[Enlightened apps for use with enterprise data protection (EDP)](enlightened-microsoft-apps-and-edp.md) |Learn the difference between enlightened and unenlightened apps, and then review the list of enlightened apps provided by Microsoft along with the text you will need to use to add them to your **Protected Apps** list. |
 |[Testing scenarios for enterprise data protection (EDP)](testing-scenarios-for-edp.md) |We've come up with a list of suggested testing scenarios that you can use to test EDP in your company. |
 

From 8bfbea21ba52d8d1fb49fdb46116e9518e111024 Mon Sep 17 00:00:00 2001
From: Trudy Hakala <Trudy.Hakala@microsoft.com>
Date: Fri, 15 Jul 2016 14:16:19 -0700
Subject: [PATCH 42/69] correcting typo

---
 devices/surface-hub/connect-and-display-with-surface-hub.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/devices/surface-hub/connect-and-display-with-surface-hub.md b/devices/surface-hub/connect-and-display-with-surface-hub.md
index 35d14c4df5..e5250193a8 100644
--- a/devices/surface-hub/connect-and-display-with-surface-hub.md
+++ b/devices/surface-hub/connect-and-display-with-surface-hub.md
@@ -130,7 +130,7 @@ When a Surface hub is connected to guest computer with the wired connect USB por
 
 -   HID-compliant mouse
 
-**Universal serial bus conntrollers**
+**Universal serial bus controllers**
 
 -   Generic USB hub
 

From 0850fc354fc42f9d563a2836fc2e8c90916b3702 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Fri, 15 Jul 2016 15:50:47 -0700
Subject: [PATCH 43/69] Added missing space between words

---
 windows/keep-secure/guidance-and-best-practices-edp.md | 2 +-
 windows/keep-secure/mandatory-settings-for-wip.md      | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/windows/keep-secure/guidance-and-best-practices-edp.md b/windows/keep-secure/guidance-and-best-practices-edp.md
index dbbf9a2d3a..fd1ffe2dcd 100644
--- a/windows/keep-secure/guidance-and-best-practices-edp.md
+++ b/windows/keep-secure/guidance-and-best-practices-edp.md
@@ -23,7 +23,7 @@ This section includes info about the enlightened Microsoft apps, including how t
 ## In this section
 |Topic |Description |
 |------|------------|
-|[Mandatory settings for Windows Information Protection (WIP)](mandatory-settings-for-wip.md) |A list of all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection(EDP), in your enterprise. |
+|[Mandatory settings for Windows Information Protection (WIP)](mandatory-settings-for-wip.md) |A list of all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection (EDP), in your enterprise. |
 |[Enlightened apps for use with enterprise data protection (EDP)](enlightened-microsoft-apps-and-edp.md) |Learn the difference between enlightened and unenlightened apps, and then review the list of enlightened apps provided by Microsoft along with the text you will need to use to add them to your **Protected Apps** list. |
 |[Testing scenarios for enterprise data protection (EDP)](testing-scenarios-for-edp.md) |We've come up with a list of suggested testing scenarios that you can use to test EDP in your company. |
 
diff --git a/windows/keep-secure/mandatory-settings-for-wip.md b/windows/keep-secure/mandatory-settings-for-wip.md
index 8a68a0c1ac..56b79bc283 100644
--- a/windows/keep-secure/mandatory-settings-for-wip.md
+++ b/windows/keep-secure/mandatory-settings-for-wip.md
@@ -16,7 +16,7 @@ ms.pagetype: security
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-This list provides all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection(EDP), in your enterprise.
+This list provides all of the tasks and settings that are required for the operating system to turn on Windows Information Protection (WIP), formerly known as enterprise data protection (EDP), in your enterprise.
 
 >**Important**<br>
 All sections provided for more info appear in either the [Create a Windows Information Protection (WIP) policy using Microsoft Intune](create-edp-policy-using-intune.md) or [Create a Windows Information Protection (WIP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md), based on the tool you're using in your enterprise.

From 7fbffa54c4f1f9b59bcb39a785cab234872720cf Mon Sep 17 00:00:00 2001
From: JanKeller1 <v-jak@microsoft.com>
Date: Fri, 15 Jul 2016 17:51:39 -0700
Subject: [PATCH 44/69] Folded in add'l feedback from Suhas

---
 ...sed-security-and-code-integrity-policies.md |  6 +++---
 ...ent-planning-guidelines-for-device-guard.md | 18 ++++++++++--------
 2 files changed, 13 insertions(+), 11 deletions(-)

diff --git a/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md b/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md
index 07a789467a..f0e196b799 100644
--- a/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md
+++ b/windows/keep-secure/introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md
@@ -27,11 +27,11 @@ The following table lists security threats and describes the corresponding Devic
 
 | Security threat in the enterprise | How a Device Guard feature helps protect against the threat |
 | --------------------------------- | ----------------------------------------------------------- |
-| **Exposure to new malware**, for which the "signature" is not yet known | **Code integrity policies**:&nbsp;&nbsp;You can maintain a whitelist of software that is allowed to run (a configurable code integrity policy), rather than trying to stay ahead of attackers by maintaining a constantly-updated list of "signatures" of software that should be blocked. This approach uses the trust-nothing model well known in mobile device operating systems.<br><br>**Specialized hardware required?** No security-related hardware features are required, although code integrity policies are strengthened by such features, as described in the last three rows of this table. |
+| **Exposure to new malware**, for which the "signature" is not yet known | **Code integrity policies**:&nbsp;&nbsp;You can maintain a whitelist of software that is allowed to run (a configurable code integrity policy), rather than trying to stay ahead of attackers by maintaining a constantly-updated list of "signatures" of software that should be blocked. This approach uses the trust-nothing model well known in mobile device operating systems.<br>Only code that is verified by Code Integrity, usually through the digital signature that you have identified as being from a trusted signer, is allowed to run. This allows full control over allowed code in both kernel and user mode.<br><br>**Specialized hardware required?** No security-related hardware features are required, although code integrity policies are strengthened by such features, as described in the last three rows of this table. |
 | **Exposure to unsigned code** (most malware is unsigned) | **Code integrity policies, plus catalog files as needed**:&nbsp;&nbsp;Because most malware is unsigned, using a code integrity policy (which in most cases requires signed code) can immediately help protect against a large number of threats. However, many organizations use unsigned line-of-business (LOB) applications, for which the process of signing might be difficult. This has changed in Windows 10, because you can use a tool called Package Inspector to create a *catalog* of all deployed and executed binary files for your trusted applications. After you sign and distribute the catalog, your trusted applications can be handled by code integrity policies in the same way as any other signed application. With this foundation, you can more easily block all unsigned applications, allowing only signed applications to run.<br><br>**Specialized hardware required?** No security-related hardware features are required for creating and using code integrity policies and catalogs. However, code integrity policies and catalogs are strengthened by the hardware features, as described in later rows of this table. |
-| **Malware that gains access to the kernel** and then, from within the kernel, captures sensitive information or damages the system | **Virtualization-based security (VBS)**:&nbsp;&nbsp;This is protection that uses the hypervisor to help protect the kernel and other parts of the operating system. When VBS is enabled, it strengthens either the default kernel-mode code integrity policy (which protects against bad drivers or system files), or the configurable code integrity policy that you deploy. With VBS, even if malware gains access to the kernel, the effects can be severely limited, because the hypervisor can prevent the malware from executing code.<br><br>**Specialized hardware required?** Yes, VBS requires at least CPU virtualization extensions and SLAT, as described in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard). |
+| **Malware that gains access to the kernel** and then, from within the kernel, captures sensitive information or damages the system | **Virtualization-based security (VBS)**:&nbsp;&nbsp;This is protection that uses the hypervisor to help protect the kernel and other parts of the operating system. When VBS is enabled, it strengthens either the default kernel-mode code integrity policy (which protects against bad drivers or system files), or the configurable code integrity policy that you deploy.<br>With VBS, even if malware gains access to the kernel, the effects can be severely limited, because the hypervisor can prevent the malware from executing code. The hypervisor, the most privileged level of system software, enforces R/W/X permissions across system memory.  Code integrity checks are performed in a secure environment which is resistant to attack from kernel mode software, and page permissions for kernel mode are set and maintained by the hypervisor. Even if there are vulnerabilities that allow memory modification, like a buffer overflow, the modified memory cannot be executed.<br><br>**Specialized hardware required?** Yes, VBS requires at least CPU virtualization extensions and SLAT, as described in [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard). |
 | **DMA-based attacks**, for example, attacks launched from a malicious device that reads secrets from memory, making the enterprise more vulnerable to attack | **Virtualization-based security (VBS) using IOMMUs**:&nbsp;&nbsp;With this type of VBS protection, when the DMA-based attack makes a memory request, input/output memory management units (IOMMUs) will evaluate the request and deny access.<br><br>**Specialized hardware required?** Yes, IOMMUs are a hardware feature that supports the hypervisor, and if you choose hardware that includes them, they can help protect against malicious attempts to access memory. |
-| **Exposure to boot kits** or to other forms of malware that runs early in the boot process, or in kernel after startup | **Universal Extensible Firmware Interface (UEFI) Secure Boot**:&nbsp;&nbsp; Secure Boot and related methods protect the boot process and firmware from tampering.<br><br>**Specialized hardware required?** With UEFI Secure Boot, the requirements are firmware requirements. For more information, see [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard).  | 
+| **Exposure to boot kits or to a physically present attacker at boot time** | **Universal Extensible Firmware Interface (UEFI) Secure Boot**:&nbsp;&nbsp; Secure Boot and related methods protect the boot process and firmware from tampering. This tampering can come from a physically present attacker or from forms of malware that run early in the boot process or in kernel after startup. UEFI is locked down (Boot order, Boot entries, Secure Boot, Virtualization extensions, IOMMU, Microsoft UEFI CA), so the settings in UEFI cannot be changed to compromise Device Guard security.<br><br>**Specialized hardware required?** With UEFI Secure Boot, the requirements are firmware requirements. For more information, see [Hardware, firmware, and software requirements for Device Guard](requirements-and-deployment-planning-guidelines-for-device-guard.md#hardware-firmware-and-software-requirements-for-device-guard).  | 
 
 In this guide, you learn about the individual features found within Device Guard as well as how to plan for, configure, and deploy them. Device Guard with configurable code integrity is intended for deployment alongside additional threat-mitigating Windows features such as [Credential Guard](credential-guard.md) and [AppLocker](applocker-overview.md).
 
diff --git a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
index 9a91fc9bee..3fe868fb12 100644
--- a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
+++ b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
@@ -17,7 +17,7 @@ This article describes the following:
 
 - [Hardware, firmware, and software requirements for Device Guard](#hardware-firmware-and-software-requirements-for-device-guard)
     - [Device Guard requirements for baseline protections](#device-guard-requirements-for-baseline-protections)
-    - [Device Guard requirements for additional protections](#device-guard-requirements-for-additional-protections)
+    - [Device Guard requirements for improved security](#device-guard-requirements-for-improved-security)
 - [Device Guard deployment in different scenarios: types of devices](#device-guard-deployment-in-different-scenarios-types-of-devices)	
 - [Reviewing your applications: application signing and catalog files](#reviewing-your-applications-application-signing-and-catalog-files)
 - [Code integrity policy formats and signing](#code-integrity-policy-formats-and-signing)
@@ -32,11 +32,13 @@ For example, hardware that includes CPU virtualization extensions and SLAT will
 
 You can deploy Device Guard in phases, and plan these phases in relation to the computer purchases you plan for your next hardware refresh.
 
-The following tables provide more information about the hardware, firmware, and software required for deployment of various Device Guard features. 
+The following tables provide more information about the hardware, firmware, and software required for deployment of various Device Guard features.
 
-<!-- POTENTIAL FUTURE ADDITION--PUT RIGHT AFTER PREVIOUS SENTENCE: The tables describe baseline protections, plus additional protections associated with hardware and firmware options available in 2015, available in 2016, and announced as options for 2017. -->
+<!-- POTENTIAL FUTURE ADDITION--PUT RIGHT AFTER PREVIOUS SENTENCE: The tables describe baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, available in 2016, and announced as options for 2017. -->
 
-> **Note**&nbsp;&nbsp;For new computers running Windows 10, Trusted Platform Module (TPM 2.0) must be enabled by default. This requirement is not restated in the tables that follow.
+> **Notes**
+> - To understand the requirements in the following tables, you will need to be familiar with the main features in Device Guard: configurable code integrity policies, virtualization-based security (VBS), and Universal Extensible Firmware Interface (UEFI) Secure Boot. For information about these features, see [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies#how-device-guard-features-help-protect-against-threats).
+> - For new computers running Windows 10, Trusted Platform Module (TPM 2.0) must be enabled by default. This requirement is not restated in the tables that follow.
 
 ## Device Guard requirements for baseline protections
 
@@ -51,15 +53,15 @@ The following tables provide more information about the hardware, firmware, and
 
 <!-- When additional tables are added, change "The following table lists" to "The following tables list" in the Important just below. -->
 
-> **Important**&nbsp;&nbsp;The preceding table lists requirements for baseline protections. The following table lists requirements for additional protections. You can use Device Guard with hardware, firmware, and software that support baseline protections, even if they do not support additional protections.
+> **Important**&nbsp;&nbsp;The preceding table lists requirements for baseline protections. The following table lists requirements for improved security. You can use Device Guard with hardware, firmware, and software that support baseline protections, even if they do not support protections for improved security. However, we strongly recommend meeting the requirements for improved security, to significantly strengthen the level of security that Device Guard can provide.
 
-## Device Guard requirements for additional protections
+## Device Guard requirements for improved security
 
-The following tables describes additional hardware and firmware requirements, and the additional protections that are available when those requirements are met. We strongly recommend the following additional protections, which help you maximize the benefits that Device Guard can provide.
+The following tables describes additional hardware and firmware requirements, and the improved security that is available when those requirements are met.
 
 ### 2015 Additional Qualification Requirements for Device Guard (Windows 10, version 1507 and Windows 10, version 1511)
 
-|Additional Protections - requirement         | Description                                        |
+| Protections for Improved Security - requirement         | Description                                        |
 |---------------------------------------------|----------------------------------------------------|
 | Firmware: **Securing Boot Configuration and Management** | **Requirements**:<br>- BIOS password or stronger authentication must be supported.<br>- In the BIOS configuration, BIOS authentication must be set.<br>- There must be support for protected BIOS option to configure list of permitted boot devices (for example, “Boot only from internal hard drive”) and boot device order, overriding BOOTORDER modification made by operating system.<br>- In the BIOS configuration, BIOS options related to security and boot options (list of permitted boot devices, boot order) must be secured to prevent other operating systems from starting and to prevent changes to the BIOS settings.<br><br>**Security benefits**:<br>- BIOS password or stronger authentication helps ensure that only authenticated Platform BIOS administrators can change BIOS settings. This helps protect against a physically present user with BIOS access.<br>- Boot order when locked provides protection against the computer being booted into WinRE or another operating system on bootable media. |
 

From 8b94e572c540946802a3a066bac9edea7a7acc37 Mon Sep 17 00:00:00 2001
From: Brian Lich <brianlic@microsoft.com>
Date: Sat, 16 Jul 2016 20:15:59 -0700
Subject: [PATCH 45/69] added localization priority

---
 ...-windows-operating-system-components-to-microsoft-services.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/manage/manage-connections-from-windows-operating-system-components-to-microsoft-services.md b/windows/manage/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
index 4c01926131..f127fe3045 100644
--- a/windows/manage/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
+++ b/windows/manage/manage-connections-from-windows-operating-system-components-to-microsoft-services.md
@@ -6,6 +6,7 @@ keywords: privacy, manage connections to Microsoft
 ms.prod: w10
 ms.mktglfcycl: manage
 ms.sitesec: library
+LocalizationPriority: High
 author: brianlic-msft
 ---
 

From 11d3a695ab9ae7cdce85ba5b35e72ab5cc7fb073 Mon Sep 17 00:00:00 2001
From: Brian Lich <brianlic@microsoft.com>
Date: Sat, 16 Jul 2016 20:22:17 -0700
Subject: [PATCH 46/69] fixed link

---
 ...ments-and-deployment-planning-guidelines-for-device-guard.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
index 3fe868fb12..9db41d44f1 100644
--- a/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
+++ b/windows/keep-secure/requirements-and-deployment-planning-guidelines-for-device-guard.md
@@ -37,7 +37,7 @@ The following tables provide more information about the hardware, firmware, and
 <!-- POTENTIAL FUTURE ADDITION--PUT RIGHT AFTER PREVIOUS SENTENCE: The tables describe baseline protections, plus protections for improved security that are associated with hardware and firmware options available in 2015, available in 2016, and announced as options for 2017. -->
 
 > **Notes**
-> - To understand the requirements in the following tables, you will need to be familiar with the main features in Device Guard: configurable code integrity policies, virtualization-based security (VBS), and Universal Extensible Firmware Interface (UEFI) Secure Boot. For information about these features, see [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies#how-device-guard-features-help-protect-against-threats).
+> - To understand the requirements in the following tables, you will need to be familiar with the main features in Device Guard: configurable code integrity policies, virtualization-based security (VBS), and Universal Extensible Firmware Interface (UEFI) Secure Boot. For information about these features, see [How Device Guard features help protect against threats](introduction-to-device-guard-virtualization-based-security-and-code-integrity-policies.md#how-device-guard-features-help-protect-against-threats).
 > - For new computers running Windows 10, Trusted Platform Module (TPM 2.0) must be enabled by default. This requirement is not restated in the tables that follow.
 
 ## Device Guard requirements for baseline protections

From 5796f0c8fae7af25872357b48b8175e0e5bd518c Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 16:20:01 +1000
Subject: [PATCH 47/69] create new individual topics for onboarding

---
 ...ows-defender-advanced-threat-protection.md | 104 ++++++++++++++
 ...ows-defender-advanced-threat-protection.md |  90 ++++++++++++
 ...ows-defender-advanced-threat-protection.md |  81 +++++++++++
 ...ows-defender-advanced-threat-protection.md |  62 +++++++++
 ...ows-defender-advanced-threat-protection.md | 131 +-----------------
 ...ows-defender-advanced-threat-protection.md |  20 ---
 6 files changed, 339 insertions(+), 149 deletions(-)
 create mode 100644 windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
 create mode 100644 windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
 create mode 100644 windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
 create mode 100644 windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md

diff --git a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
new file mode 100644
index 0000000000..f169e2f545
--- /dev/null
+++ b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
@@ -0,0 +1,104 @@
+---
+title: Configure Windows Defender ATP endpoints using Group Policy
+description: Use Group Policy to deploy the configuration package on endpoints so that they are onboarded to the service.
+keywords: configure endpoints using group policy, endpoint management, configure Windows ATP endpoints, configure Windows Defender Advanced Threat Protection endpoints, group policy
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+author: mjcaparas
+---
+
+## Configure endpoints using Group Policy
+
+**Applies to:**
+
+- Windows 10 Insider Preview Build 14332 or later
+- Windows Defender Advanced Threat Protection (Windows Defender ATP)
+
+<span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
+
+> **Note**&nbsp;&nbsp;To use GP updates to deploy the package, you must be on Windows Server 2008 R2 or later. 
+
+1.  Open the GP configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a.  Click **Endpoint Management** on the **Navigation pane**.
+
+    b.  Select **Group Policy**, click **Download package** and save the .zip file.
+
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a folder called *OptionalParamsPolicy* and the file *WindowsDefenderATPOnboardingScript.cmd*.
+
+3. Open the [Group Policy Management Console](https://technet.microsoft.com/en-us/library/cc731212.aspx) (GPMC), right-click the Group Policy Object (GPO) you want to configure and click **Edit**.
+
+4. In the **Group Policy Management Editor**, go to **Computer configuration**, then **Preferences**, and then **Control panel settings**.
+
+5. Right-click **Scheduled tasks**, point to **New**, and then click **Immediate task**.
+
+6. In the  **Task** window that opens, go to the **General** tab. Choose the local SYSTEM user account under **Security options**.
+
+7. Select **Run whether user is logged on or not** and check the **Run with highest privileges** check box.
+
+8. Go to the **Actions** tab and click **New...** Ensure that **Start a program** is selected in the **Action** field. Enter the file name and location of the shared *WindowsDefenderATPOnboardingScript.cmd* file.
+
+9. Click **OK** and close any open GPMC windows.
+
+## Additional Windows Defender ATP configuration settings
+
+You can use Group Policy (GP) to configure settings, such as settings for the sample sharing used in the deep analysis feature.
+
+## Configure sample collection settings using Group Policy
+1.  On your GP management machine, copy the following files from the
+    configuration package:
+
+    a.  Copy _AtpConfiguration.admx_ into _C:\\Windows\\PolicyDefinitions_
+
+    b.  Copy _AtpConfiguration.adml_ into _C:\\Windows\\PolicyDefinitions\\en-US_
+
+2.  Open the [Group Policy Management Console](https://technet.microsoft.com/en-us/library/cc731212.aspx), right-click the GPO you want to configure and click **Edit**.
+
+3.  In the **Group Policy Management Editor**, go to **Computer configuration**.
+
+4.  Click **Policies**, then **Administrative templates**.
+
+5.  Click **Windows components** and then **Windows Advanced Threat Protection**.
+
+6.  Choose to enable or disable sample sharing from your endpoints.
+
+## Offboard endpoints using Group Policy
+For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
+
+> **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
+
+1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a. Click **Endpoint Management** on the **Navigation pane**.
+    b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
+    
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
+
+3.	Open the [Group Policy Management Console](https://technet.microsoft.com/en-us/library/cc731212.aspx) (GPMC), right-click the Group Policy Object (GPO) you want to configure and click Edit.
+
+4.	In the **Group Policy Management Editor**, go to **Computer configuration,** then **Preferences**, and then **Control panel settings**.
+
+5.	Right-click **Scheduled tasks**, point to **New**, and then click **Immediate task**.
+
+6.	In the **Task** window that opens, go to the **General** tab. Choose the local SYSTEM user account under **Security options**.
+
+7.	Select **Run whether user is logged on or not** and check the **Run with highest privileges** check-box.
+
+8.	Go to the **Actions** tab and click **New...**. Ensure that **Start a program** is selected in the **Action** field. Enter the file name and location of the shared  *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd* file.
+
+9.	Click **OK** and close any open GPMC windows.
+
+## Monitor endpoint configuration using Group Policy
+With Group Policy there isn’t an option to monitor deployment of policies on the endpoints. Monitoring can be done directly on the portal, or by using the different deployment tools.
+
+## Monitor endpoints using the portal 
+1.	Go to the [Windows Defender ATP portal](https://securitycenter.windows.com/).
+2.	Click **Machines view**.
+3.	Verify that endpoints are appearing.
+
+> **Note**&nbsp;&nbsp;It can take several days for endpoints to start showing on the **Machines view**. This includes the time it takes for the policies to be distributed to the endpoint, the time it takes before the user logs on, and the time it takes for the endpoint to start reporting.
+
+
diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
new file mode 100644
index 0000000000..9d0c4df281
--- /dev/null
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -0,0 +1,90 @@
+---
+title: Configure Windows Defender ATP endpoints using Mobile Device Management tools
+description: Use Mobile Device Management tools to deploy the configuration package on endpoints so that they are onboarded to the service.
+keywords: configure endpoints using mdm, endpoint management, configure Windows ATP endpoints, configure Windows Defender Advanced Threat Protection endpoints, mdm
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+author: mjcaparas
+---
+
+# Configure endpoints using Mobile Device Management tools
+
+**Applies to:**
+
+- Windows 10 Insider Preview Build 14332 or later
+- Windows Defender Advanced Threat Protection (Windows Defender ATP)
+
+<span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
+
+You can use mobile device management (MDM) solutions to configure endpoints. Windows Defender ATP supports MDMs by providing OMA-URIs to create policies to manage endpoints. 
+
+For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
+
+> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
+
+## Configure endpoints using Microsoft Intune
+
+For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
+
+> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
+
+1. Open the Microsoft Intune configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+ 
+    a.  Click **Endpoint Management** on the **Navigation pane**.
+
+    b.  Select **Microsoft Intune**, click **Download package** and save the .zip file.
+
+2. Extract the contents of the configuration package to a location on the endpoint you want to onboard (for example, the Desktop). You should have a file called *WindowsDefenderATP.onboarding*.
+
+3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune).
+
+Onboarding - Use the onboarding policies to deploy configuration settings on endpoints. These policies can be sub-categorized to:
+    - Onboarding
+    - Health Status for onboarded machines
+    - Configuration for onboarded machines
+
+> **Warning**&nbsp;&nbsp;These two groups must not be deployed on the same machine at same time, otherwise this will cause unpredictable collisions.
+
+Policy | OMA-URI | Type | Description | Value
+:---|:---|:---|:---|:---
+Onboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Onboarding | String | Onboarding | Copy content from onboarding MDM file
+Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is running | TRUE
+ | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Onboarded to Windows Defender ATP | 1
+  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OrgId | String | Onboarded to Organization ID | Use OrgID from onboarding file
+ Configuration for onboarded machines  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Configuration/SampleSharing | Integer | Windows Defender ATP Sample sharing is enabled | 0 or 1 <br> Default value: 1
+ 
+
+> **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** and **Health Status for offboarded machines** use read-only properties and can't be remediated.
+
+## Offboard and monitor endpoints using Mobile Device Management tools
+
+For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
+
+> **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
+
+1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a. Click **Endpoint Management** on the **Navigation pane**.
+    b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
+    
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.offboarding*.
+
+3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune). 
+
+Offboarding - Use the offboarding policies to remove configuration settings on endpoints. These policies can be sub-categorized to:
+    - Offboarding
+    - Health Status for offboarded machines
+    - Configuration for offboarded machines
+
+Policy | OMA-URI | Type | Description | Value
+:---|:---|:---|:---|:---
+Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding | String | Offboarding | Copy content from offboarding MDM file
+ Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is not running | FALSE
+  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Offboarded from Windows Defender ATP  | 0
+  
+> **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
+
+  
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
new file mode 100644
index 0000000000..7536a1eee6
--- /dev/null
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -0,0 +1,81 @@
+---
+title: Configure Windows Defender ATP endpoints using System Center Configuration Manager
+description: Use System Center Configuration Manager to deploy the configuration package on endpoints so that they are onboarded to the service.
+keywords: configure endpoints using sccm, endpoint management, configure Windows ATP endpoints, configure Windows Defender Advanced Threat Protection endpoints, sccm
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+author: mjcaparas
+---
+
+# Configure endpoints with System Center Configuration Manager
+
+**Applies to:**
+
+- Windows 10 Insider Preview Build 14332 or later
+- Windows Defender Advanced Threat Protection (Windows Defender ATP)
+
+<span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
+
+## Configure endpoints using System Center Configuration Manager (current branch) version 1606
+System Center Configuration Manager (current branch) version 1606, currently in technical preview, has UI integrated support for configuring and managing Windows Defender ATP on endpoints. For more information, see the [Support for Windows Defender Advanced Threat Protection service](https://technet.microsoft.com/en-us/library/mt706220.aspx#BKMK_ATP) section.
+
+> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
+
+## Configure endpoints using System Center 2012 Configuration Manager or later versions
+You can use System Center Configuration Manager’s existing functionality to create a policy to configure your endpoints. This is supported in System Center 2012 Configuration Manager or later versions, including: System Center 2012 R2 Configuration Manager, System Center Configuration Manager and System Center Configuration Manager (current branch), version 1602 or earlier. 
+
+1. Open the SCCM configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a. Click **Endpoint Management** on the **Navigation pane**.
+
+    b. Select **System Center Configuration Manager**, click **Download package**, and save the .zip file.
+
+2. Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file called *WindowsDefenderATPOnboardingScript.cmd*.
+
+3. Import the configuration package by following the steps in the [How to Create Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682112.aspx#BKMK_Import) topic.
+
+4. Deploy the package by following the steps in the [How to Deploy Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682178.aspx) topic.
+
+    a. Choose a predefined device collection to deploy the package to.
+    
+## Offboard endpoints using System Center Configuration Manager
+For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
+
+> **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
+
+1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a. Click Endpoint Management on the Navigation pane.
+    b. Under Endpoint offboarding section, select System Center Configuration Manager (current branch) version 1602 or earlier, click Download package, and save the .zip file.
+    
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
+
+3. Import the configuration package by following the steps in the [How to Create Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682112.aspx#BKMK_Import) topic.
+
+4. Deploy the package by following the steps in the [How to Deploy Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682178.aspx) topic.
+
+    a. Choose a predefined device collection to deploy the package to.
+    
+## Monitor endpoint configuration using System Center Configuration Manager
+Monitoring with SCCM consists of two parts:
+
+1. Confirming the configuration package has been correctly deployed and is running (or has successfully run) on the endpoints in your network.
+
+2. Checking that the endpoints are compliant with the Windows Defender ATP service (this ensures the endpoint can complete the onboarding process and can continue to report data to the service).
+
+**To confirm the configuration package has been correctly deployed:**
+
+1. In the SCCM console, click **Monitoring** at the bottom of the navigation pane.
+
+2. Click **Overview** and then **Deployments**.
+
+3. Click on the deployment with the package name.
+
+4. Review the status indicators under **Completion Statistics** and **Content Status**.
+
+If there are failed deployments (endpoints with **Error**, **Requirements Not Met**, or **Failed statuses**), you may need to  troubleshoot the endpoints. See the [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) topic for more information.
+
+![SCCM showing successful deployment with no errors](images/sccm-deployment.png)
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
new file mode 100644
index 0000000000..2209348988
--- /dev/null
+++ b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
@@ -0,0 +1,62 @@
+---
+title: Configure Windows Defender ATP endpoints using a local script
+description: Use a local script to deploy the configuration package on endpoints so that they are onboarded to the service.
+keywords: configure endpoints using a local script, endpoint management, configure Windows ATP endpoints, configure Windows Defender Advanced Threat Protection endpoints
+search.product: eADQiWindows 10XVcnh
+ms.prod: w10
+ms.mktglfcycl: deploy
+ms.sitesec: library
+ms.pagetype: security
+author: mjcaparas
+---
+
+# Configure endpoints using a local script
+You can also manually onboard individual endpoints to Windows Defender ATP. You might want to do this first when testing the service before you commit to onboarding all endpoints in your network.
+
+
+1.  Open the GP configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a.  Click **Endpoint Management** on the **Navigation pane**.
+
+    b.  Select **Local Script**, click **Download package** and save the .zip file.
+
+
+2.  Extract the contents of the configuration package to a location on the endpoint you want to onboard (for example, the Desktop). You should have a file called *WindowsDefenderATPOnboardingScript.cmd*.
+
+3.  Open an elevated command-line prompt on the endpoint and run the script:
+
+    a.  Click **Start** and type **cmd**.
+
+    b.  Right-click **Command prompt** and select **Run as administrator**.
+
+    ![Window Start menu pointing to Run as administrator](images/run-as-admin.png)
+
+4.  Type the location of the script file. If you copied the file to the desktop, type: *`%userprofile%\Desktop\WindowsDefenderATPOnboardingScript.cmd`*
+
+5.  Press the **Enter** key or click **OK**.
+
+See the [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) topic for details on how you can manually validate that the endpoint is compliant and correctly reports telemetry.
+
+## Offboard endpoints using a local script
+For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
+
+> **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
+
+1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
+
+    a. Click **Endpoint Management** on the **Navigation pane**.
+    b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
+    
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
+
+3.  Open an elevated command-line prompt on the endpoint and run the script:
+
+    a.  Click **Start** and type **cmd**.
+
+    b.  Right-click **Command prompt** and select **Run as administrator**.
+
+    ![Window Start menu pointing to Run as administrator](images/run-as-admin.png)
+
+4.  Type the location of the script file. If you copied the file to the desktop, type: *`%userprofile%\Desktop\WindowsDefenderATPOnboardingScript.cmd`*
+
+5.  Press the **Enter** key or click **OK**.
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
index d2cc59754d..8ad58fa146 100644
--- a/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
@@ -24,137 +24,10 @@ Endpoints in your organization must be configured so that the Windows Defender A
 Windows Defender ATP supports the following deployment tools and methods:
 
 - Group Policy
-- System Center Configuration Manager (current branch) version 1606 
-- System Center 2012 Configuration manager or later versions
-- Mobile Device Management
-- Microsoft Intune
+- System Center Configuration Manager
+- Mobile Device Management (including Microsoft Intune)
 - Local script
 
-## Configure endpoints with Group Policy
-
-> **Note**&nbsp;&nbsp;To use GP updates to deploy the package, you must be on Windows Server 2008 R2 or later. 
-
-1.  Open the GP configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
-
-    a.  Click **Endpoint Management** on the **Navigation pane**.
-
-    b.  Select **Group Policy**, click **Download package** and save the .zip file.
-
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a folder called *OptionalParamsPolicy* and the file *WindowsDefenderATPOnboardingScript.cmd*.
-
-3. Open the [Group Policy Management Console](https://technet.microsoft.com/en-us/library/cc731212.aspx) (GPMC), right-click the Group Policy Object (GPO) you want to configure and click **Edit**.
-
-4. In the **Group Policy Management Editor**, go to **Computer configuration**, then **Preferences**, and then **Control panel settings**.
-
-5. Right-click **Scheduled tasks**, point to **New**, and then click **Immediate task**.
-
-6. In the  **Task** window that opens, go to the **General** tab. Choose the local SYSTEM user account under **Security options**.
-
-7. Select **Run whether user is logged on or not** and check the **Run with highest privileges** check box.
-
-8. Go to the **Actions** tab and click **New...** Ensure that **Start a program** is selected in the **Action** field. Enter the file name and location of the shared *WindowsDefenderATPOnboardingScript.cmd* file.
-
-9. Click **OK** and close any open GPMC windows.
-
-For additional settings, see the [Additional configuration settings section](additional-configuration-windows-defender-advanced-threat-protection.md).
-
-## Configure endpoints with System Center Configuration Manager (current branch) version 1606
-System Center Configuration Manager (current branch) version 1606, currently in technical preview, has UI integrated support for configuring and managing Windows Defender ATP on endpoints. For more information, see the [Support for Windows Defender Advanced Threat Protection service](https://technet.microsoft.com/en-us/library/mt706220.aspx#BKMK_ATP) section.
-
-> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
-
-## Configure endpoints with System Center 2012 Configuration Manager or later versions
-You can use System Center Configuration Manager’s existing functionality to create a policy to configure your endpoints. This is supported in System Center 2012 Configuration Manager or later versions, including: System Center 2012 R2 Configuration Manager, System Center Configuration Manager and System Center Configuration Manager (current branch), version 1602 or earlier. 
-
-1. Open the SCCM configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
-
-    a. Click **Endpoint Management** on the **Navigation pane**.
-
-    b. Select **System Center Configuration Manager**, click **Download package**, and save the .zip file.
-
-2. Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file called *WindowsDefenderATPOnboardingScript.cmd*.
-
-3. Import the configuration package by following the steps in the [How to Create Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682112.aspx#BKMK_Import) topic.
-
-4. Deploy the package by following the steps in the [How to Deploy Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682178.aspx) topic.
-
-    a. Choose a predefined device collection to deploy the package to.
-
-## Configure endpoints with Mobile Device Management tools
-You can use mobile device management (MDM) solutions to configure endpoints. Windows Defender ATP supports MDMs by providing OMA-URIs to create policies to manage endpoints. 
-
-For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
-
-> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
-
-## Configure endpoints with Microsoft Intune
-
-For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
-
-> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
-
-1. Open the Microsoft Intune configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
- 
-    a.  Click **Endpoint Management** on the **Navigation pane**.
-
-    b.  Select **Microsoft Intune**, click **Download package** and save the .zip file.
-
-2. Extract the contents of the configuration package to a location on the endpoint you want to onboard (for example, the Desktop). You should have a file called *WindowsDefenderATP.onboarding*.
-
-3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune).
-
-These policies are categorized into two groups:
-- Onboarding - Use the onboarding policies to deploy configuration settings on endpoints. These policies can be sub-categorized to:
-    - Onboarding
-    - Health Status for onboarded machines
-    - Configuration for onboarded machines
-- Offboarding - Use the offboarding policies to remove configuration settings on endpoints. These policies can be sub-categorized to:
-    - Offboarding
-    - Health Status for offboarded machines
-    - Configuration for offboarded machines
-
-> **Warning**&nbsp;&nbsp;These two groups must not be deployed on the same machine at same time, otherwise this will cause unpredictable collisions.
-
-Policy | OMA-URI | Type | Description | Value
-:---|:---|:---|:---|:---
-Onboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Onboarding | String | Onboarding | Copy content from onboarding MDM file
-Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is running | TRUE
- | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Onboarded to Windows Defender ATP | 1
-  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OrgId | String | Onboarded to Organization ID | Use OrgID from onboarding file
- Configuration for onboarded machines  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Configuration/SampleSharing | Integer | Windows Defender ATP Sample sharing is enabled | 0 or 1 <br> Default value: 1
- Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding | String | Offboarding | Copy content from offboarding MDM file
- Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is not running | FALSE
-  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Offboarded from Windows Defender ATP  | 0
-
-> **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** and **Health Status for offboarded machines** use read-only properties and can't be remediated.
-
-## Configure endpoints individually with a local script
-
-You can also manually onboard individual endpoints to Windows Defender ATP. You might want to do this first when testing the service before you commit to onboarding all endpoints in your network.
-
-
-1.  Open the GP configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
-
-    a.  Click **Endpoint Management** on the **Navigation pane**.
-
-    b.  Select **Local Script**, click **Download package** and save the .zip file.
-
-
-2.  Extract the contents of the configuration package to a location on the endpoint you want to onboard (for example, the Desktop). You should have a file called *WindowsDefenderATPOnboardingScript.cmd*.
-
-3.  Open an elevated command-line prompt on the endpoint and run the script:
-
-    a.  Click **Start** and type **cmd**.
-
-    b.  Right-click **Command prompt** and select **Run as administrator**.
-
-    ![Window Start menu pointing to Run as administrator](images/run-as-admin.png)
-
-4.  Type the location of the script file. If you copied the file to the desktop, type: *`%userprofile%\Desktop\WindowsDefenderATPOnboardingScript.cmd`*
-
-5.  Press the **Enter** key or click **OK**.
-
-See the [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) topic for details on how you can manually validate that the endpoint is compliant and correctly reports telemetry.
 
 ## Related topics
 - [Configure endpoint proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md b/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md
index 8babe1f172..1fbfe3d5ef 100644
--- a/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md
@@ -36,27 +36,7 @@ Monitoring can be done directly on the portal, or by using System Center Configu
 
 > **Note**&nbsp;&nbsp;It can take several days for endpoints to start showing on the **Machines view**. This includes the time it takes for the policies to be distributed to the endpoint, the time it takes before the user logs on, and the time it takes for the endpoint to start reporting.
 
-## Monitor with System Center Configuration Manager
 
-Monitoring with SCCM consists of two parts:
-
-1. Confirming the configuration package has been correctly deployed and is running (or has successfully run) on the endpoints in your network.
-
-2. Checking that the endpoints are compliant with the Windows Defender ATP service (this ensures the endpoint can complete the onboarding process and can continue to report data to the service).
-
-**To confirm the configuration package has been correctly deployed:**
-
-1. In the SCCM console, click **Monitoring** at the bottom of the navigation pane.
-
-2. Click **Overview** and then **Deployments**.
-
-3. Click on the deployment with the package name.
-
-4. Review the status indicators under **Completion Statistics** and **Content Status**.
-
-If there are failed deployments (endpoints with **Error**, **Requirements Not Met**, or **Failed statuses**), you may need to  troubleshoot the endpoints. See the [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) topic for more information.
-
-![SCCM showing successful deployment with no errors](images/sccm-deployment.png)
 
 ## Related topics
 <!--- [Windows Defender ATP service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md)-->

From 6ba7e97cc95453970e87d5bbf99b81e424c1e9fa Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 16:28:50 +1000
Subject: [PATCH 48/69] add new topics in TOC

---
 windows/keep-secure/TOC.md | 7 +++++++
 1 file changed, 7 insertions(+)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 6d463f47d2..0d946ebdf1 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -682,6 +682,13 @@
 #### [Assign user access to the portal](assign-portal-access-windows-defender-advanced-threat-protection.md)
 #### [Onboard endpoints and set up access](onboard-configure-windows-defender-advanced-threat-protection.md)
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
+###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
+###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
+####### [Configure endpoints using SCCM 2016](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-(current-branch)-version-1606))
+####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
+###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
+####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)
+###### [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md)
 ##### [Configure proxy and Internet settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
 ##### [Additional configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
 ##### [Monitor onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)

From 1a852d7c04059ad22b1404146ae2e61da1aa080f Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 17:51:45 +1000
Subject: [PATCH 49/69] fix extension names

---
 windows/keep-secure/TOC.md                         |  4 +---
 ...-windows-defender-advanced-threat-protection.md |  5 +++--
 ...-windows-defender-advanced-threat-protection.md |  6 ++++--
 ...-windows-defender-advanced-threat-protection.md | 14 ++++++++------
 ...-windows-defender-advanced-threat-protection.md |  4 ++--
 5 files changed, 18 insertions(+), 15 deletions(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 0d946ebdf1..33111e697a 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -684,14 +684,12 @@
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-####### [Configure endpoints using SCCM 2016](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-(current-branch)-version-1606))
+####### [Configure endpoints using SCCM 1606](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-(current-branch)-version-1606))
 ####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)
 ###### [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md)
 ##### [Configure proxy and Internet settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
-##### [Additional configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-##### [Monitor onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
 ##### [Troubleshoot onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
 #### [Portal overview](portal-overview-windows-defender-advanced-threat-protection.md)
 #### [Use the Windows Defender ATP portal](use-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
index f169e2f545..4a37f932dc 100644
--- a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
@@ -21,6 +21,7 @@ author: mjcaparas
 
 > **Note**&nbsp;&nbsp;To use GP updates to deploy the package, you must be on Windows Server 2008 R2 or later. 
 
+### Onboard endpoints
 1.  Open the GP configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
 
     a.  Click **Endpoint Management** on the **Navigation pane**.
@@ -47,7 +48,7 @@ author: mjcaparas
 
 You can use Group Policy (GP) to configure settings, such as settings for the sample sharing used in the deep analysis feature.
 
-## Configure sample collection settings using Group Policy
+### Configure sample collection settings using Group Policy
 1.  On your GP management machine, copy the following files from the
     configuration package:
 
@@ -65,7 +66,7 @@ You can use Group Policy (GP) to configure settings, such as settings for the sa
 
 6.  Choose to enable or disable sample sharing from your endpoints.
 
-## Offboard endpoints using Group Policy
+### Offboard endpoints
 For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
 
 > **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index 9d0c4df281..72fa25d9dd 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -31,6 +31,8 @@ For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThre
 
 > **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
 
+### Onboard and monitor endpoints 
+
 1. Open the Microsoft Intune configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
  
     a.  Click **Endpoint Management** on the **Navigation pane**.
@@ -59,7 +61,7 @@ Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThrea
 
 > **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** and **Health Status for offboarded machines** use read-only properties and can't be remediated.
 
-## Offboard and monitor endpoints using Mobile Device Management tools
+### Offboard and monitor endpoints
 
 For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
 
@@ -70,7 +72,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
     a. Click **Endpoint Management** on the **Navigation pane**.
     b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
     
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.offboarding*.
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATP_valid_until_YYYY-MM-DD.offboarding*.
 
 3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune). 
 
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index 7536a1eee6..c4ac346a95 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -10,7 +10,7 @@ ms.pagetype: security
 author: mjcaparas
 ---
 
-# Configure endpoints with System Center Configuration Manager
+# Configure endpoints uisng System Center Configuration Manager
 
 **Applies to:**
 
@@ -24,8 +24,10 @@ System Center Configuration Manager (current branch) version 1606, currently in
 
 > **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
 
-## Configure endpoints using System Center 2012 Configuration Manager or later versions
-You can use System Center Configuration Manager’s existing functionality to create a policy to configure your endpoints. This is supported in System Center 2012 Configuration Manager or later versions, including: System Center 2012 R2 Configuration Manager, System Center Configuration Manager and System Center Configuration Manager (current branch), version 1602 or earlier. 
+## Configure endpoints using System Center Configuration Manager (current branch) version 1602 or earlier versions 
+You can use System Center Configuration Manager’s existing functionality to create a policy to configure your endpoints. This is supported in System Center Configuration Manager (current branch), version 1602 or earlier, including: System Center 2012 R2 Configuration Manager and System Center 2012 Configuration Manager. 
+
+### Onboard endpoints 
 
 1. Open the SCCM configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
 
@@ -41,7 +43,7 @@ You can use System Center Configuration Manager’s existing functionality to cr
 
     a. Choose a predefined device collection to deploy the package to.
     
-## Offboard endpoints using System Center Configuration Manager
+### Offboard endpoints 
 For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
 
 > **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
@@ -51,7 +53,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
     a. Click Endpoint Management on the Navigation pane.
     b. Under Endpoint offboarding section, select System Center Configuration Manager (current branch) version 1602 or earlier, click Download package, and save the .zip file.
     
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATP_valid_until_YYYY-MM-DD.cmd*.
 
 3. Import the configuration package by following the steps in the [How to Create Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682112.aspx#BKMK_Import) topic.
 
@@ -59,7 +61,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 
     a. Choose a predefined device collection to deploy the package to.
     
-## Monitor endpoint configuration using System Center Configuration Manager
+### Monitor endpoint configuration using System Center Configuration Manager
 Monitoring with SCCM consists of two parts:
 
 1. Confirming the configuration package has been correctly deployed and is running (or has successfully run) on the endpoints in your network.
diff --git a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
index 2209348988..61c7f401cc 100644
--- a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
@@ -47,7 +47,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
     a. Click **Endpoint Management** on the **Navigation pane**.
     b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
     
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_\<YYYY-MM-DD\>.cmd*.
 
 3.  Open an elevated command-line prompt on the endpoint and run the script:
 
@@ -57,6 +57,6 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 
     ![Window Start menu pointing to Run as administrator](images/run-as-admin.png)
 
-4.  Type the location of the script file. If you copied the file to the desktop, type: *`%userprofile%\Desktop\WindowsDefenderATPOnboardingScript.cmd`*
+4.  Type the location of the script file. If you copied the file to the desktop, type: *%userprofile%\Desktop\WindowsDefenderATPOffboardingScript_valid_until_\<YYYY-MM-DD\>.cmd*
 
 5.  Press the **Enter** key or click **OK**.
\ No newline at end of file

From 42ad97dacef62abc76f51a7f8fb76b7687ed74a0 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 18:24:44 +1000
Subject: [PATCH 50/69] add related topics, update table

---
 ...p-windows-defender-advanced-threat-protection.md |  4 ++++
 ...m-windows-defender-advanced-threat-protection.md |  4 ++++
 ...m-windows-defender-advanced-threat-protection.md |  7 ++++++-
 ...t-windows-defender-advanced-threat-protection.md |  8 +++++++-
 ...s-windows-defender-advanced-threat-protection.md | 13 +++++++------
 ...e-windows-defender-advanced-threat-protection.md |  2 --
 6 files changed, 28 insertions(+), 10 deletions(-)

diff --git a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
index 4a37f932dc..60cced9f5d 100644
--- a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
@@ -103,3 +103,7 @@ With Group Policy there isn’t an option to monitor deployment of policies on t
 > **Note**&nbsp;&nbsp;It can take several days for endpoints to start showing on the **Machines view**. This includes the time it takes for the policies to be distributed to the endpoint, the time it takes before the user logs on, and the time it takes for the endpoint to start reporting.
 
 
+## Related topics
+- [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index 72fa25d9dd..1b027dbcf2 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -90,3 +90,7 @@ Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding |
 > **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
 
   
+## Related topics
+- [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index c4ac346a95..d4cb1cc475 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -80,4 +80,9 @@ Monitoring with SCCM consists of two parts:
 
 If there are failed deployments (endpoints with **Error**, **Requirements Not Met**, or **Failed statuses**), you may need to  troubleshoot the endpoints. See the [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) topic for more information.
 
-![SCCM showing successful deployment with no errors](images/sccm-deployment.png)
\ No newline at end of file
+![SCCM showing successful deployment with no errors](images/sccm-deployment.png)
+
+## Related topics
+- [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
index 61c7f401cc..ee77bcc824 100644
--- a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
@@ -59,4 +59,10 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 
 4.  Type the location of the script file. If you copied the file to the desktop, type: *%userprofile%\Desktop\WindowsDefenderATPOffboardingScript_valid_until_\<YYYY-MM-DD\>.cmd*
 
-5.  Press the **Enter** key or click **OK**.
\ No newline at end of file
+5.  Press the **Enter** key or click **OK**.
+
+
+## Related topics
+- [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
+- [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
index 8ad58fa146..0028b5478b 100644
--- a/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-windows-defender-advanced-threat-protection.md
@@ -28,9 +28,10 @@ Windows Defender ATP supports the following deployment tools and methods:
 - Mobile Device Management (including Microsoft Intune)
 - Local script
 
-
-## Related topics
-- [Configure endpoint proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
-- [Additional Windows Defender ATP configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-- [Monitor the Windows Defender ATP onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
-- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
+## In this section
+Topic | Description
+:---|:---
+[Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md) | Use Group Policy to deploy the configuration package on endpoints.
+[Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md) | You can use either use System Center Configuration Manager (current branch) version 1606 or System Center Configuration Manager(current branch) version 1602 or earlier to deploy the configuration package on endpoints.
+[Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md) | Use Mobile Device Managment tools or Microsoft Intune to deploy the configuration package on endpoints.
+[Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) | Learn how to use the local script to deploy the configuration package on endpoints.
diff --git a/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md b/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md
index 668883a264..3cfcbb1cde 100644
--- a/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md
@@ -36,6 +36,4 @@ Topic | Description
 :---|:---
 [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md) | You'll need to configure endpoints for it to report to the Windows Defender ATP service. Learn about the tools and methods you can use to configure endpoints in your enterprise.
 [Configure proxy and Internet settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)| Enable communication with the Windows Defender ATP cloud service by configuring the proxy and Internet connectivity settings.
-[Additional configuration settings] (additional-configuration-windows-defender-advanced-threat-protection.md) | Learn how to configure settings for sample sharing used in the deep analysis feature.
-[Monitor onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md) | Learn how you can monitor the onboarding to ensure your endpoints are correctly configured and are sending telemetry reports.
 [Troubleshoot onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) | Learn about resolving issues that might arise during onboarding.

From 503fcca7068431ff5392fdfcf3db2e8baf2da72d Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 18:37:45 +1000
Subject: [PATCH 51/69] fixing anchor links

---
 windows/keep-secure/TOC.md                                      | 2 +-
 ...ndpoints-sccm-windows-defender-advanced-threat-protection.md | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 33111e697a..9275942925 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -684,7 +684,7 @@
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-####### [Configure endpoints using SCCM 1606](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-(current-branch)-version-1606))
+####### [Configure endpoints using SCCM 1606](<span id="sccm1606"/>)
 ####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index d4cb1cc475..0def99f471 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -19,6 +19,7 @@ author: mjcaparas
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
+<span id="sccm1606"/>
 ## Configure endpoints using System Center Configuration Manager (current branch) version 1606
 System Center Configuration Manager (current branch) version 1606, currently in technical preview, has UI integrated support for configuring and managing Windows Defender ATP on endpoints. For more information, see the [Support for Windows Defender Advanced Threat Protection service](https://technet.microsoft.com/en-us/library/mt706220.aspx#BKMK_ATP) section.
 

From 61b75109aa088eb6cc5aec05cc7dcc760c149566 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 19:11:25 +1000
Subject: [PATCH 52/69] fixing anchor link

---
 windows/keep-secure/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 9275942925..75bdcca63f 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -684,7 +684,7 @@
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-####### [Configure endpoints using SCCM 1606](<span id="sccm1606"/>)
+####### [Configure endpoints using SCCM 1606]
 ####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)

From f25776cd8bb71c6bdd4189c9b5f871405282eec1 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 19:46:31 +1000
Subject: [PATCH 53/69] update anchor, update toc, update title

---
 windows/keep-secure/TOC.md                                      | 2 +-
 ...-endpoints-gp-windows-defender-advanced-threat-protection.md | 2 +-
 ...ndpoints-sccm-windows-defender-advanced-threat-protection.md | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 75bdcca63f..634f47eedf 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -684,7 +684,7 @@
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-####### [Configure endpoints using SCCM 1606]
+####### [Configure endpoints using SCCM 1606](#sccm1606)
 ####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)
diff --git a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
index 60cced9f5d..2f8fc98460 100644
--- a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
@@ -10,7 +10,7 @@ ms.pagetype: security
 author: mjcaparas
 ---
 
-## Configure endpoints using Group Policy
+# Configure endpoints using Group Policy
 
 **Applies to:**
 
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index 0def99f471..d33636f939 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -19,7 +19,7 @@ author: mjcaparas
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-<span id="sccm1606"/>
+<a name="sccm1606"></a>
 ## Configure endpoints using System Center Configuration Manager (current branch) version 1606
 System Center Configuration Manager (current branch) version 1606, currently in technical preview, has UI integrated support for configuring and managing Windows Defender ATP on endpoints. For more information, see the [Support for Windows Defender Advanced Threat Protection service](https://technet.microsoft.com/en-us/library/mt706220.aspx#BKMK_ATP) section.
 

From 3ae5868b0b944fd20678c733413e25b743dd9acd Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 19:56:00 +1000
Subject: [PATCH 54/69] fixing link

---
 windows/keep-secure/TOC.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 634f47eedf..4847d00389 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -684,7 +684,7 @@
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-####### [Configure endpoints using SCCM 1606](#sccm1606)
+####### [Configure endpoints using SCCM 1606](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#sccm1606)
 ####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)

From 21fba964ecf0d96ad25481c6bb68f3ee7f310f24 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:02:43 +1000
Subject: [PATCH 55/69] remove old text topic

---
 ...gure-windows-defender-advanced-threat-protection.md | 10 ----------
 1 file changed, 10 deletions(-)

diff --git a/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md b/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md
index 3cfcbb1cde..942dfa02ee 100644
--- a/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/onboard-configure-windows-defender-advanced-threat-protection.md
@@ -21,16 +21,6 @@ author: iaanw
 
 You need to onboard to Windows Defender ATP before you can use the service.
 
-<!--There are two stages to onboarding:
-
-1.  Set up user access in AAD and use a wizard to create a dedicated
-    cloud instance for your network (known as “service onboarding”).
-
-2.  Add endpoints to the service with System Center Configuration Manager, scheduled GP updates, or manual
-    registry changes.-->
-
-<!--[Service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md) | Learn about managing user access to the Windows Defender ATP portal by assigning users to the Windows Defender ATP service application in Azure Active Directory (AAD).-->
-
 ## In this section
 Topic | Description
 :---|:---

From f6c56953a10819057c3a2ad897e489655ab086a4 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:03:56 +1000
Subject: [PATCH 56/69] fix typo

---
 ...dpoints-sccm-windows-defender-advanced-threat-protection.md | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index d33636f939..fef8fdb284 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -10,7 +10,8 @@ ms.pagetype: security
 author: mjcaparas
 ---
 
-# Configure endpoints uisng System Center Configuration Manager
+# Configure endpoints using System Center Configuration Manager
+
 
 **Applies to:**
 

From dc779d17515afb8f4d424f428a11c82cd9ddd9b1 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:18:02 +1000
Subject: [PATCH 57/69] test link

---
 ...ndpoints-sccm-windows-defender-advanced-threat-protection.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index fef8fdb284..6c7eaeb7d1 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -20,7 +20,7 @@ author: mjcaparas
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-<a name="sccm1606"></a>
+<span id="sccm1606"/>
 ## Configure endpoints using System Center Configuration Manager (current branch) version 1606
 System Center Configuration Manager (current branch) version 1606, currently in technical preview, has UI integrated support for configuring and managing Windows Defender ATP on endpoints. For more information, see the [Support for Windows Defender Advanced Threat Protection service](https://technet.microsoft.com/en-us/library/mt706220.aspx#BKMK_ATP) section.
 

From 6234a105d3465fdf03f088b3a3481f56f634ec31 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:30:16 +1000
Subject: [PATCH 58/69] fix Related topics

---
 ...ows-defender-advanced-threat-protection.md |  47 -------
 ...ows-defender-advanced-threat-protection.md |   3 -
 ...ows-defender-advanced-threat-protection.md |   3 -
 ...ows-defender-advanced-threat-protection.md |  46 -------
 ...ows-defender-advanced-threat-protection.md | 121 ------------------
 ...ows-defender-advanced-threat-protection.md |   4 +-
 6 files changed, 1 insertion(+), 223 deletions(-)
 delete mode 100644 windows/keep-secure/additional-configuration-windows-defender-advanced-threat-protection.md
 delete mode 100644 windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md
 delete mode 100644 windows/keep-secure/service-onboarding-windows-defender-advanced-threat-protection.md

diff --git a/windows/keep-secure/additional-configuration-windows-defender-advanced-threat-protection.md b/windows/keep-secure/additional-configuration-windows-defender-advanced-threat-protection.md
deleted file mode 100644
index 93d466aa32..0000000000
--- a/windows/keep-secure/additional-configuration-windows-defender-advanced-threat-protection.md
+++ /dev/null
@@ -1,47 +0,0 @@
----
-title: Additional Windows Defender ATP configuration settings
-description: Use the Group Policy Console to configure settings that enable sample sharing from your endpoints. These settings are used in the deep analysis feature.
-keywords: configuration settings, Windows Defender ATP configuration settings, Windows Defender Advanced Threat Protection configuration settings, group policy Management Editor, computer configuration, policies, administrative templates,
-search.product: eADQiWindows 10XVcnh
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.pagetype: security
-ms.sitesec: library
-author: mjcaparas
----
-
-# Additional Windows Defender ATP configuration settings
-
-**Applies to**
-
-- Windows 10 Insider Preview Build 14332 or later
-- Windows Defender Advanced Threat Protection (Windows Defender ATP)
-
-<span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
-
-You can use Group Policy (GP) to configure settings, such as settings for the sample sharing used in the deep analysis feature.
-
-## Configure sample collection settings with Group Policy
-1.  On your GP management machine, copy the following files from the
-    configuration package:
-
-    a.  Copy _AtpConfiguration.admx_ into _C:\\Windows\\PolicyDefinitions_
-
-    b.  Copy _AtpConfiguration.adml_ into _C:\\Windows\\PolicyDefinitions\\en-US_
-
-2.  Open the [Group Policy Management Console](https://technet.microsoft.com/en-us/library/cc731212.aspx), right-click the GPO you want to configure and click **Edit**.
-
-3.  In the **Group Policy Management Editor**, go to **Computer configuration**.
-
-4.  Click **Policies**, then **Administrative templates**.
-
-5.  Click **Windows components** and then **Windows Advanced Threat Protection**.
-
-6.  Choose to enable or disable sample sharing from your endpoints.
-
-## Related topics
-<!--- [Windows Defender ATP service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md)-->
-- [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
-- [Configure endpoint proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
-- [Monitor the Windows Defender ATP onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
-- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/configure-proxy-internet-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-proxy-internet-windows-defender-advanced-threat-protection.md
index 0c31cc5832..27177d0829 100644
--- a/windows/keep-secure/configure-proxy-internet-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-proxy-internet-windows-defender-advanced-threat-protection.md
@@ -179,8 +179,5 @@ Verify the proxy configuration completed successfully, that WinHTTP can discover
 If the any of the verification steps indicate a fail, then verify that you have performed the proxy configuration steps to enable server discovery and access to the service URLs.
 
 ## Related topics
-<!--- [Windows Defender ATP service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md)-->
 - [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
-- [Additional Windows Defender ATP configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-- [Monitor the Windows Defender ATP onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
 - [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/event-error-codes-windows-defender-advanced-threat-protection.md b/windows/keep-secure/event-error-codes-windows-defender-advanced-threat-protection.md
index 6e239a2aea..f019d14fdf 100644
--- a/windows/keep-secure/event-error-codes-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/event-error-codes-windows-defender-advanced-threat-protection.md
@@ -242,9 +242,6 @@ See [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defen
 
 
 ## Related topics
-<!--- [Windows Defender ATP service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md)-->
 - [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 - [Configure endpoint proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
-- [Additional Windows Defender ATP configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-- [Monitor the Windows Defender ATP onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
 - [Troubleshoot Windows Defender ATP](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md b/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md
deleted file mode 100644
index 1fbfe3d5ef..0000000000
--- a/windows/keep-secure/monitor-onboarding-windows-defender-advanced-threat-protection.md
+++ /dev/null
@@ -1,46 +0,0 @@
----
-title: Monitor Windows Defender ATP onboarding
-description: Monitor the onboarding of the Windows Defender ATP service to ensure your endpoints are correctly configured and are sending telemetry reports.
-keywords: monitor onboarding, monitor Windows Defender ATP onboarding, monitor Windows Defender Advanced Threat Protection onboarding
-search.product: eADQiWindows 10XVcnh
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-author: mjcaparas
----
-
-# Monitor Windows Defender Advanced Threat Protection onboarding
-
-**Applies to:**
-
-- Windows 10 Insider Preview Build 14322 or later
-- Windows Defender Advanced Threat Protection (Windows Defender ATP)
-
-<span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
-
-You can monitor the onboarding of the Windows Defender ATP service to ensure your endpoints are correctly configured and are sending telemetry reports.
-
-You might need to monitor the onboarding if the package did not configure the registry correctly, or the reporting client did not start or execute correctly.
-
-Monitoring can be done directly on the portal, or by using System Center Configuration Manager (SCCM).
-
-## Monitor with the portal
-
-1.  Go to the [Windows Defender ATP portal](https://securitycenter.windows.com/).
-
-2.  Click **Machines view**.
-
-3.  Verify that endpoints are appearing.
-
-
-> **Note**&nbsp;&nbsp;It can take several days for endpoints to start showing on the **Machines view**. This includes the time it takes for the policies to be distributed to the endpoint, the time it takes before the user logs on, and the time it takes for the endpoint to start reporting.
-
-
-
-## Related topics
-<!--- [Windows Defender ATP service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md)-->
-- [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
-- [Configure endpoint proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
-- [Additional Windows Defender ATP configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/service-onboarding-windows-defender-advanced-threat-protection.md b/windows/keep-secure/service-onboarding-windows-defender-advanced-threat-protection.md
deleted file mode 100644
index 790d75a1dd..0000000000
--- a/windows/keep-secure/service-onboarding-windows-defender-advanced-threat-protection.md
+++ /dev/null
@@ -1,121 +0,0 @@
----
-title: Windows Defender ATP service onboarding
-description: Assign users to the Windows Defender ATP service application in Azure Active Directory to grant access to the portal.
-keywords: service onboarding, Windows Defender Advanced Threat Protection service onboarding, manage users,
-search.product: eADQiWindows 10XVcnh
-ms.prod: w10
-ms.mktglfcycl: deploy
-ms.sitesec: library
-ms.pagetype: security
-author: mjcaparas
----
-
-# Windows Defender ATP service onboarding
-
-**Applies to:**
-
-- Windows 10 Insider Preview Build 14332 or later
-- Azure Active Directory
-- Windows Defender Advanced Threat Protection (Windows Defender ATP)
-
-<span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
-
-You have to assign users to the Windows Defender ATP Service application in Azure Active Directory (AAD) before they can access the portal.
-
-**Manage user access to the Windows Defender ATP portal**:
-
-1.  When you first go to the [Windows Defender ATP portal](https://securitycenter.windows.com/) and your directory does not
-    have users assigned to the Windows ATP Service application, you will
-    be directed to open the [Microsoft Azure Dashboard](https://portal.azure.com) to manage user access.
-
-    > **Note**&nbsp;&nbsp;In AAD, a directory is essentially a tenant. See the [Azure AD documentation](https://msdn.microsoft.com/en-us/library/azure/jj573650.aspx) for more information on how tenants work with AAD.
-
-2.  Ensure you have logged in to Microsoft Azure with an account that
-    has permissions to assign users to an application in AAD. You might
-    need to sign out of Microsoft Azure and then sign back in again if
-    you used a different account to sign in to the Windows Defender ATP
-    portal:
-
-    a.  On the top menu, click the signed-in user’s name.
-
-    b.  Click **Sign out**.
-
-    ![Azure sign out](images/azure-signout.png)
-
-    c.	Go the [Microsoft Azure Dashboard](https://portal.azure.com) again where you will be asked to sign in.
-
-    d.	Sign in with the correct user name and password for an account that has permissions to assign users in AAD.
-
-3. On the **Microsoft Azure Dashboard**, click **Browse** in the navigation pane and then click **Active Directory** to open the [Azure Management Portal](https://manage.windowsazure.com/).
-
-    ![Azure Active Directory menu](images/azure-browse.png)
-
-4. You might need to open the **Directory** section of the [Azure Management Portal](https://manage.windowsazure.com/) so you can access your directory. There are two ways you can do this:
-
-    a.  Click the arrow icon above the list of directories to see the full list of directories in the main area of the portal.
-
-    ![Azure organization menu](images/azure-org-directory.png)
-
-    b. Scroll down in the navigation pane and click **Active Directory**.
-
-    ![Azure active directory](images/azure-active-directory.png)
-
-5. Click the directory that contains the Windows Defender ATP application. In the following example, the directory is
-    called **Contoso**.
-
-     ![Azure active directory list](images/azure-active-directory-list.png)
-
-    > **Note**&nbsp;&nbsp;You can also access your directory by going straight to the [Azure Management Portal](https://manage.windowsazure.com/), clicking Active Directory and then finding your directory in the list.
-
-6. Click **Applications** from the top menu bar.
-
-    ![Example organization in Azure Active Directory](images/contoso.png)
-
-7. Click the **Windows ATP Service** application. The dashboard for the application is shown.
-
-    ![Example selected organization in Azure Active Directory](images/contoso-application.png)
-
-    > **Note**&nbsp;&nbsp;The application might have a slightly different name than the one shown here. It might be called **Windows Defender ATP Service**.
-
-8. Click **Users** from the top menu bar. A list of users that are in the directory is displayed.
-
-    ![Example windows atp service users](images/windows-atp-service.png)
-
-    ![Example user assignment to the windows atp service](images/assign-users.png)
-
-    > **Note**&nbsp;&nbsp;If you do not normally work with AAD, you might not see any users in the directory, or we might have created a test tenant specifically for a single user’s account. See the [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md) section for instructions on adding users to a directory.
-
-9. Select the user you want manage.
-
-10. Click **Assign**.
-
-11. Confirm that you want to enable access for the user from the notification bar. If you click **Yes**, the user is given access to the Windows Defender ATP portal.  One or more progress bars will appear that indicates the user is being assigned a role, and you will see confirmation messages. You don’t need to do anything with the messages, they will go away after a short period of time.
-
-    ![Confirmation page to enable access to users](images/confirm-user-access.png)
-
-12. To remove the user's access, click **Remove**.
-
-13. Select the **Disable access to this app for the selected users** checkbox, and then click **Complete** ![Complete icon](images/check-icon.png). One or more progress bars will appear, followed by confirmation messages. The messages will disappear after a short period.
-
-    ![Remove menu](images/remove-menu.png)
-
-14. To remove the access for all users, click **Manage access**. If you click **Complete** ![Complete icon](images/check-icon.png), you will not see the Windows ATP Service in the list of applications in your directory.
-
-    > **Note**&nbsp;&nbsp;If you want to give access to users again, see the Manage access for all users in Azure Active Directory topic in [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md).
-
-15. You can continue assigning roles for other users in your organization now, or you can return to the Windows Defender ATP portal to complete the service onboarding wizard.
-
-    > **Note**&nbsp;&nbsp;You need to assign roles for every user in your organization that requires access to the Windows Defender ATP portal. You can assign roles at any time by going to the Azure Management Portal, clicking **Active Directory**, and then finding your directory in the list and following the steps above.
-
-When you have finished assigning roles, return to the [Windows Defender ATP portal](https://securitycenter.windows.com) and refresh the
-page.
-
-Follow the steps in the onboarding wizard to complete the onboarding process.
-
-At the end of the wizard, you can download the Group Policy configuration package which you will use to configure endpoints on your network. You can also download the package from the **Endpoint Management** menu on the portal after you have completed the onboarding wizard.
-
-## Related topics
-- [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
-- [Monitor the Windows Defender ATP onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
-- [Additional Windows Defender ATP configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/troubleshoot-onboarding-windows-defender-advanced-threat-protection.md b/windows/keep-secure/troubleshoot-onboarding-windows-defender-advanced-threat-protection.md
index 5cb5400bb0..b9baeb947e 100644
--- a/windows/keep-secure/troubleshoot-onboarding-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/troubleshoot-onboarding-windows-defender-advanced-threat-protection.md
@@ -436,8 +436,6 @@ Log in to the application in the Azure Management Portal again:
 -->
 
 ## Related topics
-<!--- [Windows Defender ATP service onboarding](service-onboarding-windows-defender-advanced-threat-protection.md)-->
 - [Configure Windows Defender ATP endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 - [Configure endpoint proxy and Internet connectivity settings](configure-proxy-internet-windows-defender-advanced-threat-protection.md)
-- [Additional Windows Defender ATP configuration settings](additional-configuration-windows-defender-advanced-threat-protection.md)
-- [Monitor the Windows Defender ATP onboarding](monitor-onboarding-windows-defender-advanced-threat-protection.md)
+

From 2a590e99160f488b3f89d48c1f4777321ca11fb7 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:40:33 +1000
Subject: [PATCH 59/69] swap description and value from table

---
 ...dm-windows-defender-advanced-threat-protection.md | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index 1b027dbcf2..a06b2c7212 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -50,13 +50,13 @@ Onboarding - Use the onboarding policies to deploy configuration settings on end
 
 > **Warning**&nbsp;&nbsp;These two groups must not be deployed on the same machine at same time, otherwise this will cause unpredictable collisions.
 
-Policy | OMA-URI | Type | Description | Value
+Policy | OMA-URI | Type | Value | Description
 :---|:---|:---|:---|:---
-Onboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Onboarding | String | Onboarding | Copy content from onboarding MDM file
-Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is running | TRUE
- | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Onboarded to Windows Defender ATP | 1
-  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OrgId | String | Onboarded to Organization ID | Use OrgID from onboarding file
- Configuration for onboarded machines  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Configuration/SampleSharing | Integer | Windows Defender ATP Sample sharing is enabled | 0 or 1 <br> Default value: 1
+Onboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Onboarding | String | Copy content from onboarding MDM file |  Onboarding
+Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | TRUE |  Windows Defender ATP service is running
+ | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | 1 | Onboarded to Windows Defender ATP
+  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OrgId | String | Use OrgID from onboarding file | Onboarded to Organization ID
+ Configuration for onboarded machines  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Configuration/SampleSharing | Integer | 0 or 1 <br> Default value: 1 | Windows Defender ATP Sample sharing is enabled 
  
 
 > **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** and **Health Status for offboarded machines** use read-only properties and can't be remediated.

From 430159e5140f2b40603bbf9d1e14879f038f5889 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:42:02 +1000
Subject: [PATCH 60/69] add anchor, update TOC

---
 windows/keep-secure/TOC.md                                      | 2 +-
 ...ndpoints-sccm-windows-defender-advanced-threat-protection.md | 1 +
 2 files changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 4847d00389..aea7299ce0 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -685,7 +685,7 @@
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using SCCM 1606](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#sccm1606)
-####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-system-center-configuration-manager-2012-or-later-versions)
+####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#sccm1602)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)
 ###### [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index 6c7eaeb7d1..a46848c5fc 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -26,6 +26,7 @@ System Center Configuration Manager (current branch) version 1606, currently in
 
 > **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
 
+<span id="sccm1602"/>
 ## Configure endpoints using System Center Configuration Manager (current branch) version 1602 or earlier versions 
 You can use System Center Configuration Manager’s existing functionality to create a policy to configure your endpoints. This is supported in System Center Configuration Manager (current branch), version 1602 or earlier, including: System Center 2012 R2 Configuration Manager and System Center 2012 Configuration Manager. 
 

From d2d42ea05710513e32aeb27117cc023720841e4a Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 20:45:36 +1000
Subject: [PATCH 61/69] fix dead link

---
 ...stigate-files-windows-defender-advanced-threat-protection.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/investigate-files-windows-defender-advanced-threat-protection.md b/windows/keep-secure/investigate-files-windows-defender-advanced-threat-protection.md
index c7e1a14928..5dfb3959f9 100644
--- a/windows/keep-secure/investigate-files-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/investigate-files-windows-defender-advanced-threat-protection.md
@@ -121,7 +121,7 @@ HKLM\SOFTWARE\Policies\Microsoft\Sense\AllowSampleCollection
   Value = 0 - block sample collection
   Value = 1 - allow sample collection
 ```
-5. Change the organizational unit through the Group Policy. See [Configure with Group Policy](additional-configuration-windows-defender-advanced-threat-protection.md#configure-with-group-policy).
+5. Change the organizational unit through the Group Policy. See [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md).
 6. If these steps do not resolve the issue, contact [winatp@microsoft.com](mailto:winatp@microsoft.com).
 
 > **Note**&nbsp;&nbsp;If the value *AllowSampleCollection* is not available, the client will allow sample collection by default.

From 037efac74643b5c26a0c2d26c0168054be6b57b8 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 21:07:43 +1000
Subject: [PATCH 62/69] remove extra note, update file extension

---
 ...-windows-defender-advanced-threat-protection.md |  2 +-
 ...-windows-defender-advanced-threat-protection.md | 14 ++++++--------
 ...-windows-defender-advanced-threat-protection.md |  2 +-
 3 files changed, 8 insertions(+), 10 deletions(-)

diff --git a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
index 2f8fc98460..9f63869e32 100644
--- a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
@@ -19,7 +19,7 @@ author: mjcaparas
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
 
-> **Note**&nbsp;&nbsp;To use GP updates to deploy the package, you must be on Windows Server 2008 R2 or later. 
+> **Note**&nbsp;&nbsp;To use Group Policy (GP) updates to deploy the package, you must be on Windows Server 2008 R2 or later. 
 
 ### Onboard endpoints
 1.  Open the GP configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index a06b2c7212..4d464268ea 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -29,8 +29,6 @@ For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThre
 
 For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
 
-> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
-
 ### Onboard and monitor endpoints 
 
 1. Open the Microsoft Intune configuration package .zip file (*WindowsDefenderATPOnboardingPackage.zip*) that you downloaded from the service onboarding wizard. You can also get the package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
@@ -44,9 +42,9 @@ For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThre
 3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune).
 
 Onboarding - Use the onboarding policies to deploy configuration settings on endpoints. These policies can be sub-categorized to:
-    - Onboarding
-    - Health Status for onboarded machines
-    - Configuration for onboarded machines
+- Onboarding
+- Health Status for onboarded machines
+- Configuration for onboarded machines
 
 > **Warning**&nbsp;&nbsp;These two groups must not be deployed on the same machine at same time, otherwise this will cause unpredictable collisions.
 
@@ -77,9 +75,9 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune). 
 
 Offboarding - Use the offboarding policies to remove configuration settings on endpoints. These policies can be sub-categorized to:
-    - Offboarding
-    - Health Status for offboarded machines
-    - Configuration for offboarded machines
+- Offboarding
+- Health Status for offboarded machines
+- Configuration for offboarded machines
 
 Policy | OMA-URI | Type | Description | Value
 :---|:---|:---|:---|:---
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index a46848c5fc..2fab49e4ef 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -56,7 +56,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
     a. Click Endpoint Management on the Navigation pane.
     b. Under Endpoint offboarding section, select System Center Configuration Manager (current branch) version 1602 or earlier, click Download package, and save the .zip file.
     
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATP_valid_until_YYYY-MM-DD.cmd*.
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
 
 3. Import the configuration package by following the steps in the [How to Create Packages and Programs in Configuration Manager](https://technet.microsoft.com/en-us/library/gg682112.aspx#BKMK_Import) topic.
 

From a1772b7bc300ecc680ecda8f740f1d1e65eeba02 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 21:28:46 +1000
Subject: [PATCH 63/69] updates based on Naama's feedback

---
 windows/keep-secure/TOC.md                       |  2 --
 ...indows-defender-advanced-threat-protection.md |  8 +++++---
 ...indows-defender-advanced-threat-protection.md | 16 ++++++++--------
 ...indows-defender-advanced-threat-protection.md | 15 +++++++++------
 ...indows-defender-advanced-threat-protection.md |  3 ++-
 5 files changed, 24 insertions(+), 20 deletions(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index aea7299ce0..c34ebed59a 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -684,8 +684,6 @@
 ##### [Configure endpoints](configure-endpoints-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 ###### [Configure endpoints using System Security Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-####### [Configure endpoints using SCCM 1606](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#sccm1606)
-####### [Configure endpoints using SCCM 2012](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md#sccm1602)
 ###### [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
 ####### [Configure endpoints using Microsoft Intune](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md#configure-endpoints-using-microsoft-intune)
 ###### [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
index 9f63869e32..d8db5694c4 100644
--- a/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-gp-windows-defender-advanced-threat-protection.md
@@ -48,7 +48,7 @@ author: mjcaparas
 
 You can use Group Policy (GP) to configure settings, such as settings for the sample sharing used in the deep analysis feature.
 
-### Configure sample collection settings using Group Policy
+### Configure sample collection settings 
 1.  On your GP management machine, copy the following files from the
     configuration package:
 
@@ -74,6 +74,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
 
     a. Click **Endpoint Management** on the **Navigation pane**.
+    
     b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
     
 2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
@@ -92,7 +93,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 
 9.	Click **OK** and close any open GPMC windows.
 
-## Monitor endpoint configuration using Group Policy
+## Monitor endpoint configuration 
 With Group Policy there isn’t an option to monitor deployment of policies on the endpoints. Monitoring can be done directly on the portal, or by using the different deployment tools.
 
 ## Monitor endpoints using the portal 
@@ -106,4 +107,5 @@ With Group Policy there isn’t an option to monitor deployment of policies on t
 ## Related topics
 - [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
 - [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
-- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
+- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md)
+- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index 4d464268ea..410e537b06 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -14,7 +14,7 @@ author: mjcaparas
 
 **Applies to:**
 
-- Windows 10 Insider Preview Build 14332 or later
+- Windows 10 Insider Preview Build 14379 or later
 - Windows Defender Advanced Threat Protection (Windows Defender ATP)
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
@@ -35,9 +35,9 @@ For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThre
  
     a.  Click **Endpoint Management** on the **Navigation pane**.
 
-    b.  Select **Microsoft Intune**, click **Download package** and save the .zip file.
+    b.  Select **Mobile Device Management/Microsoft Intune**, click **Download package** and save the .zip file.
 
-2. Extract the contents of the configuration package to a location on the endpoint you want to onboard (for example, the Desktop). You should have a file called *WindowsDefenderATP.onboarding*.
+2. Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file called  *WindowsDefenderATP.onboarding*.
 
 3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune).
 
@@ -68,9 +68,10 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
 
     a. Click **Endpoint Management** on the **Navigation pane**.
-    b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
     
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATP_valid_until_YYYY-MM-DD.offboarding*.
+    b. Under **Endpoint offboarding** section, select **Mobile Device Management /Microsoft Intune**, click **Download package** and save the .zip file.
+    
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATP_valid_until_YYYY-MM-DD.offboarding*.
 
 3. Use the Microsoft Intune custom configuration policy to deploy the following supported OMA-URI settings. For more information on Microsoft Intune policy settings see, [Windows 10 policy settings in Microsoft Intune](https://docs.microsoft.com/en-us/intune/deploy-use/windows-10-policy-settings-in-microsoft-intune). 
 
@@ -85,10 +86,9 @@ Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding |
  Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is not running | FALSE
   | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Offboarded from Windows Defender ATP  | 0
   
-> **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
-
   
 ## Related topics
 - [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 - [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
\ No newline at end of file
+- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
+- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index 2fab49e4ef..1c057d851f 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -15,7 +15,7 @@ author: mjcaparas
 
 **Applies to:**
 
-- Windows 10 Insider Preview Build 14332 or later
+- Windows 10 Insider Preview Build 14379 or later
 - Windows Defender Advanced Threat Protection (Windows Defender ATP)
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
@@ -36,7 +36,7 @@ You can use System Center Configuration Manager’s existing functionality to cr
 
     a. Click **Endpoint Management** on the **Navigation pane**.
 
-    b. Select **System Center Configuration Manager**, click **Download package**, and save the .zip file.
+    b. Select **System Center Configuration Manager (current branch) version 1602**, click **Download package**, and save the .zip file.
 
 2. Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file called *WindowsDefenderATPOnboardingScript.cmd*.
 
@@ -47,14 +47,16 @@ You can use System Center Configuration Manager’s existing functionality to cr
     a. Choose a predefined device collection to deploy the package to.
     
 ### Offboard endpoints 
+
 For security reasons, the package used to offboard endpoints will expire 30 days after the date it was downloaded. Expired offboarding packages sent to an endpoint will be rejected. When downloading an offboarding package you will be notified of the packages expiry date and it will also be included in the package name.
 
 > **Note**&nbsp;&nbsp;Onboarding and offboarding policies must not be deployed on the same endpoint at the same time, otherwise this will cause unpredictable collisions.
 
 1.	Get the offboarding package from the [Windows Defender ATP portal](https://securitycenter.windows.com/):
 
-    a. Click Endpoint Management on the Navigation pane.
-    b. Under Endpoint offboarding section, select System Center Configuration Manager (current branch) version 1602 or earlier, click Download package, and save the .zip file.
+     a. Click **Endpoint Management** on the **Navigation pane**.
+    
+    b. Under **Endpoint offboarding** section, select **System Center Configuration Manager (current branch) version 1602 or earlier**, click **Download package**, and save the .zip file.
     
 2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
 
@@ -64,7 +66,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 
     a. Choose a predefined device collection to deploy the package to.
     
-### Monitor endpoint configuration using System Center Configuration Manager
+### Monitor endpoint configuration
 Monitoring with SCCM consists of two parts:
 
 1. Confirming the configuration package has been correctly deployed and is running (or has successfully run) on the endpoints in your network.
@@ -88,4 +90,5 @@ If there are failed deployments (endpoints with **Error**, **Requirements Not Me
 ## Related topics
 - [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 - [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
-- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
\ No newline at end of file
+- [Configure endpoints using a local script](configure-endpoints-script-windows-defender-advanced-threat-protection.md) 
+- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
\ No newline at end of file
diff --git a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
index ee77bcc824..eacde8021a 100644
--- a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
@@ -65,4 +65,5 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 ## Related topics
 - [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 - [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
-- [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
\ No newline at end of file
+- [Configure endpoints using Mobile Device Management tools](configure-endpoints-mdm-windows-defender-advanced-threat-protection.md)
+- [Troubleshoot Windows Defender Advanced Threat Protection onboarding issues](troubleshoot-onboarding-windows-defender-advanced-threat-protection.md)
\ No newline at end of file

From edbd2654237e9127c4c8308ec77614dfa49f38db Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 21:40:08 +1000
Subject: [PATCH 64/69] add or earlier

---
 ...ndpoints-sccm-windows-defender-advanced-threat-protection.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index 1c057d851f..5a35bad778 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -36,7 +36,7 @@ You can use System Center Configuration Manager’s existing functionality to cr
 
     a. Click **Endpoint Management** on the **Navigation pane**.
 
-    b. Select **System Center Configuration Manager (current branch) version 1602**, click **Download package**, and save the .zip file.
+    b. Select **System Center Configuration Manager (current branch) version 1602 or earlier**, click **Download package**, and save the .zip file.
 
 2. Extract the contents of the .zip file to a shared, read-only location that can be accessed by the network administrators who will deploy the package. You should have a file called *WindowsDefenderATPOnboardingScript.cmd*.
 

From ac5820fcd75a587fdeb7648322c0522d76661b40 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 21:46:40 +1000
Subject: [PATCH 65/69] swap desc and value, update build number

---
 ...nts-mdm-windows-defender-advanced-threat-protection.md | 8 ++++----
 ...ts-sccm-windows-defender-advanced-threat-protection.md | 2 +-
 2 files changed, 5 insertions(+), 5 deletions(-)

diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index 410e537b06..ec376fe348 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -80,11 +80,11 @@ Offboarding - Use the offboarding policies to remove configuration settings on e
 - Health Status for offboarded machines
 - Configuration for offboarded machines
 
-Policy | OMA-URI | Type | Description | Value
+Policy | OMA-URI | Type | Value | Description
 :---|:---|:---|:---|:---
-Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding | String | Offboarding | Copy content from offboarding MDM file
- Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | Windows Defender ATP service is not running | FALSE
-  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | Offboarded from Windows Defender ATP  | 0
+Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding | String | Copy content from offboarding MDM file | Offboarding 
+ Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | FALSE |Windows Defender ATP service is not running
+  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | 0 | Offboarded from Windows Defender ATP
   
   
 ## Related topics
diff --git a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
index 5a35bad778..3f7fac27dc 100644
--- a/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-sccm-windows-defender-advanced-threat-protection.md
@@ -15,7 +15,7 @@ author: mjcaparas
 
 **Applies to:**
 
-- Windows 10 Insider Preview Build 14379 or later
+- Windows 10 Insider Preview Build 14332  or later
 - Windows Defender Advanced Threat Protection (Windows Defender ATP)
 
 <span style="color:#ED1C24;">[Some information relates to pre-released product which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>

From c9fa2bb11b6b34a8350161c716906e6159924465 Mon Sep 17 00:00:00 2001
From: Joey Caparas <macapara@microsoft.com>
Date: Mon, 18 Jul 2016 22:44:56 +1000
Subject: [PATCH 66/69] updates on style and remove notes

---
 ...dm-windows-defender-advanced-threat-protection.md | 12 +++++-------
 ...pt-windows-defender-advanced-threat-protection.md |  6 +++---
 2 files changed, 8 insertions(+), 10 deletions(-)

diff --git a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
index ec376fe348..22692ee168 100644
--- a/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-mdm-windows-defender-advanced-threat-protection.md
@@ -23,8 +23,6 @@ You can use mobile device management (MDM) solutions to configure endpoints. Win
 
 For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
 
-> **Note**&nbsp;&nbsp; If you intend to use this deployment tool, ensure that you are on Windows 10 Insider Preview Build 14379 or later. This deployment method is only available from that build or later.
-
 ## Configure endpoints using Microsoft Intune
 
 For more information on using Windows Defender ATP CSP see, [WindowsAdvancedThreatProtection CSP](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723296(v=vs.85).aspx) and [WindowsAdvancedThreatProtection DDF file](https://msdn.microsoft.com/en-us/library/windows/hardware/mt723297(v=vs.85).aspx).
@@ -46,8 +44,6 @@ Onboarding - Use the onboarding policies to deploy configuration settings on end
 - Health Status for onboarded machines
 - Configuration for onboarded machines
 
-> **Warning**&nbsp;&nbsp;These two groups must not be deployed on the same machine at same time, otherwise this will cause unpredictable collisions.
-
 Policy | OMA-URI | Type | Value | Description
 :---|:---|:---|:---|:---
 Onboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Onboarding | String | Copy content from onboarding MDM file |  Onboarding
@@ -57,7 +53,7 @@ Health Status for onboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThrea
  Configuration for onboarded machines  | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Configuration/SampleSharing | Integer | 0 or 1 <br> Default value: 1 | Windows Defender ATP Sample sharing is enabled 
  
 
-> **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** and **Health Status for offboarded machines** use read-only properties and can't be remediated.
+> **Note**&nbsp;&nbsp;Policies **Health Status for onboarded machines** use read-only properties and can't be remediated.
 
 ### Offboard and monitor endpoints
 
@@ -85,8 +81,10 @@ Policy | OMA-URI | Type | Value | Description
 Offboarding | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/Offboarding | String | Copy content from offboarding MDM file | Offboarding 
  Health Status for offboarded machines | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/SenseIsRunning | Boolean | FALSE |Windows Defender ATP service is not running
   | ./Device/Vendor/MSFT/WindowsAdvancedThreatProtection/HealthState/OnBoardingState | Integer | 0 | Offboarded from Windows Defender ATP
-  
-  
+
+> **Note**&nbsp;&nbsp;Policies **Health Status for offboarded machines** use read-only properties and can't be remediated.
+
+
 ## Related topics
 - [Configure endpoints using Group Policy](configure-endpoints-gp-windows-defender-advanced-threat-protection.md)
 - [Configure endpoints using System Center Configuration Manager](configure-endpoints-sccm-windows-defender-advanced-threat-protection.md)
diff --git a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
index eacde8021a..37cff93fb6 100644
--- a/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
+++ b/windows/keep-secure/configure-endpoints-script-windows-defender-advanced-threat-protection.md
@@ -31,7 +31,7 @@ You can also manually onboard individual endpoints to Windows Defender ATP. You
 
     ![Window Start menu pointing to Run as administrator](images/run-as-admin.png)
 
-4.  Type the location of the script file. If you copied the file to the desktop, type: *`%userprofile%\Desktop\WindowsDefenderATPOnboardingScript.cmd`*
+4.  Type the location of the script file. If you copied the file to the desktop, type: *%userprofile%\Desktop\WindowsDefenderATPOnboardingScript.cmd*
 
 5.  Press the **Enter** key or click **OK**.
 
@@ -47,7 +47,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
     a. Click **Endpoint Management** on the **Navigation pane**.
     b. Under **Endpoint offboarding** section, select **Group Policy**, click **Download package** and save the .zip file.
     
-2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_\<YYYY-MM-DD\>.cmd*.
+2.	Extract the contents of the .zip file to a shared, read-only location that can be accessed by the endpoints. You should have a file named *WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*.
 
 3.  Open an elevated command-line prompt on the endpoint and run the script:
 
@@ -57,7 +57,7 @@ For security reasons, the package used to offboard endpoints will expire 30 days
 
     ![Window Start menu pointing to Run as administrator](images/run-as-admin.png)
 
-4.  Type the location of the script file. If you copied the file to the desktop, type: *%userprofile%\Desktop\WindowsDefenderATPOffboardingScript_valid_until_\<YYYY-MM-DD\>.cmd*
+4.  Type the location of the script file. If you copied the file to the desktop, type: *%userprofile%\Desktop\WindowsDefenderATPOffboardingScript_valid_until_YYYY-MM-DD.cmd*
 
 5.  Press the **Enter** key or click **OK**.
 

From 552aeed362b9adcda0ee4891cd7e7e00486c8ad7 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Mon, 18 Jul 2016 07:02:15 -0700
Subject: [PATCH 67/69] Added new Mandatory tasks and settings required to turn
 on Windows Information Protection (WIP) topic

---
 .../keep-secure/change-history-for-keep-windows-10-secure.md   | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/windows/keep-secure/change-history-for-keep-windows-10-secure.md b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
index bf5a309fca..34c8880202 100644
--- a/windows/keep-secure/change-history-for-keep-windows-10-secure.md
+++ b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
@@ -16,9 +16,10 @@ This topic lists new and updated topics in the [Keep Windows 10 secure](index.md
 
 |New or changed topic | Description |
 |----------------------|-------------|
+|[Mandatory settings for Windows Information Protection (WIP)](mandatory-settings-for-wip.md) |New |
 |[Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate](create-and-verify-an-efs-dra-certificate.md) |New |
-|[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
 |[Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) |New |
+|[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
 |[Windows Defender Advanced Threat Protection](windows-defender-advanced-threat-protection.md) (multiple topics) | Updated |
 |[Device Guard deployment guide](device-guard-deployment-guide.md) (multiple topics) | Updated |
 

From b9cb066d7e176a543ec0f77851b247c369bc9e41 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Mon, 18 Jul 2016 07:04:57 -0700
Subject: [PATCH 68/69] Put wrong file into master

---
 ...ange-history-for-keep-windows-10-secure.md |  1 -
 ...reate-and-verify-an-efs-dra-certificate.md | 90 -------------------
 2 files changed, 91 deletions(-)
 delete mode 100644 windows/keep-secure/create-and-verify-an-efs-dra-certificate.md

diff --git a/windows/keep-secure/change-history-for-keep-windows-10-secure.md b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
index 34c8880202..4b25f1edc5 100644
--- a/windows/keep-secure/change-history-for-keep-windows-10-secure.md
+++ b/windows/keep-secure/change-history-for-keep-windows-10-secure.md
@@ -17,7 +17,6 @@ This topic lists new and updated topics in the [Keep Windows 10 secure](index.md
 |New or changed topic | Description |
 |----------------------|-------------|
 |[Mandatory settings for Windows Information Protection (WIP)](mandatory-settings-for-wip.md) |New |
-|[Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate](create-and-verify-an-efs-dra-certificate.md) |New |
 |[Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) |New |
 |[Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) |New |
 |[Windows Defender Advanced Threat Protection](windows-defender-advanced-threat-protection.md) (multiple topics) | Updated |
diff --git a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md b/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
deleted file mode 100644
index 03d72f1d40..0000000000
--- a/windows/keep-secure/create-and-verify-an-efs-dra-certificate.md
+++ /dev/null
@@ -1,90 +0,0 @@
-
----
-title: Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate (Windows 10)
-description: Follow these steps to create, verify, and perform a quick recovery using a Encrypting File System (EFS) Data Recovery Agent (DRA) certificate.
-ms.prod: w10
-ms.mktglfcycl: explore
-ms.sitesec: library
-ms.pagetype: security
----
-
-# Create and verify an Encrypting File System (EFS) Data Recovery Agent (DRA) certificate
-**Applies to:**
-
--   Windows 10 Insider Preview
--   Windows 10 Mobile Preview
-
-<span style="color:#ED1C24;">[Some information relates to pre-released product, which may be substantially modified before it's commercially released. Microsoft makes no warranties, express or implied, with respect to the information provided here.]</span>
-
-If you don’t already have an EFS DRA certificate, you’ll need to create and extract one from your system before you can use EDP in your organization. For the purposes of this section, we’ll use the file name EFSDRA; however, this name can be replaced with anything that makes sense to you.
-
-The recovery process included in this topic only works for desktop devices. EDP deletes the data on Windows 10 Mobile devices.   
-
->**Important**<br>
-If you already have an EFS DRA certificate for your organization, you can skip creating a new one. Just use your current EFS DRA certificate in your policy.
-
-**To manually create an EFS DRA certificate**
-
-1.	On a computer without an EFS DRA certificate installed, open a command prompt with elevated rights, and then navigate to where you want to store the certificate.
-
-2.	Run this command:
-    
-    `cipher /r:<EFSRA>`
-    
-    Where *&lt;EFSRA&gt;* is the name of the .cer and .pfx files that you want to create.
-
-3.	When prompted, type and confirm a password to help protect your new Personal Information Exchange (.pfx) file.
-
-    The EFSDRA.cer and EFSDRA.pfx files are created in the location you specified in Step 1.
-
-    >**Important**<br> 
-    Because these files can be used to decrypt any EDP file, you must protect them accordingly. We highly recommend storing them as a public key (PKI) on a smart card with strong protection, stored in a secured physical location.
-
-4. Add your EFS DRA certificate to your EDP policy by using either Microsoft Intune or System Center Configuration Manager. 
-
-    >**Note**<br>
-    To add your EFS DRA certificate to your policy by using Microsoft Intune, see the [Create an enterprise data protection (EDP) policy using Microsoft Intune](create-edp-policy-using-intune.md) topic. To add your EFS DRA certificate to your policy by using System Center Configuration Manager, see the [Create an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md) topic.
-
-**To verify your data recovery certificate is correctly set up on an EDP client computer**
-
-1. Open an app on your protected app list, and then create and save a file so that it’s encrypted by EDP.
-
-2.	Open a command prompt with elevated rights, navigate to where you stored the file you just created, and then run this command:
-
-    `cipher /c <filename>`
-
-    Where *&lt;filename&gt;* is the name of the file you created in Step 1.
-
-3.	Make sure that your data recovery certificate is listed in the **Recovery Certificates** list.
-
-**To recover your data using the EFS DRA certificate in a test environment**
-
-1.	Copy your EDP-encrypted file to a location where you have admin access.
-
-2.	Install the EFSDRA.pfx file, using your password.
-
-3.	Open a command prompt with elevated rights, navigate to the encrypted file, and then run this command:
-
-    `cipher /d <encryptedfile.extension>`
-    
-    Where *&lt;encryptedfile.extension&gt;* is the name of your encrypted file. For example, corporatedata.docx.
-
-**To recover your EDP-protected desktop data after unenrollment**
-
-1. Have your employee sign in to the unenrolled device, open a command prompt, and type:
-    
-    `Robocopy “%localappdata%\Microsoft\EDP\Recovery” <“new_location”> /EFSRAW`
-
-    Where *&lt;”new_location”&gt;* is a different location from where you store your recovery data. This location can be on the employee’s device or on a Windows 8 or Windows Server 2012 or newer server file share that you can reach while logged in as a data recovery agent.
-
-2. Sign in to a different device with administrator credentials that have access to your organization's Data Recovery Agent (DRA) certificate, and perform the file decryption and recovery by typing:
-
-    `cipher.exe /D <“new_location”>`
-
-3. Sign in to the unenrolled device as the employee, and type:
-
-    `Robocopy <”new_location”> “%localappdata%\Microsoft\EDP\Recovery\Input”`
-
-4. Ask the employee to log back in to the device or to lock and unlock the device.
-
-    The Windows Credential service automatically recovers the protected data from the `Recovery\Input` location.

From 71310e481808cd79d6f110e0ec5e37ee84fcf764 Mon Sep 17 00:00:00 2001
From: LizRoss <lizross@microsoft.com>
Date: Mon, 18 Jul 2016 07:18:36 -0700
Subject: [PATCH 69/69] Removed incorrect topic from TOC

---
 windows/keep-secure/TOC.md | 1 -
 1 file changed, 1 deletion(-)

diff --git a/windows/keep-secure/TOC.md b/windows/keep-secure/TOC.md
index 83d4e0b32d..e2590ac099 100644
--- a/windows/keep-secure/TOC.md
+++ b/windows/keep-secure/TOC.md
@@ -29,7 +29,6 @@
 ##### [Deploy your enterprise data protection (EDP) policy](deploy-edp-policy-using-intune.md)
 ##### [Create and deploy a VPN policy for enterprise data protection (EDP) using Microsoft Intune](create-vpn-and-edp-policy-using-intune.md)
 #### [Create and deploy an enterprise data protection (EDP) policy using System Center Configuration Manager](create-edp-policy-using-sccm.md)
-#### [Create and verify an Encrypting File System (EFS) DRA certificate](create-and-verify-an-efs-dra-certificate.md)
 ### [General guidance and best practices for enterprise data protection (EDP)](guidance-and-best-practices-edp.md)
 #### [Mandatory tasks and settings required to turn on Windows Information Protection (WIP)](mandatory-settings-for-wip.md)
 #### [Enlightened apps for use with enterprise data protection (EDP)](enlightened-microsoft-apps-and-edp.md)