From c5fe080f8b87a39e655c18d74b2ceb201ebc77cf Mon Sep 17 00:00:00 2001 From: ImranHabib <47118050+joinimran@users.noreply.github.com> Date: Fri, 14 Feb 2020 19:55:56 +0500 Subject: [PATCH 01/33] Addition of a question I have added a question based on user feedback. Problem: https://github.com/MicrosoftDocs/windows-itpro-docs/issues/5423 --- .../identity-protection/hello-for-business/hello-faq.md | 3 +++ 1 file changed, 3 insertions(+) diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md index 07be2bbf3d..17d8ffdc2a 100644 --- a/windows/security/identity-protection/hello-for-business/hello-faq.md +++ b/windows/security/identity-protection/hello-for-business/hello-faq.md @@ -50,6 +50,9 @@ It is currently possible to set a convenience PIN on Azure Active Directory Join ## Can I use an external camera when my laptop is closed or docked? No. Windows 10 currently only supports one Windows Hello for Business camera and does not fluidly switch to an external camera when the computer is docked with the lid closed. The product group is aware of this and is investigating this topic further. +## Why is authentication failed after setting up PIN registration? +In hybrid mode a lot sync happened after enrollment for authentication to work. Authentication will only work when the sync between AD Connect server to Azure AD will be completed.This sync depends on the sync time setup for AD Connect server to Azure AD. + ## What is the password-less strategy? Watch Principal Program Manager Karanbir Singh's Ignite 2017 presentation **Microsoft's guide for going password-less**. From ad480566066da1f775137f67f567fb6acfc4da0e Mon Sep 17 00:00:00 2001 From: DanPandre <54847950+DanPandre@users.noreply.github.com> Date: Fri, 14 Feb 2020 10:38:03 -0500 Subject: [PATCH 02/33] Adding Feb 2020 CU to Surface Hub update history Documenting changes in 2B release --- devices/surface-hub/surface-hub-update-history.md | 12 ++++++++++++ 1 file changed, 12 insertions(+) diff --git a/devices/surface-hub/surface-hub-update-history.md b/devices/surface-hub/surface-hub-update-history.md index 5d6989d80b..14d9c2c6b1 100644 --- a/devices/surface-hub/surface-hub-update-history.md +++ b/devices/surface-hub/surface-hub-update-history.md @@ -24,6 +24,18 @@ Please refer to the “[Surface Hub Important Information](https://support.micro ## Windows 10 Team Creators Update 1703 +
+February 11, 2020—update for Team edition based on KB4537765* (OS Build 15063.2284) + +This update to the Surface Hub includes quality improvements and security fixes. Key updates to Surface Hub, not already outlined in [Windows 10 Update History](https://support.microsoft.com/help/4018124/windows-10-update-history), include: + +* Resolves an issue where the Hub 2S cannot be heard well by other participants during Skype for Business calls. +* Improves reliability for some Arabic, Hebrew, and other RTL language usage scenarios on Surface Hub. + +Please refer to the [Surface Hub Admin guide](https://docs.microsoft.com/surface-hub/) for enabling/disabling device features and services. +*[KB4537765](https://support.microsoft.com/help/4537765) +
+
January 14, 2020—update for Team edition based on KB4534296* (OS Build 15063.2254) From b9672d67dc77b862091848e4ab3265ecc8fcb5a1 Mon Sep 17 00:00:00 2001 From: ImranHabib <47118050+joinimran@users.noreply.github.com> Date: Fri, 14 Feb 2020 22:44:12 +0500 Subject: [PATCH 03/33] Update windows/security/identity-protection/hello-for-business/hello-faq.md Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com> --- .../identity-protection/hello-for-business/hello-faq.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md index 17d8ffdc2a..d6e5701e6a 100644 --- a/windows/security/identity-protection/hello-for-business/hello-faq.md +++ b/windows/security/identity-protection/hello-for-business/hello-faq.md @@ -51,7 +51,7 @@ It is currently possible to set a convenience PIN on Azure Active Directory Join No. Windows 10 currently only supports one Windows Hello for Business camera and does not fluidly switch to an external camera when the computer is docked with the lid closed. The product group is aware of this and is investigating this topic further. ## Why is authentication failed after setting up PIN registration? -In hybrid mode a lot sync happened after enrollment for authentication to work. Authentication will only work when the sync between AD Connect server to Azure AD will be completed.This sync depends on the sync time setup for AD Connect server to Azure AD. +In hybrid mode, a lot of sync happen after enrollment for authentication to work. Authentication will only work when the sync between the AD Connect server to Azure AD is completed. This sync depends on the sync time setup for AD Connect server to Azure AD. ## What is the password-less strategy? Watch Principal Program Manager Karanbir Singh's Ignite 2017 presentation **Microsoft's guide for going password-less**. @@ -169,4 +169,3 @@ Windows Hello for Business can work with any third-party federation servers that ## Does Windows Hello for Business work with Mac and Linux clients? Windows Hello for Business is a feature of Windows 10. At this time, Microsoft is not developing clients for other platforms. However, Microsoft is open to third parties who are interested in moving these platforms away from passwords. Interested third parties can get more information by emailing [whfbfeedback@microsoft.com](mailto:whfbfeedback@microsoft.com?subject=collaboration). - From 069729b22debc4ac7d5da725152fbacdeed800bc Mon Sep 17 00:00:00 2001 From: ImranHabib <47118050+joinimran@users.noreply.github.com> Date: Fri, 14 Feb 2020 22:44:55 +0500 Subject: [PATCH 04/33] Update windows/security/identity-protection/hello-for-business/hello-faq.md Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com> --- .../identity-protection/hello-for-business/hello-faq.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md index d6e5701e6a..7708e35410 100644 --- a/windows/security/identity-protection/hello-for-business/hello-faq.md +++ b/windows/security/identity-protection/hello-for-business/hello-faq.md @@ -50,7 +50,7 @@ It is currently possible to set a convenience PIN on Azure Active Directory Join ## Can I use an external camera when my laptop is closed or docked? No. Windows 10 currently only supports one Windows Hello for Business camera and does not fluidly switch to an external camera when the computer is docked with the lid closed. The product group is aware of this and is investigating this topic further. -## Why is authentication failed after setting up PIN registration? +## Why does authentication fail after setting up PIN registration? In hybrid mode, a lot of sync happen after enrollment for authentication to work. Authentication will only work when the sync between the AD Connect server to Azure AD is completed. This sync depends on the sync time setup for AD Connect server to Azure AD. ## What is the password-less strategy? From 3b571c37ebe469cfd42fc9acded8db3805554794 Mon Sep 17 00:00:00 2001 From: Ikko Ashimine Date: Sun, 16 Feb 2020 18:05:16 +0900 Subject: [PATCH 05/33] Fix typo --- devices/surface-hub/surface-hub-2s-whats-new.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/devices/surface-hub/surface-hub-2s-whats-new.md b/devices/surface-hub/surface-hub-2s-whats-new.md index 13d7eb06ce..82589b360e 100644 --- a/devices/surface-hub/surface-hub-2s-whats-new.md +++ b/devices/surface-hub/surface-hub-2s-whats-new.md @@ -22,7 +22,7 @@ Surface Hub 2S is an all-in-one collaboration canvas that’s built for teamwork |**Mobile Device Management and UEFI manageability**| Manage settings and policies using a mobile device management (MDM) provider.

Full integration with Surface Enterprise Management Mode (SEMM) lets you manage hardware components and firmware. | [Managing Surface Hub 2S with Microsoft Intune](surface-hub-2s-manage-intune.md)

[Surface Enterprise Management Mode](https://docs.microsoft.com/surface/surface-enterprise-management-mode) | |**Cloud and on-premises coexistence**| Supports on-premises, hybrid, or online. | [Prepare your environment for Microsoft Surface Hub 2S](surface-hub-2s-prepare-environment.md) | |**Reset and recovery**| Restore from the cloud or USB drive. | [Recover and reset Surface Hub 2S](surface-hub-2s-recover-reset.md) | -|**Microsoft Whiteboard**| Ofice 365 integration, intelligent ink, and Bing search bring powerful new capabilities, enabling a persistent digital canvas shareable across most browsers, Windows and iOS devices. | [Announcing a new whiteboard for your Surface Hub](https://techcommunity.microsoft.com/t5/Office-365-Blog/Announcing-a-new-Whiteboard-for-your-Surface-Hub/ba-p/637050) | +|**Microsoft Whiteboard**| Office 365 integration, intelligent ink, and Bing search bring powerful new capabilities, enabling a persistent digital canvas shareable across most browsers, Windows and iOS devices. | [Announcing a new whiteboard for your Surface Hub](https://techcommunity.microsoft.com/t5/Office-365-Blog/Announcing-a-new-Whiteboard-for-your-Surface-Hub/ba-p/637050) | |**Microsoft Teams Meeting Room License**| Extends Office 365 licensing options across Skype for Business, Microsoft Teams, and Intune. | [Teams Meeting Room Licensing Update](https://docs.microsoft.com/MicrosoftTeams/room-systems/skype-room-systems-v2-0) | |**On-screen display**| Adjust volume, brightness, and input control directly on the display. | | |**Sensor-activated Connected Standby**| Doppler sensor activates Connected Standby after 1 minute of inactivity.

Manage this setting remotely using Intune or directly on the device from the Settings app. | [Surface Hub 2S tech specs](surface-hub-2s-techspecs.md) | From cf625df02cfbae95f3a397bdbd2639086e1ec4fe Mon Sep 17 00:00:00 2001 From: ImranHabib <47118050+joinimran@users.noreply.github.com> Date: Tue, 18 Feb 2020 11:05:21 +0500 Subject: [PATCH 06/33] Update windows/security/identity-protection/hello-for-business/hello-faq.md Co-Authored-By: JohanFreelancer9 <48568725+JohanFreelancer9@users.noreply.github.com> --- .../identity-protection/hello-for-business/hello-faq.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md index 7708e35410..1afd73f1bc 100644 --- a/windows/security/identity-protection/hello-for-business/hello-faq.md +++ b/windows/security/identity-protection/hello-for-business/hello-faq.md @@ -51,7 +51,7 @@ It is currently possible to set a convenience PIN on Azure Active Directory Join No. Windows 10 currently only supports one Windows Hello for Business camera and does not fluidly switch to an external camera when the computer is docked with the lid closed. The product group is aware of this and is investigating this topic further. ## Why does authentication fail after setting up PIN registration? -In hybrid mode, a lot of sync happen after enrollment for authentication to work. Authentication will only work when the sync between the AD Connect server to Azure AD is completed. This sync depends on the sync time setup for AD Connect server to Azure AD. +In hybrid mode, a lot of sync happens after enrollment for authentication to work. Authentication will only work when the sync between the AD Connect server to Azure AD is completed. This sync depends on the sync time setup for AD Connect server to Azure AD. ## What is the password-less strategy? Watch Principal Program Manager Karanbir Singh's Ignite 2017 presentation **Microsoft's guide for going password-less**. From 4f92b35f8ceade74e97d8d3e0083e0b3764d919f Mon Sep 17 00:00:00 2001 From: ImranHabib <47118050+joinimran@users.noreply.github.com> Date: Thu, 27 Feb 2020 14:32:36 +0500 Subject: [PATCH 07/33] Update windows/security/identity-protection/hello-for-business/hello-faq.md Co-Authored-By: mapalko --- .../identity-protection/hello-for-business/hello-faq.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md index 1afd73f1bc..33caafa78f 100644 --- a/windows/security/identity-protection/hello-for-business/hello-faq.md +++ b/windows/security/identity-protection/hello-for-business/hello-faq.md @@ -50,7 +50,7 @@ It is currently possible to set a convenience PIN on Azure Active Directory Join ## Can I use an external camera when my laptop is closed or docked? No. Windows 10 currently only supports one Windows Hello for Business camera and does not fluidly switch to an external camera when the computer is docked with the lid closed. The product group is aware of this and is investigating this topic further. -## Why does authentication fail after setting up PIN registration? +## Why does authentication fail immediately after provisioning Hybrid Key Trust? In hybrid mode, a lot of sync happens after enrollment for authentication to work. Authentication will only work when the sync between the AD Connect server to Azure AD is completed. This sync depends on the sync time setup for AD Connect server to Azure AD. ## What is the password-less strategy? From b8737350970352e8d264cb7828fef6fe4c65c1d7 Mon Sep 17 00:00:00 2001 From: ImranHabib <47118050+joinimran@users.noreply.github.com> Date: Thu, 27 Feb 2020 14:32:48 +0500 Subject: [PATCH 08/33] Update windows/security/identity-protection/hello-for-business/hello-faq.md Co-Authored-By: mapalko --- .../identity-protection/hello-for-business/hello-faq.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-faq.md b/windows/security/identity-protection/hello-for-business/hello-faq.md index 33caafa78f..7d47fb49d1 100644 --- a/windows/security/identity-protection/hello-for-business/hello-faq.md +++ b/windows/security/identity-protection/hello-for-business/hello-faq.md @@ -51,7 +51,7 @@ It is currently possible to set a convenience PIN on Azure Active Directory Join No. Windows 10 currently only supports one Windows Hello for Business camera and does not fluidly switch to an external camera when the computer is docked with the lid closed. The product group is aware of this and is investigating this topic further. ## Why does authentication fail immediately after provisioning Hybrid Key Trust? -In hybrid mode, a lot of sync happens after enrollment for authentication to work. Authentication will only work when the sync between the AD Connect server to Azure AD is completed. This sync depends on the sync time setup for AD Connect server to Azure AD. +In a hybrid deployment, a user's public key must sync from Azure AD to AD before it can be used to authenticate against a domain controller. This sync is handled by Azure AD Connect and will occur during a normal sync cycle. ## What is the password-less strategy? Watch Principal Program Manager Karanbir Singh's Ignite 2017 presentation **Microsoft's guide for going password-less**. From 56f1d269c5da51d5c3a40c94910d9ce69569b882 Mon Sep 17 00:00:00 2001 From: Reuven Peleg Date: Sun, 1 Mar 2020 14:49:57 +0200 Subject: [PATCH 09/33] Unite the bold text of a selected option This is a single option in the configuration and splitting the bold text sections makes it look like there are 3 different options. --- .../hello-for-business/hello-key-trust-validate-pki.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md index 57a2493e4c..924d595335 100644 --- a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md +++ b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md @@ -151,7 +151,7 @@ Domain controllers automatically request a certificate from the domain controlle 7. Expand **Windows Settings**, **Security Settings**, and click **Public Key Policies**. 8. In the details pane, right-click **Certificate Services Client – Auto-Enrollment** and select **Properties**. 9. Select **Enabled** from the **Configuration Model** list. -10. Select the **Renew expired certificates**, **update pending certificates**, and **remove revoked certificates** check box. +10. Select the **Renew expired certificates, update pending certificates, and remove revoked certificates** check box. 11. Select the **Update certificates that use certificate templates** check box. 12. Click **OK**. Close the **Group Policy Management Editor**. From 1c655b9bfdeff9c94fae0dec0324996a1afcf204 Mon Sep 17 00:00:00 2001 From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com> Date: Mon, 2 Mar 2020 13:26:22 +0530 Subject: [PATCH 10/33] fixed broken link for VBS as per the user report #6142 , i replaced invalid link to new link **https://docs.microsoft.com/en-us/windows-hardware/design/device-experiences/oem-vbs** --- .../system-guard-secure-launch-and-smm-protection.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md index 05dc390aef..cbdce6583b 100644 --- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md +++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md @@ -64,7 +64,7 @@ To verify that Secure Launch is running, use System Information (MSInfo32). Clic ![Windows Security Center](images/secure-launch-msinfo.png) >[!NOTE] ->To enable System Guard Secure launch, the platform must meet all the baseline requirements for [Device Guard](https://docs.microsoft.com/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control), [Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-requirements), and [Virtualization Based Security](https://docs.microsoft.com/windows/security/threat-protection/windows-defender-exploit-guard/enable-virtualization-based-protection-of-code-integrity). +>To enable System Guard Secure launch, the platform must meet all the baseline requirements for [Device Guard](https://docs.microsoft.com/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control), [Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-requirements), and [Virtualization Based Security](https://docs.microsoft.com/en-us/windows-hardware/design/device-experiences/oem-vbs). ## System requirements for System Guard From 46605a4dbaa8abba22b31b0258b4f5ff56d92a91 Mon Sep 17 00:00:00 2001 From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com> Date: Tue, 3 Mar 2020 05:21:23 +0530 Subject: [PATCH 11/33] Update windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md Accepted Co-Authored-By: Trond B. Krokli <38162891+illfated@users.noreply.github.com> --- .../system-guard-secure-launch-and-smm-protection.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md index cbdce6583b..0c2f795a36 100644 --- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md +++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md @@ -64,7 +64,7 @@ To verify that Secure Launch is running, use System Information (MSInfo32). Clic ![Windows Security Center](images/secure-launch-msinfo.png) >[!NOTE] ->To enable System Guard Secure launch, the platform must meet all the baseline requirements for [Device Guard](https://docs.microsoft.com/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control), [Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-requirements), and [Virtualization Based Security](https://docs.microsoft.com/en-us/windows-hardware/design/device-experiences/oem-vbs). +> To enable System Guard Secure launch, the platform must meet all the baseline requirements for [Device Guard](https://docs.microsoft.com/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control), [Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-requirements), and [Virtualization Based Security](https://docs.microsoft.com/windows-hardware/design/device-experiences/oem-vbs). ## System requirements for System Guard From 0644975895ebe548f1c3b78e110ef15c0b39527b Mon Sep 17 00:00:00 2001 From: Jordan Geurten Date: Mon, 2 Mar 2020 15:51:32 -0800 Subject: [PATCH 12/33] Documented filename levels options for -SpecificFileName --- .../select-types-of-rules-to-create.md | 14 ++++++++++++++ 1 file changed, 14 insertions(+) diff --git a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md index 97443ac815..0d18e4c596 100644 --- a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md +++ b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md @@ -126,3 +126,17 @@ Wildcards can be used at the beginning or end of a path rule; only one wildcard > [!NOTE] > Due to an existing bug, you can not combine Path-based ALLOW rules with any DENY rules in a single policy. Instead, either separate DENY rules into a separate Base policy or move the Path-based ALLOW rules into a supplemental policy as described in [Deploy multiple WDAC policies.](deploy-multiple-windows-defender-application-control-policies.md) + +## Windows Defender Application Control filename rules + +File name rule levels provide administrators to specify the level + +**Table 3. Windows Defender Application Control policy - filename levels** + +| Rule level | Description | +|----------- | ----------- | +| **File Description** | Specifies the file description provided by the developer of the binary. | +| **Internal Name** | Specifies the internal name of the binary. | +| **Original File Name** | Specifies the original file name, or the name with which the file was first created, of the binary. | +| **Package Family Name** | Specifies the package family name of the binary. The package family name consists of two parts: the name of the file and the publisher ID. | +| **Product Name** | Specifies the name of the product with which the binary ships. | From 5cc7f2c9edd007add6b1873a41affc44556ec42a Mon Sep 17 00:00:00 2001 From: VARADHARAJAN K <3296790+RAJU2529@users.noreply.github.com> Date: Tue, 3 Mar 2020 05:21:45 +0530 Subject: [PATCH 13/33] Update windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md Ok Co-Authored-By: Trond B. Krokli <38162891+illfated@users.noreply.github.com> --- .../system-guard-secure-launch-and-smm-protection.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md index 0c2f795a36..961ea92625 100644 --- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md +++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md @@ -63,7 +63,7 @@ To verify that Secure Launch is running, use System Information (MSInfo32). Clic ![Windows Security Center](images/secure-launch-msinfo.png) ->[!NOTE] +> [!NOTE] > To enable System Guard Secure launch, the platform must meet all the baseline requirements for [Device Guard](https://docs.microsoft.com/windows/security/threat-protection/device-guard/introduction-to-device-guard-virtualization-based-security-and-windows-defender-application-control), [Credential Guard](https://docs.microsoft.com/windows/security/identity-protection/credential-guard/credential-guard-requirements), and [Virtualization Based Security](https://docs.microsoft.com/windows-hardware/design/device-experiences/oem-vbs). ## System requirements for System Guard From e22aae5e61653455de616f2f44889bce84a2d181 Mon Sep 17 00:00:00 2001 From: Jordan Geurten Date: Mon, 2 Mar 2020 16:17:33 -0800 Subject: [PATCH 14/33] Update select-types-of-rules-to-create.md --- .../select-types-of-rules-to-create.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md index 0d18e4c596..109843079b 100644 --- a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md +++ b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md @@ -129,7 +129,9 @@ Wildcards can be used at the beginning or end of a path rule; only one wildcard ## Windows Defender Application Control filename rules -File name rule levels provide administrators to specify the level +File name rule levels provide administrators to specify the file attributes off which to base a file name rule. File name rules do not provide the same security guarantees that explicit signer rules do, as they are based on mutable access permissions. Specification of the file name level occurs when creating new policy rules. In addition, to combine file name levels found in multiple policies, you can merge multiple policies. + +Use Table 3 to select the appropriate file name level for your available administrative resources and Windows Defender Application Control deployment scenario. **Table 3. Windows Defender Application Control policy - filename levels** From 1a235becf4655989ba1beacf8d8ccf54bdf74078 Mon Sep 17 00:00:00 2001 From: ShrCaJesmo <54860945+ShrCaJesmo@users.noreply.github.com> Date: Tue, 3 Mar 2020 13:54:45 -0500 Subject: [PATCH 15/33] Fixing steps to pad hash --- windows/deployment/windows-autopilot/troubleshooting.md | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/windows/deployment/windows-autopilot/troubleshooting.md b/windows/deployment/windows-autopilot/troubleshooting.md index 010a4d2420..b2e13bb564 100644 --- a/windows/deployment/windows-autopilot/troubleshooting.md +++ b/windows/deployment/windows-autopilot/troubleshooting.md @@ -67,10 +67,10 @@ So, as an example (this is not a device hash, but it's misaligned unpadded Base6 Now for the padding rules. The padding character is "=". The padding character can only be at the end of the hash, and there can only be a maximum of 2 padding characters. Here's the basic logic. - Does decoding the hash fail? - - Yes: Are the last two characters "="? - - Yes: Replace both "=" with a single "A" character, then try again - - No: Add another "=" character at the end, then try again - - No: That hash is valid + - Yes: Are the last two characters "="? + - Yes: Replace both "=" with a single "A" character, then try again + - No: Add another "=" character at the end, then try again + - No: That hash is valid Looping the logic above on the previous example hash, we get the following permutations: - Q29udG9zbwAAA From 4195929792e7c6be49074f9835d622b075d8a4cd Mon Sep 17 00:00:00 2001 From: Michael Niehaus Date: Tue, 3 Mar 2020 11:37:08 -0800 Subject: [PATCH 16/33] Update known-issues.md Added a note about using PPKGs with Autopilot. --- windows/deployment/windows-autopilot/known-issues.md | 1 + 1 file changed, 1 insertion(+) diff --git a/windows/deployment/windows-autopilot/known-issues.md b/windows/deployment/windows-autopilot/known-issues.md index 5be64cc194..418dc0201b 100644 --- a/windows/deployment/windows-autopilot/known-issues.md +++ b/windows/deployment/windows-autopilot/known-issues.md @@ -71,6 +71,7 @@ This happens because Windows 10, version 1903 deletes the AutopilotConfiguration Error importing Windows Autopilot devices from a .csv fileEnsure that you have not edited the .csv file in Microsoft Excel or an editor other than Notepad. Some of these editors can introduce extra characters causing the file format to be invalid. Windows Autopilot for existing devices does not follow the Autopilot OOBE experience.Ensure that the JSON profile file is saved in ANSI/ASCII format, not Unicode or UTF-8. Something went wrong is displayed page during OOBE.The client is likely unable to access all the required AAD/MSA-related URLs. For more information, see Networking requirements. +Using a provisioning package in combination with Windows Autopilot can cause issues, especially if the PPKG contains join, enrollment, or device name information.Using PPKGs in combination with Windows Autopilot is not recommended. ## Related topics From e7a151d15576a7614d0a9b429c4792361d278357 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Wed, 4 Mar 2020 11:24:22 +0100 Subject: [PATCH 17/33] update linux-install-manually.md MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- .../linux-install-manually.md | 37 ++++++++++--------- 1 file changed, 19 insertions(+), 18 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md index 79bae6b394..789eeca122 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md @@ -1,6 +1,6 @@ --- title: Deploy Microsoft Defender ATP for Linux manually -ms.reviewer: +ms.reviewer: description: Describes how to deploy Microsoft Defender ATP for Linux manually from the command line. keywords: microsoft, defender, atp, linux, installation, deploy, uninstallation, puppet, ansible, linux, redhat, ubuntu, debian, sles, suse, centos search.product: eADQiWindows 10XVcnh @@ -14,7 +14,7 @@ author: dansimp ms.localizationpriority: medium manager: dansimp audience: ITPro -ms.collection: M365-security-compliance +ms.collection: M365-security-compliance ms.topic: conceptual --- @@ -53,13 +53,13 @@ In order to preview new features and provide early feedback, it is recommended t > In case of Oracle EL and CentOS 8, replace *[distro]* with “rhel”. ```bash - sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/[distro]/[version]/[channel].repo + sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/[distro]/[version]/[channel].repo ``` - For example, if you are running CentOS 7 and wish to deploy MDATP for Linux from the *insider-fast* channel: + For example, if you are running CentOS 7 and wish to deploy MDATP for Linux from the *insider-fast* channel: ```bash - sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/centos/7/insiders-fast.repo + sudo yum-config-manager --add-repo=https://packages.microsoft.com/config/centos/7/insiders-fast.repo ``` - Install the Microsoft GPG public key: @@ -67,12 +67,18 @@ In order to preview new features and provide early feedback, it is recommended t ```bash curl https://packages.microsoft.com/keys/microsoft.asc > microsoft.asc ``` - + ```bash sudo rpm --import microsoft.asc ``` -- Download and make usable all the metadata for the currently enabled yum repositories: +- Install `yum-utils` if it is not already installed: + + ```bash + sudo yum install yum-utils + ``` + +- Download and make usable all the metadata for the currently enabled yum repositories: ```bash yum makecache @@ -85,10 +91,10 @@ In order to preview new features and provide early feedback, it is recommended t In the following commands, replace *[distro]* and *[version]* with the information you've identified: ```bash - sudo zypper addrepo -c -f -n microsoft-[channel] https://packages.microsoft.com/config/[distro]/[version]/[channel].repo + sudo zypper addrepo -c -f -n microsoft-[channel] https://packages.microsoft.com/config/[distro]/[version]/[channel].repo ``` - For example, if you are running SLES 12 and wish to deploy MDATP for Linux from the *insider-fast* channel: + For example, if you are running SLES 12 and wish to deploy MDATP for Linux from the *insider-fast* channel: ```bash sudo zypper addrepo -c -f -n microsoft-insiders-fast https://packages.microsoft.com/config/sles/12/insiders-fast.repo @@ -99,7 +105,7 @@ In order to preview new features and provide early feedback, it is recommended t ```bash curl https://packages.microsoft.com/keys/microsoft.asc > microsoft.asc ``` - + ```bash rpm --import microsoft.asc ``` @@ -123,7 +129,7 @@ In order to preview new features and provide early feedback, it is recommended t For example, if you are running Ubuntu 18.04 and wish to deploy MDATP for Linux from the *insider-fast* channel: ```bash - curl -o microsoft.list https://packages.microsoft.com/config/ubuntu/18.04/insiders-fast.list + curl -o microsoft.list https://packages.microsoft.com/config/ubuntu/18.04/insiders-fast.list ``` - Install the repository configuration: @@ -141,12 +147,7 @@ In order to preview new features and provide early feedback, it is recommended t - Install the Microsoft GPG public key: ```bash - curl https://packages.microsoft.com/keys/microsoft.asc | gpg --dearmor > microsoft.gpg - ``` - - ```bash - sudo mv microsoft.gpg /etc/apt/trusted.gpg.d/ - + curl https://packages.microsoft.com/keys/microsoft.asc | apt-key add - ``` - Install the https driver if it's not already present: @@ -193,7 +194,7 @@ Download the onboarding package from Microsoft Defender Security Center: 4. From a command prompt, verify that you have the file. Extract the contents of the archive: - + ```bash ls -l total 8 From 6bcd27a58c3b65a6428cdf9bdd6e85a38c1010f7 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Wed, 4 Mar 2020 13:43:43 +0100 Subject: [PATCH 18/33] add libplist-utils MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- .../microsoft-defender-atp/linux-install-manually.md | 6 ++++++ 1 file changed, 6 insertions(+) diff --git a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md index 789eeca122..931ca5edf7 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md +++ b/windows/security/threat-protection/microsoft-defender-atp/linux-install-manually.md @@ -118,6 +118,12 @@ In order to preview new features and provide early feedback, it is recommended t sudo apt-get install curl ``` +- Install `libplist-utils` if it is not already installed: + + ```bash + sudo apt-get install libplist-utils + ``` + - Note your distribution and version, and identify the closest entry for it under `https://packages.microsoft.com/config`. In the below command, replace *[distro]* and *[version]* with the information you've identified: From 1210b9189ffea55667fd9e82e166c86e4f94f649 Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Thomas=20Sj=C3=B6gren?= Date: Wed, 4 Mar 2020 14:36:25 +0100 Subject: [PATCH 19/33] add Mac quarantine location, ref ##6078 MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit Signed-off-by: Thomas Sjögren --- .../microsoft-defender-atp/mac-resources.md | 11 ++++++++--- 1 file changed, 8 insertions(+), 3 deletions(-) diff --git a/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md b/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md index e35c4b95e5..d658cb4cb4 100644 --- a/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md +++ b/windows/security/threat-protection/microsoft-defender-atp/mac-resources.md @@ -13,7 +13,7 @@ author: dansimp ms.localizationpriority: medium manager: dansimp audience: ITPro -ms.collection: M365-security-compliance +ms.collection: M365-security-compliance ms.topic: conceptual --- @@ -59,7 +59,7 @@ If you can reproduce a problem, please increase the logging level, run the syste If an error occurs during installation, the installer will only report a general failure. -The detailed log will be saved to /Library/Logs/Microsoft/mdatp/install.log. If you experience issues during installation, send us this file so we can help diagnose the cause. +The detailed log will be saved to `/Library/Logs/Microsoft/mdatp/install.log`. If you experience issues during installation, send us this file so we can help diagnose the cause. ## Uninstalling @@ -72,6 +72,7 @@ There are several ways to uninstall Microsoft Defender ATP for Mac. Please note ### From the command line - ```sudo rm -rf '/Applications/Microsoft Defender ATP.app'``` +- ```sudo rm -rf '/Library/Application Support/Microsoft/Defender/'``` ## Configuring from the command line @@ -98,6 +99,10 @@ Important tasks, such as controlling product settings and triggering on-demand s |EDR |Add group tag to machine. EDR tags are used for managing machine groups. For more information, please visit https://docs.microsoft.com/windows/security/threat-protection/microsoft-defender-atp/machine-groups |`mdatp --edr --set-tag GROUP [name]` | |EDR |Remove group tag from machine |`mdatp --edr --remove-tag [name]` | +## Client Microsoft Defender ATP quarantine directory + +`/Library/Application Support/Microsoft/Defender/quarantine/` contains the files quarantined by `mdatp`. The files are named after the threat trackingId. The current trackingIds is shown with `mdatp --threat --list --pretty`. + ## Microsoft Defender ATP portal information In the Microsoft Defender ATP portal, you'll see two categories of information. @@ -121,6 +126,6 @@ Device information, including: - Computer model - Processor architecture - Whether the device is a virtual machine - + > [!NOTE] > Certain device information might be subject to upcoming releases. To send us feedback, use the Microsoft Defender ATP for Mac app and select **Help** > **Send feedback** on your device. Optionally, use the **Feedback** button in the Microsoft Defender Security Center. From 65a340b0ac2bb1fa40f5e9a6e77ac5e220196b60 Mon Sep 17 00:00:00 2001 From: Denise Vangel-MSFT Date: Wed, 4 Mar 2020 07:54:32 -0800 Subject: [PATCH 20/33] Update select-types-of-rules-to-create.md --- .../select-types-of-rules-to-create.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md index 109843079b..44fd750878 100644 --- a/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md +++ b/windows/security/threat-protection/windows-defender-application-control/select-types-of-rules-to-create.md @@ -14,7 +14,7 @@ author: jsuther1974 ms.reviewer: isbrahm ms.author: dansimp manager: dansimp -ms.date: 02/24/2020 +ms.date: 03/04/2020 --- # Understand WDAC policy rules and file rules From f11f9665a8c391070cfc272decb6e5af053fea1a Mon Sep 17 00:00:00 2001 From: Daniel Simpson Date: Wed, 4 Mar 2020 08:44:49 -0800 Subject: [PATCH 21/33] Update known-issues.md --- windows/deployment/windows-autopilot/known-issues.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/deployment/windows-autopilot/known-issues.md b/windows/deployment/windows-autopilot/known-issues.md index 418dc0201b..fe874d593f 100644 --- a/windows/deployment/windows-autopilot/known-issues.md +++ b/windows/deployment/windows-autopilot/known-issues.md @@ -71,7 +71,7 @@ This happens because Windows 10, version 1903 deletes the AutopilotConfiguration Error importing Windows Autopilot devices from a .csv fileEnsure that you have not edited the .csv file in Microsoft Excel or an editor other than Notepad. Some of these editors can introduce extra characters causing the file format to be invalid. Windows Autopilot for existing devices does not follow the Autopilot OOBE experience.Ensure that the JSON profile file is saved in ANSI/ASCII format, not Unicode or UTF-8. Something went wrong is displayed page during OOBE.The client is likely unable to access all the required AAD/MSA-related URLs. For more information, see Networking requirements. -Using a provisioning package in combination with Windows Autopilot can cause issues, especially if the PPKG contains join, enrollment, or device name information.Using PPKGs in combination with Windows Autopilot is not recommended. +Using a provisioning package in combination with Windows Autopilot can cause issues, especially if the PPKG contains join, enrollment, or device name information.Using PPKGs in combination with Windows Autopilot is not recommended. ## Related topics From 47f446904f44d3c3c5f0c9fad0fc38b1a970d225 Mon Sep 17 00:00:00 2001 From: ShrCaJesmo <54860945+ShrCaJesmo@users.noreply.github.com> Date: Wed, 4 Mar 2020 12:08:51 -0500 Subject: [PATCH 22/33] Update troubleshooting.md Adds a note not to delete the associated azure object, with remediation steps if it's been deleted. --- windows/deployment/windows-autopilot/troubleshooting.md | 2 ++ 1 file changed, 2 insertions(+) diff --git a/windows/deployment/windows-autopilot/troubleshooting.md b/windows/deployment/windows-autopilot/troubleshooting.md index b2e13bb564..a03e5fbb55 100644 --- a/windows/deployment/windows-autopilot/troubleshooting.md +++ b/windows/deployment/windows-autopilot/troubleshooting.md @@ -128,6 +128,8 @@ On devices running a [supported version](https://docs.microsoft.com/windows/rele The most common issue joining a device to Azure AD is related to Azure AD permissions. Ensure [the correct configuration is in place](windows-autopilot-requirements.md) to allow users to join devices to Azure AD. Errors can also happen if the user has exceeded the number of devices that they are allowed to join, as configured in Azure AD. +An Azure AD device is created upon import - it's important that this object not be deleted. It acts as Autopilot's anchor in AAD for group membership and targeting (including the profile) and can lead to join errors if it's deleted. Once this object has been deleted, to fix the issue, deleting and reimporting this autopilot hash will be necessary so it can recreate the associated object. + Error code 801C0003 will typically be reported on an error page titled "Something went wrong". This error means that the Azure AD join failed. ## Troubleshooting Intune enrollment issues From 1e3f1254bb33a4a5567e9b734c85cd95708329b6 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Wed, 4 Mar 2020 09:29:02 -0800 Subject: [PATCH 23/33] fix main toc and typo plus redirect --- .openpublishing.redirection.json | 10 ++ windows/deployment/TOC.md | 41 +++--- .../deploy-windows-mdt/key-features-in-mdt.md | 66 ---------- .../mdt-lite-touch-components.md | 121 ------------------ ...prepare-for-windows-deployment-with-mdt.md | 2 +- 5 files changed, 32 insertions(+), 208 deletions(-) delete mode 100644 windows/deployment/deploy-windows-mdt/key-features-in-mdt.md delete mode 100644 windows/deployment/deploy-windows-mdt/mdt-lite-touch-components.md diff --git a/.openpublishing.redirection.json b/.openpublishing.redirection.json index 7cd81760c8..25f53b6b0a 100644 --- a/.openpublishing.redirection.json +++ b/.openpublishing.redirection.json @@ -15735,6 +15735,16 @@ "source_path": "windows/deployment/upgrade/upgrade-to-windows-10-with-the-microsoft-deployment-toolkit.md", "redirect_url": "https://docs.microsoft.com/windows/deployment/deploy-windows-mdt/upgrade-to-windows-10-with-the-microsoft-deployment-toolkit", "redirect_document_id": false +}, +{ +"source_path": "windows/deployment/deploy-windows-mdt/mdt-lite-touch-components.md", +"redirect_url": "https://docs.microsoft.com/windows/deployment/deploy-windows-mdt/get-started-with-the-microsoft-deployment-toolkit#mdt-lite-touch-components", +"redirect_document_id": false +}, +{ +"source_path": "windows/deployment/deploy-windows-mdt/key-features-in-mdt.md", +"redirect_url": "https://docs.microsoft.com/windows/deployment/deploy-windows-mdt/get-started-with-the-microsoft-deployment-toolkit#key-features-in-mdt", +"redirect_document_id": false } ] } diff --git a/windows/deployment/TOC.md b/windows/deployment/TOC.md index 4c2b4eb2d2..e140ff297a 100644 --- a/windows/deployment/TOC.md +++ b/windows/deployment/TOC.md @@ -79,27 +79,28 @@ ##### [Compatibility Fixes for Windows 10, Windows 8, Windows 7, and Windows Vista](planning/compatibility-fixes-for-windows-8-windows-7-and-windows-vista.md) -### [Deploy Windows 10 with the Microsoft Deployment Toolkit](deploy-windows-mdt/deploy-windows-10-with-the-microsoft-deployment-toolkit.md) -#### [Get started with the Microsoft Deployment Toolkit (MDT)](deploy-windows-mdt/get-started-with-the-microsoft-deployment-toolkit.md) -##### [Key features in MDT](deploy-windows-mdt/key-features-in-mdt.md) -##### [MDT Lite Touch components](deploy-windows-mdt/mdt-lite-touch-components.md) -##### [Prepare for deployment with MDT](deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md) +### Deploy Windows 10 with the Microsoft Deployment Toolkit (MDT) +#### [Get started with MDT](deploy-windows-mdtget-started-with-the-microsoft-deployment-toolkit.md) -#### [Create a Windows 10 reference image](deploy-windows-mdt/create-a-windows-10-reference-image.md) -#### [Deploy a Windows 10 image using MDT](deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md) -#### [Build a distributed environment for Windows 10 deployment](deploy-windows-mdt/build-a-distributed-environment-for-windows-10-deployment.md) -#### [Refresh a Windows 7 computer with Windows 10](deploy-windows-mdt/refresh-a-windows-7-computer-with-windows-10.md) -#### [Replace a Windows 7 computer with a Windows 10 computer](deploy-windows-mdt/replace-a-windows-7-computer-with-a-windows-10-computer.md) -#### [Perform an in-place upgrade to Windows 10 with MDT](deploy-windows-mdt/upgrade-to-windows-10-with-the-microsoft-deployment-toolkit.md) -#### [Configure MDT settings](deploy-windows-mdt/configure-mdt-settings.md) -##### [Set up MDT for BitLocker](deploy-windows-mdt/set-up-mdt-for-bitlocker.md) -##### [Configure MDT deployment share rules](deploy-windows-mdt/configure-mdt-deployment-share-rules.md) -##### [Configure MDT for UserExit scripts](deploy-windows-mdt/configure-mdt-for-userexit-scripts.md) -##### [Simulate a Windows 10 deployment in a test environment](deploy-windows-mdt/simulate-a-windows-10-deployment-in-a-test-environment.md) -##### [Use the MDT database to stage Windows 10 deployment information](deploy-windows-mdt/use-the-mdt-database-to-stage-windows-10-deployment-information.md) -##### [Assign applications using roles in MDT](deploy-windows-mdt/assign-applications-using-roles-in-mdt.md) -##### [Use web services in MDT](deploy-windows-mdt/use-web-services-in-mdt.md) -##### [Use Orchestrator runbooks with MDT](deploy-windows-mdt/use-orchestrator-runbooks-with-mdt.md) +#### Deploy Windows 10 with MDT +##### [Prepare for deployment with MDT](deploy-windows-mdtprepare-for-windows-deployment-with-mdt.md) +##### [Create a Windows 10 reference image](deploy-windows-mdtcreate-a-windows-10-reference-image.md) +##### [Deploy a Windows 10 image using MDT](deploy-windows-mdtdeploy-a-windows-10-image-using-mdt.md) +##### [Build a distributed environment for Windows 10 deployment](deploy-windows-mdtbuild-a-distributed-environment-for-windows-10-deployment.md) +##### [Refresh a Windows 7 computer with Windows 10](deploy-windows-mdtrefresh-a-windows-7-computer-with-windows-10.md) +##### [Replace a Windows 7 computer with a Windows 10 computer](deploy-windows-mdtreplace-a-windows-7-computer-with-a-windows-10-computer.md) +##### [Perform an in-place upgrade to Windows 10 with MDT](deploy-windows-mdtupgrade-to-windows-10-with-the-microsoft-deployment-toolkit.md) + +#### Customize MDT +##### [Configure MDT settings](deploy-windows-mdtconfigure-mdt-settings.md) +##### [Set up MDT for BitLocker](deploy-windows-mdtset-up-mdt-for-bitlocker.md) +##### [Configure MDT deployment share rules](deploy-windows-mdtconfigure-mdt-deployment-share-rules.md) +##### [Configure MDT for UserExit scripts](deploy-windows-mdtconfigure-mdt-for-userexit-scripts.md) +##### [Simulate a Windows 10 deployment in a test environment](deploy-windows-mdtsimulate-a-windows-10-deployment-in-a-test-environment.md) +##### [Use the MDT database to stage Windows 10 deployment information](deploy-windows-mdtuse-the-mdt-database-to-stage-windows-10-deployment-information.md) +##### [Assign applications using roles in MDT](deploy-windows-mdtassign-applications-using-roles-in-mdt.md) +##### [Use web services in MDT](deploy-windows-mdtuse-web-services-in-mdt.md) +##### [Use Orchestrator runbooks with MDT](deploy-windows-mdtuse-orchestrator-runbooks-with-mdt.md) ### [Deploy Windows 10 with System Center 2012 R2 Configuration Manager](deploy-windows-sccm/deploy-windows-10-with-system-center-2012-r2-configuration-manager.md) #### [Integrate Configuration Manager with MDT](deploy-windows-mdt/integrate-configuration-manager-with-mdt.md) diff --git a/windows/deployment/deploy-windows-mdt/key-features-in-mdt.md b/windows/deployment/deploy-windows-mdt/key-features-in-mdt.md deleted file mode 100644 index f0fe20a593..0000000000 --- a/windows/deployment/deploy-windows-mdt/key-features-in-mdt.md +++ /dev/null @@ -1,66 +0,0 @@ ---- -title: Key features in MDT (Windows 10) -description: The Microsoft Deployment Toolkit (MDT) has been in existence since 2003, when it was first introduced as Business Desktop Deployment (BDD) 1.0. -ms.assetid: 858e384f-e9db-4a93-9a8b-101a503e4868 -ms.reviewer: -manager: laurawi -ms.author: greglin -keywords: deploy, feature, tools, upgrade, migrate, provisioning -ms.prod: w10 -ms.mktglfcycl: deploy -ms.localizationpriority: medium -ms.sitesec: library -ms.pagetype: mdt -audience: itpro author: greg-lindsay -ms.topic: article ---- - -# Key features in MDT - -**Applies to** -- Windows 10 - -The Microsoft Deployment Toolkit (MDT) has been in existence since 2003, when it was first introduced as Business Desktop Deployment (BDD) 1.0. The toolkit has evolved, both in functionality and popularity, and today it is considered fundamental to Windows operating system and enterprise application deployment. - -MDT has many useful features, the most important of which are: -- **Windows Client support.** Supports Windows 7, Windows 8, Windows 8.1, and Windows 10. -- **Windows Server support.** Supports Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2. -- **Additional operating systems support.** Supports Windows Thin PC and Windows Embedded POSReady 7, as well as Windows 8.1 Embedded Industry. -- **UEFI support.** Supports deployment to machines using Unified Extensible Firmware Interface (UEFI) version 2.3.1. -- **GPT support.** Supports deployment to machines that require the new GUID (globally unique identifier) partition table (GPT) format. This is related to UEFI. -- **Enhanced Windows PowerShell support.** Provides support for running PowerShell scripts. - - ![figure 2](../images/mdt-05-fig02.png) - - Figure 2. The deployment share mounted as a standard PSDrive allows for administration using PowerShell. - -- **Add local administrator accounts.** Allows you to add multiple user accounts to the local Administrators group on the target computers, either via settings or the deployment wizard. -- **Automated participation in CEIP and WER.** Provides configuration for participation in Windows Customer Experience Improvement Program (CEIP) and Windows Error Reporting (WER). -- **Deploy Windows RE.** Enables deployment of a customized Windows Recovery Environment (Windows RE) as part of the task sequence. -- **Deploy to VHD.** Provides ready-made task sequence templates for deploying Windows into a virtual hard disk (VHD) file. -- **Improved deployment wizard.** Provides additional progress information and a cleaner UI for the Lite Touch Deployment Wizard. -- **Monitoring.** Allows you to see the status of currently running deployments. -- **Apply GPO Pack.** Allows you to deploy local group policy objects created by Microsoft Security Compliance Manager (SCM). -- **Partitioning routines.** Provides improved partitioning routines to ensure that deployments work regardless of the current hard drive structure. -- **Offline BitLocker.** Provides the capability to have BitLocker enabled during the Windows Preinstallation Environment (Windows PE) phase, thus saving hours of encryption time. -- **USMT offline user-state migration.** Provides support for running the User State Migration Tool (USMT) capture offline, during the Windows PE phase of the deployment. - - ![figure 3](../images/mdt-05-fig03.png) - - Figure 3. The offline USMT backup in action. - -- **Install or uninstall Windows roles or features.** Enables you to select roles and features as part of the deployment wizard. MDT also supports uninstall of roles and features. -- **Microsoft System Center 2012 Orchestrator integration.** Provides the capability to use Orchestrator runbooks as part of the task sequence. -- **Support for DaRT.** Supports optional integration of the DaRT components into the boot image. -- **Support for Office 2013.** Provides added support for deploying Microsoft Office Professional Plus 2013. -- **Support for Modern UI app package provisioning.** Provisions applications based on the new Windows app package standard, which is used in Windows 8 and later. -- **Extensibility.** Provides the capability to extend MDT far beyond the built-in features by adding custom scripts, web services, System Center Orchestrator runbooks, PowerShell scripts, and VBScripts. -- **Upgrade task sequence.** Provides a new upgrade task sequence template that you can use to upgrade existing Windows 7, Windows 8, and Windows 8.1 systems directly to Windows 10, automatically preserving all data, settings, applications, and drivers. For more information about using this new upgrade task sequence, refer to the [Microsoft Deployment Toolkit resource page](https://go.microsoft.com/fwlink/p/?LinkId=618117). - -## Related topics - -[Prepare for deployment with MDT](prepare-for-windows-deployment-with-mdt.md) - -[MDT Lite Touch components](mdt-lite-touch-components.md) -  -  diff --git a/windows/deployment/deploy-windows-mdt/mdt-lite-touch-components.md b/windows/deployment/deploy-windows-mdt/mdt-lite-touch-components.md deleted file mode 100644 index 15f4f07658..0000000000 --- a/windows/deployment/deploy-windows-mdt/mdt-lite-touch-components.md +++ /dev/null @@ -1,121 +0,0 @@ ---- -title: MDT Lite Touch components (Windows 10) -description: This topic provides an overview of the features in the Microsoft Deployment Toolkit (MDT) that support Lite Touch Installation (LTI) for Windows 10. -ms.assetid: 7d6fc159-e338-439e-a2e6-1778d0da9089 -ms.reviewer: -manager: laurawi -ms.author: greglin -keywords: deploy, install, deployment, boot, log, monitor -ms.prod: w10 -ms.mktglfcycl: deploy -ms.localizationpriority: medium -ms.sitesec: library -ms.pagetype: mdt -audience: itpro author: greg-lindsay -ms.topic: article ---- - -# MDT Lite Touch components - -**Applies to** -- Windows 10 - -This topic provides an overview of the features in the Microsoft Deployment Toolkit (MDT) that support Lite Touch Installation (LTI) for Windows 10. An LTI deployment strategy requires very little infrastructure or user interaction, and can be used to deploy an operating system from a network share or from a physical media, such as a USB flash drive or disc. -When deploying the Windows operating system using MDT, most of the administration and configuration is done through the Deployment Workbench, but you also can perform many of the tasks using Windows PowerShell. The easiest way to find out how to use PowerShell in MDT is to use the Deployment Workbench to perform an operation and at the end of that task, click View Script. That will give you the PowerShell command. - -![figure 4](../images/mdt-05-fig04.png) - -Figure 4. If you click **View Script** on the right side, you will get the PowerShell code that was used to perform the task. - -## Deployment shares - -A deployment share is essentially a folder on the server that is shared and contains all the setup files and scripts needed for the deployment solution. It also holds the configuration files (called rules) that are gathered when a machine is deployed. These configuration files can reach out to other sources, like a database, external script, or web server to get additional settings for the deployment. For Lite Touch deployments, it is common to have two deployment shares: one for creating the reference images and one for deployment. For Zero Touch, it is common to have only the deployment share for creating reference images because Microsoft System Center 2012 R2 Configuration Manager deploys the image in the production environment. - -## Rules - -The rules (CustomSettings.ini and Bootstrap.ini) make up the brain of MDT. The rules control the Windows Deployment Wizard on the client and, for example, can provide the following settings to the machine being deployed: -- Computer name -- Domain to join, and organizational unit (OU) in Active Directory to hold the computer object -- Whether to enable BitLocker -- Regional settings -You can manage hundreds of settings in the rules. For more information, see the [Microsoft Deployment Toolkit resource center](https://go.microsoft.com/fwlink/p/?LinkId=618117). - -![figure 5](../images/mdt-05-fig05.png) - -Figure 5. Example of a MDT rule. In this example, the new computer name is being calculated based on PC- plus the first seven (Left) characters from the serial number - -## Boot images - -Boot images are the Windows Preinstallation Environment (Windows PE) images that are used to start the deployment. They can be started from a CD or DVD, an ISO file, a USB device, or over the network using a Pre-Boot Execution Environment (PXE) server. The boot images connect to the deployment -share on the server and start the deployment. - -## Operating systems - -Using the Deployment Workbench, you import the operating systems you want to deploy. You can import either the full source (like the full Windows 10 DVD/ISO) or a custom image that you have created. The full-source operating systems are primarily used to create reference images; however, they also can be used for normal deployments. - -## Applications - -Using the Deployment Workbench, you also add the applications you want to deploy. MDT supports virtually every executable Windows file type. The file can be a standard .exe file with command-line switches for an unattended install, a Microsoft Windows Installer (MSI) package, a batch file, or a VBScript. In fact, it can be just about anything that can be executed unattended. MDT also supports the new Universal Windows apps. - -## Driver repository - -You also use the Deployment Workbench to import the drivers your hardware needs into a driver repository that lives on the server, not in the image. - -## Packages - -With the Deployment Workbench, you can add any Microsoft packages that you want to use. The most commonly added packages are language packs, and the Deployment Workbench Packages node works well for those. You also can add security and other updates this way. However, we generally recommend that you use Windows Server Update Services (WSUS) for operating system updates. The rare exceptions are critical hotfixes that are not available via WSUS, packages for the boot image, or any other package that needs to be deployed before the WSUS update process starts. - -## Task sequences - -Task sequences are the heart and soul of the deployment solution. When creating a task sequence, you need to select a template. The templates are located in the Templates folder in the MDT installation directory, and they determine which default actions are present in the sequence. - -You can think of a task sequence as a list of actions that need to be executed in a certain order. Each action can also have conditions. Some examples of actions are as follows: -- **Gather.** Reads configuration settings from the deployment server. -- **Format and Partition.** Creates the partition(s) and formats them. -- **Inject Drivers.** Finds out which drivers the machine needs and downloads them from the central driver repository. -- **Apply Operating System.** Uses ImageX to apply the image. -- **Windows Update.** Connects to a WSUS server and updates the machine. - -## Task sequence templates - -MDT comes with nine default task sequence templates. You can also create your own templates. As long as you store them in the Templates folder, they will be available when you create a new task sequence. -- **Sysprep and Capture task sequence.** Used to run the System Preparation (Sysprep) tool and capture an image of a reference computer. - - **Note**   - It is preferable to use a complete build and capture instead of the Sysprep and Capture task sequence. A complete build and capture can be automated, whereas Sysprep and Capture cannot. - -- **Standard Client task sequence.** The most frequently used task sequence. Used for creating reference images and for deploying clients in production. -- **Standard Client Replace task sequence.** Used to run User State Migration Tool (USMT) backup and the optional full Windows Imaging (WIM) backup action. Can also be used to do a secure wipe of a machine that is going to be decommissioned. -- **Custom task sequence.** As the name implies, a custom task sequence with only one default action (one Install Application action). -- **Standard Server task sequence.** The default task sequence for deploying operating system images to servers. The main difference between this template and the Standard Client task sequence template is that it does not contain any USMT actions because USMT is not supported on servers. -- **Lite Touch OEM task sequence.** Used to preload operating systems images on the computer hard drive. Typically used by computer original equipment manufacturers (OEMs) but some enterprise organizations also use this feature. -- **Post OS Installation task sequence.** A task sequence prepared to run actions after the operating system has been deployed. Very useful for server deployments but not often used for client deployments. -- **Deploy to VHD Client task sequence.** Similar to the Standard Client task sequence template but also creates a virtual hard disk (VHD) file on the target computer and deploys the image to the VHD file. -- **Deploy to VHD Server task sequence.** Same as the Deploy to VHD Client task sequence but for servers. -- **Standard Client Upgrade task sequence.** A simple task sequence template used to perform an in-place upgrade from Windows 7, Windows 8, or Windows 8.1 directly to Windows 10, automatically preserving existing data, settings, applications, and drivers. - -## Selection profiles - -Selection profiles, which are available in the Advanced Configuration node, provide a way to filter content in the Deployment Workbench. Selection profiles are used for several purposes in the Deployment Workbench and in Lite Touch deployments. For example, they can be used to: -- Control which drivers and packages are injected into the Lite Touch (and generic) boot images. -- Control which drivers are injected during the task sequence. -- Control what is included in any media that you create. -- Control what is replicated to other deployment shares. -- Filter which task sequences and applications are displayed in the Deployment Wizard. - -## Logging - -MDT uses many log files during operating system deployments. By default the logs are client side, but by configuring the deployment settings, you can have MDT store them on the server, as well. - -**Note**   -The easiest way to view log files is to use Configuration Manager Trace (CMTrace), which is included in the [System Center 2012 R2 Configuration Manager Toolkit](https://go.microsoft.com/fwlink/p/?LinkId=734717). - -## Monitoring - -On the deployment share, you also can enable monitoring. After you enable monitoring, you will see all running deployments in the Monitor node in the Deployment Workbench. - -## Related topics - -[Key features in MDT](key-features-in-mdt.md) - -[Prepare for deployment with MDT](prepare-for-windows-deployment-with-mdt.md) diff --git a/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md b/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md index 01c0044c6e..41701e19c0 100644 --- a/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md +++ b/windows/deployment/deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md @@ -35,7 +35,7 @@ For the purposes of this topic, we will use three server computers: **DC01**, ** - Note: Although MDT supports Windows Server 2008 R2, at least Windows Server 2012 R2 or later is requried to perform the procedures in this guide. - **DC01** is a domain controller, DHCP server, and DNS server for contoso.com, representing the fictitious Contoso Corporation. - **MDT01** is a domain member server in contoso.com with a data (D:) drive that can store at least 200GB. MDT01 will host deployment shares and run the Windows Deployment Service. Optionally, MDT01 is also a WSUS server. - - A second MDT server (**MDT02**) configured identially to MDT01 is optionally used to [build a distributed environment](build-a-distributed-environment-for-windows-10-deployment.md) for Windows 10 deployment. This server is located on a different subnet than MDT01 and has a different default gateway. + - A second MDT server (**MDT02**) configured identically to MDT01 is optionally used to [build a distributed environment](build-a-distributed-environment-for-windows-10-deployment.md) for Windows 10 deployment. This server is located on a different subnet than MDT01 and has a different default gateway. - **HV01** is a Hyper-V host computer that is used to build a Windows 10 reference image. - See [Hyper-V requirements](#hyper-v-requirements) below for more information about HV01. From aad9dc48be91b79923cac76792798eac48cf0da3 Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Wed, 4 Mar 2020 09:34:19 -0800 Subject: [PATCH 24/33] fix missing slash --- windows/deployment/TOC.md | 34 +++++++++++++++++----------------- 1 file changed, 17 insertions(+), 17 deletions(-) diff --git a/windows/deployment/TOC.md b/windows/deployment/TOC.md index e140ff297a..8b61799ddc 100644 --- a/windows/deployment/TOC.md +++ b/windows/deployment/TOC.md @@ -80,27 +80,27 @@ ### Deploy Windows 10 with the Microsoft Deployment Toolkit (MDT) -#### [Get started with MDT](deploy-windows-mdtget-started-with-the-microsoft-deployment-toolkit.md) +#### [Get started with MDT](deploy-windows-mdt/get-started-with-the-microsoft-deployment-toolkit.md) #### Deploy Windows 10 with MDT -##### [Prepare for deployment with MDT](deploy-windows-mdtprepare-for-windows-deployment-with-mdt.md) -##### [Create a Windows 10 reference image](deploy-windows-mdtcreate-a-windows-10-reference-image.md) -##### [Deploy a Windows 10 image using MDT](deploy-windows-mdtdeploy-a-windows-10-image-using-mdt.md) -##### [Build a distributed environment for Windows 10 deployment](deploy-windows-mdtbuild-a-distributed-environment-for-windows-10-deployment.md) -##### [Refresh a Windows 7 computer with Windows 10](deploy-windows-mdtrefresh-a-windows-7-computer-with-windows-10.md) -##### [Replace a Windows 7 computer with a Windows 10 computer](deploy-windows-mdtreplace-a-windows-7-computer-with-a-windows-10-computer.md) -##### [Perform an in-place upgrade to Windows 10 with MDT](deploy-windows-mdtupgrade-to-windows-10-with-the-microsoft-deployment-toolkit.md) +##### [Prepare for deployment with MDT](deploy-windows-mdt/prepare-for-windows-deployment-with-mdt.md) +##### [Create a Windows 10 reference image](deploy-windows-mdt/create-a-windows-10-reference-image.md) +##### [Deploy a Windows 10 image using MDT](deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md) +##### [Build a distributed environment for Windows 10 deployment](deploy-windows-mdt/build-a-distributed-environment-for-windows-10-deployment.md) +##### [Refresh a Windows 7 computer with Windows 10](deploy-windows-mdt/refresh-a-windows-7-computer-with-windows-10.md) +##### [Replace a Windows 7 computer with a Windows 10 computer](deploy-windows-mdt/replace-a-windows-7-computer-with-a-windows-10-computer.md) +##### [Perform an in-place upgrade to Windows 10 with MDT](deploy-windows-mdt/upgrade-to-windows-10-with-the-microsoft-deployment-toolkit.md) #### Customize MDT -##### [Configure MDT settings](deploy-windows-mdtconfigure-mdt-settings.md) -##### [Set up MDT for BitLocker](deploy-windows-mdtset-up-mdt-for-bitlocker.md) -##### [Configure MDT deployment share rules](deploy-windows-mdtconfigure-mdt-deployment-share-rules.md) -##### [Configure MDT for UserExit scripts](deploy-windows-mdtconfigure-mdt-for-userexit-scripts.md) -##### [Simulate a Windows 10 deployment in a test environment](deploy-windows-mdtsimulate-a-windows-10-deployment-in-a-test-environment.md) -##### [Use the MDT database to stage Windows 10 deployment information](deploy-windows-mdtuse-the-mdt-database-to-stage-windows-10-deployment-information.md) -##### [Assign applications using roles in MDT](deploy-windows-mdtassign-applications-using-roles-in-mdt.md) -##### [Use web services in MDT](deploy-windows-mdtuse-web-services-in-mdt.md) -##### [Use Orchestrator runbooks with MDT](deploy-windows-mdtuse-orchestrator-runbooks-with-mdt.md) +##### [Configure MDT settings](deploy-windows-mdt/configure-mdt-settings.md) +##### [Set up MDT for BitLocker](deploy-windows-mdt/set-up-mdt-for-bitlocker.md) +##### [Configure MDT deployment share rules](deploy-windows-mdt/configure-mdt-deployment-share-rules.md) +##### [Configure MDT for UserExit scripts](deploy-windows-mdt/configure-mdt-for-userexit-scripts.md) +##### [Simulate a Windows 10 deployment in a test environment](deploy-windows-mdt/simulate-a-windows-10-deployment-in-a-test-environment.md) +##### [Use the MDT database to stage Windows 10 deployment information](deploy-windows-mdt/use-the-mdt-database-to-stage-windows-10-deployment-information.md) +##### [Assign applications using roles in MDT](deploy-windows-mdt/assign-applications-using-roles-in-mdt.md) +##### [Use web services in MDT](deploy-windows-mdt/use-web-services-in-mdt.md) +##### [Use Orchestrator runbooks with MDT](deploy-windows-mdt/use-orchestrator-runbooks-with-mdt.md) ### [Deploy Windows 10 with System Center 2012 R2 Configuration Manager](deploy-windows-sccm/deploy-windows-10-with-system-center-2012-r2-configuration-manager.md) #### [Integrate Configuration Manager with MDT](deploy-windows-mdt/integrate-configuration-manager-with-mdt.md) From a38e6c898743d94d7d18d1c1b2d61cf1195a2650 Mon Sep 17 00:00:00 2001 From: Kurt Sarens <56369685+kurtsarens@users.noreply.github.com> Date: Wed, 4 Mar 2020 09:41:30 -0800 Subject: [PATCH 25/33] Update manage-updates-baselines-windows-defender-antivirus.md --- ...es-baselines-windows-defender-antivirus.md | 26 ++++++++++++++++++- 1 file changed, 25 insertions(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md index 7ebc368cbc..85e32bc104 100644 --- a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md +++ b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md @@ -36,12 +36,36 @@ Windows Defender Antivirus uses both [cloud-delivered protection](utilize-micros The cloud-delivered protection is always on and requires an active connection to the Internet to function, while the protection updates generally occur once a day (although this can be configured). See the [Utilize Microsoft cloud-provided protection in Windows Defender Antivirus](utilize-microsoft-cloud-protection-windows-defender-antivirus.md) topic for more details about enabling and configuring cloud-provided protection. +Engine updates are included with the Security intelligence updates and are released on a monthly cadense. + ## Product updates -Windows Defender Antivirus requires [monthly updates](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform) (known as "engine updates" and "platform updates"), and will receive major feature updates alongside Windows 10 releases. +Windows Defender Antivirus requires [monthly updates](https://support.microsoft.com/help/4052623/update-for-windows-defender-antimalware-platform) (known as "platform updates"), and will receive major feature updates alongside Windows 10 releases. You can manage the distribution of updates through Windows Server Update Service (WSUS), with [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr/sum/understand/software-updates-introduction), or in the normal manner that you deploy Microsoft and Windows updates to endpoints in your network. +## Released platform -and engine versions +Only the main version is listed in the below table as reference + +Month | Platform/Client | Engine +---|---|--- +Feb-2020 | - | 1.1.16800.x +Jan-2020 | 4.18.2001.x | 1.1.16700.x +Dec-2019 | - | - | +Nov-2019 | 4.18.1911.x | 1.1.16600.x +Oct-2019 | 4.18.1910.x | 1.1.16500.x +Sep-2019 | 4.18.1909.x | 1.1.16400.x +Aug-2019 | 4.18.1908.x | 1.1.16300.x +Jul-2019 | 4.18.1907.x | 1.1.16200.x +Jun-2019 | 4.18.1906.x | 1.1.16100.x +May-2019 | 4.18.1905.x | 1.1.16000.x +Apr-2019 | 4.18.1904.x | 1.1.15900.x +Mar-2019 | 4.18.1903.x | 1.1.15800.x +Feb-2019 | 4.18.1902.x | 1.1.15700.x +Jan-2019 | 4.18.1901.x | 1.1.15600.x +Dec-18 | 4.18.1812.X | 1.1.15500.x + + ## In this section Topic | Description From 62b66b0300651bb5932bf61531b55bec5ccb12de Mon Sep 17 00:00:00 2001 From: Denise Vangel-MSFT Date: Wed, 4 Mar 2020 10:07:49 -0800 Subject: [PATCH 26/33] Update manage-updates-baselines-windows-defender-antivirus.md --- .../manage-updates-baselines-windows-defender-antivirus.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md index 85e32bc104..f7c32de337 100644 --- a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md +++ b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md @@ -12,7 +12,7 @@ ms.localizationpriority: medium author: denisebmsft ms.author: deniseb ms.custom: nextgen -ms.date: 09/03/2018 +ms.date: 03/04/2020 ms.reviewer: manager: dansimp --- From e9ea86935e984641932b72a8dfc2839e4f2c7304 Mon Sep 17 00:00:00 2001 From: Denise Vangel-MSFT Date: Wed, 4 Mar 2020 10:09:01 -0800 Subject: [PATCH 27/33] Update manage-updates-baselines-windows-defender-antivirus.md --- ...anage-updates-baselines-windows-defender-antivirus.md | 9 +++++---- 1 file changed, 5 insertions(+), 4 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md index f7c32de337..42608c4979 100644 --- a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md +++ b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md @@ -24,8 +24,8 @@ manager: dansimp - [Microsoft Defender Advanced Threat Protection (Microsoft Defender ATP)](https://go.microsoft.com/fwlink/p/?linkid=2069559) There are two types of updates related to keeping Windows Defender Antivirus up to date: -1. Protection updates +1. Protection updates 2. Product updates You can also apply [Windows security baselines](https://technet.microsoft.com/itpro/windows/keep-secure/windows-security-baselines) to quickly bring your endpoints up to a uniform level of protection. @@ -44,8 +44,9 @@ Windows Defender Antivirus requires [monthly updates](https://support.microsoft. You can manage the distribution of updates through Windows Server Update Service (WSUS), with [Microsoft Endpoint Configuration Manager](https://docs.microsoft.com/configmgr/sum/understand/software-updates-introduction), or in the normal manner that you deploy Microsoft and Windows updates to endpoints in your network. -## Released platform -and engine versions -Only the main version is listed in the below table as reference +## Released platform and engine versions + +Only the main version is listed in the following table as reference information: Month | Platform/Client | Engine ---|---|--- @@ -68,7 +69,7 @@ Dec-18 | 4.18.1812.X | 1.1.15500.x ## In this section -Topic | Description +Article | Description ---|--- [Manage how protection updates are downloaded and applied](manage-protection-updates-windows-defender-antivirus.md) | Protection updates can be delivered through a number of sources. [Manage when protection updates should be downloaded and applied](manage-protection-update-schedule-windows-defender-antivirus.md) | You can schedule when protection updates should be downloaded. From 9cc2788f34a450f9af65908e0bbbc7789262e6ce Mon Sep 17 00:00:00 2001 From: Greg Lindsay Date: Wed, 4 Mar 2020 12:28:48 -0800 Subject: [PATCH 28/33] update gather simulation --- ...d-environment-for-windows-10-deployment.md | 24 +++---- .../create-a-windows-10-reference-image.md | 2 +- .../deploy-a-windows-10-image-using-mdt.md | 2 +- ...ows-10-deployment-in-a-test-environment.md | 61 ++++++++++-------- windows/deployment/images/mdt-09-fig07.png | Bin 127186 -> 51564 bytes 5 files changed, 48 insertions(+), 41 deletions(-) diff --git a/windows/deployment/deploy-windows-mdt/build-a-distributed-environment-for-windows-10-deployment.md b/windows/deployment/deploy-windows-mdt/build-a-distributed-environment-for-windows-10-deployment.md index af7e1accf8..67daeba302 100644 --- a/windows/deployment/deploy-windows-mdt/build-a-distributed-environment-for-windows-10-deployment.md +++ b/windows/deployment/deploy-windows-mdt/build-a-distributed-environment-for-windows-10-deployment.md @@ -98,20 +98,20 @@ On **MDT02**: 1. Create and share the **D:\\MDTProduction** folder using default permissions by entering the following at an elevated command prompt: -```cmd -mkdir d:\MDTProduction -New-SmbShare -Name "MDTProduction$" -Path "D:\MDTProduction" -``` - + ```powershell + mkdir d:\MDTProduction + New-SmbShare -Name "MDTProduction$" -Path "D:\MDTProduction" + ``` + 2. You should see the following output: -```output -C:\> New-SmbShare -Name "MDTProduction$" -Path "D:\MDTProduction" - -Name ScopeName Path Description ----- --------- ---- ----------- -MDTProduction$ * D:\MDTProduction -``` + ```output + C:\> New-SmbShare -Name "MDTProduction$" -Path "D:\MDTProduction" + + Name ScopeName Path Description + ---- --------- ---- ----------- + MDTProduction$ * D:\MDTProduction + ``` ### Configure the deployment share diff --git a/windows/deployment/deploy-windows-mdt/create-a-windows-10-reference-image.md b/windows/deployment/deploy-windows-mdt/create-a-windows-10-reference-image.md index 8a3683e2e2..aada4ef42f 100644 --- a/windows/deployment/deploy-windows-mdt/create-a-windows-10-reference-image.md +++ b/windows/deployment/deploy-windows-mdt/create-a-windows-10-reference-image.md @@ -79,7 +79,7 @@ On **MDT01**: 1. Ensure you are signed in as **contoso\\administrator**. 2. Modify the NTFS permissions for the **D:\\MDTBuildLab** folder by running the following command in an elevated Windows PowerShell prompt: - ``` syntax + ``` powershell icacls "D:\MDTBuildLab" /grant '"CONTOSO\MDT_BA":(OI)(CI)(M)' grant-smbshareaccess -Name MDTBuildLab$ -AccountName "Contoso\MDT_BA" -AccessRight Full -force ``` diff --git a/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md b/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md index 3dda80d52e..67a08c0ff5 100644 --- a/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md +++ b/windows/deployment/deploy-windows-mdt/deploy-a-windows-10-image-using-mdt.md @@ -101,7 +101,7 @@ On **MDT01**: 1. Ensure you are signed in as **contoso\\administrator**. 2. Modify the NTFS permissions for the **D:\\MDTProduction** folder by running the following command in an elevated Windows PowerShell prompt: - ``` syntax + ``` powershell icacls "D:\MDTProduction" /grant '"CONTOSO\MDT_BA":(OI)(CI)(M)' grant-smbshareaccess -Name MDTProduction$ -AccountName "Contoso\MDT_BA" -AccessRight Full -force ``` diff --git a/windows/deployment/deploy-windows-mdt/simulate-a-windows-10-deployment-in-a-test-environment.md b/windows/deployment/deploy-windows-mdt/simulate-a-windows-10-deployment-in-a-test-environment.md index 6278b32fe5..cb28eea313 100644 --- a/windows/deployment/deploy-windows-mdt/simulate-a-windows-10-deployment-in-a-test-environment.md +++ b/windows/deployment/deploy-windows-mdt/simulate-a-windows-10-deployment-in-a-test-environment.md @@ -18,15 +18,26 @@ ms.topic: article # Simulate a Windows 10 deployment in a test environment -This topic will walk you through the process of creating a simulated environment on which to test your Windows 10 deployment using MDT. When working with advanced settings and rules, especially those like database calls, it is most efficient to be able to test the settings without having to run through a complete deployment. Luckily, MDT enables you to perform a simulated deployment by running the Gather process by itself. The simulation works best when you are using a domain-joined machine (client or server). In the following example, you use the PC0001 Windows 10 client. -For the purposes of this topic, you already will have either downloaded and installed the free Microsoft System Center 2012 R2 Configuration Manager Toolkit, or copied Configuration Manager Trace (CMTrace) if you have access to the System Center 2012 R2 Configuration Manager media. We also assume that you have downloaded the [sample Gather.ps1 script](https://go.microsoft.com/fwlink/p/?LinkId=619361) from the TechNet gallery. +This topic will walk you through the process of creating a simulated environment on which to test your Windows 10 deployment using MDT. When working with advanced settings and rules, especially those like database calls, it is most efficient to be able to test the settings without having to run through a complete deployment. Luckily, MDT enables you to perform a simulated deployment by running the Gather process by itself. The simulation works best when you are using a domain-joined client. -1. On PC0001, log on as **CONTOSO\\Administrator** using the password P@ssw0rd. -2. Using Computer Management, add the **CONTOSO\\MDT\_BA** user account to the local **Administrators** group. -3. Log off, and then log on to PC0001 as **CONTOSO\\MDT\_BA**. -4. Using File Explorer, create a folder named **C:\\MDT**. -5. Copy the downloaded Gather.ps1 script to the **C:\\MDT** folder. -6. From the **\\\\MDT01\\MDTProduction$\\Scripts** folder, copy the following files to **C:\\MDT**: +## Test environment + +- A Windows 10 client named **PC0001** will be used to simulate deployment. The client is joined to the contoso.com domain and has access to the Internet to required download tools and scripts. +- It is assumed that you have performed (at least) the following procedures so that you have an MDT service account and an MDT production deployment share: + - [Prepare for deployment with MDT](prepare-for-windows-deployment-with-mdt.md) + - [Create a Windows 10 reference image](create-a-windows-10-reference-image.md) + - [Deploy a Windows 10 image using MDT](deploy-a-windows-10-image-using-mdt.md) + +## Simulate deployment + +On **PC0001**: + +1. Sign as **contoso\\Administrator**. +2. Download the [sample Gather.ps1 script](https://go.microsoft.com/fwlink/p/?LinkId=619361) from the TechNet gallery and copy it to a directory named **C:\MDT** on PC0001. +3. Download and install the free [Microsoft System Center 2012 R2 Configuration Manager Toolkit](https://go.microsoft.com/fwlink/p/?LinkId=734717) on PC0001 so that you have access to the Configuration Manager Trace (cmtrace.exe) tool. +4. Using Local Users and Groups (lusrmgr.msc), add the **contoso\\MDT\_BA** user account to the local **Administrators** group. +5. Sign off, and then sign on to PC0001 as **contoso\\MDT\_BA**. +6. Open the **\\\\MDT01\\MDTProduction$\\Scripts** folder and copy the following files to **C:\\MDT**: 1. ZTIDataAccess.vbs 2. ZTIGather.wsf 3. ZTIGather.xml @@ -35,36 +46,32 @@ For the purposes of this topic, you already will have either downloaded and inst 8. In the **C:\\MDT** folder, create a subfolder named **X64**. 9. From the **\\\\MDT01\\MDTProduction$\\Tools\\X64** folder, copy the Microsoft.BDD.Utility.dll file to **C:\\MDT\\X64**. - ![figure 6](../images/mdt-09-fig06.png) + ![files](../images/mdt-09-fig06.png) - Figure 6. The C:\\MDT folder with the files added for the simulation environment. + The C:\\MDT folder with the files added for the simulation environment. -10. Using an elevated Windows PowerShell prompt (run as Administrator), run the following commands. Press Enter after each command: +10. Type the following at an elevated Windows PowerShell prompt: ``` powershell + Set-ExecutionPolicy -ExecutionPolicy Unrestricted -Scope Process -Force Set-Location C:\MDT .\Gather.ps1 ``` -11. Review the ZTIGather.log in the **C:\\MININT\\SMSOSD\\OSDLOGS** folder. + When prompted, press **R** to run the gather script. + +11. Review the ZTIGather.log in the **C:\\MININT\\SMSOSD\\OSDLOGS** folder using CMTrace. **Note** Warnings or errors with regard to the Wizard.hta are expected. If the log file looks okay, you are ready to try a real deployment. + ![ztigather](../images/mdt-09-fig07.png) -![figure 7](../images/mdt-09-fig07.png) - -Figure 7. The ZTIGather.log file from PC0001, displaying some of its hardware capabilities. + The ZTIGather.log file from PC0001. ## Related topics -[Set up MDT for BitLocker](set-up-mdt-for-bitlocker.md) - -[Configure MDT deployment share rules](configure-mdt-deployment-share-rules.md) - -[Configure MDT for UserExit scripts](configure-mdt-for-userexit-scripts.md) - -[Use the MDT database to stage Windows 10 deployment information](use-the-mdt-database-to-stage-windows-10-deployment-information.md) - -[Assign applications using roles in MDT](assign-applications-using-roles-in-mdt.md) - -[Use web services in MDT](use-web-services-in-mdt.md) - +[Set up MDT for BitLocker](set-up-mdt-for-bitlocker.md)
+[Configure MDT deployment share rules](configure-mdt-deployment-share-rules.md)
+[Configure MDT for UserExit scripts](configure-mdt-for-userexit-scripts.md)
+[Use the MDT database to stage Windows 10 deployment information](use-the-mdt-database-to-stage-windows-10-deployment-information.md)
+[Assign applications using roles in MDT](assign-applications-using-roles-in-mdt.md)
+[Use web services in MDT](use-web-services-in-mdt.md)
[Use Orchestrator runbooks with MDT](use-orchestrator-runbooks-with-mdt.md) diff --git a/windows/deployment/images/mdt-09-fig07.png b/windows/deployment/images/mdt-09-fig07.png index 431f212f80e842eee3706b13808e83ab655c98bd..a2a9093ff00427d1b1c9bbd899ca223d0f2d0b8b 100644 GIT binary patch literal 51564 zcma%icUV(R6K^OAic&QX&5dmomDkvos5m9>RBvcV866u}LqawYR016m- zl_roNy@wJKAnnHY{l0tebMO7*?vp$@XV0G5+1Z`n%x-3)9vSJJKYR5o0020zr+eQ7 z0AOGQ0O&6>pQhD}rAgG$e(1m^I`;r&gFNfB8%9S>Lrnmn62?NZJw>}e3?rT2rv)(43$r3j6UX4RXYti1N|nRxx`)z7uvKOGOo#>UtgHUIgPhO_c2 zJ<$gTH5~M1!zI<4k9G!O+;D41;Oc73kW_1141uZQCVu9ye?BjmwlQsODJvxR)zoJG@28lRq}??`SVY%KZ2W?&4+;B?>m|Lg;ac1XB=+U9%jbURJ z%l}fMr#nM$3E)4kh@i&n@a07UgVOi{)~*NaerH+_W#W@=qEd+0|I3!6BGm%ovDee3 z&aG}m&v=H_(uQ9RdL)xCePfrNp72uR>_cIb^d~n5+hj#PVtg@BFD#NUs!EvEqFu|+ zc~4q-t!DdPo%2BP{#Rhx5SNN#&wU839=OOn@_3!T2H?HcH*RQV%&%}{Rk zcg9RhBViYlZ02jrp|}1cYE9lmmAmemnp=9IK@W$)-$MeG_~G&iFy@{_x-aKwi;Px= zc{?Lhjd9(H^v6?ekbRxtKMLp021s81bU*5Hlro6mhh>4`nzuqIJwpIlN9t%0<9gbx$8> z#X~H0#WgelfVHzF8|u?zViMn$7oJkUC>OqbE(%Hye;2Qi3bGR0m?sM$`%75T87$qN ze=!_;9&PaKO?6Voc4k0>K-uJth@L*FZ_5tE7k3m)XOmO$&r-aBNri6X#bnfUN>R_A z0iUnAqXgj?xc+UuV(?RL3Wl;7MSZ>;{7hl!EWyno!VwPA?$Q)YMP#kstFmCdMioqG zd9c!Ecekm=6%bioVd=N(fH}1GJtmRYP z1n+h)UOJJyhj$%bYEf)amevl{Ia=1wcQh(35--o6lYQ{!d4CGYv}RQ?)=1GyO%im{ zXLO>_*OElsA9~@DtbJofPk*K2_GdPc^35bziDsC_$k%W20_>k$EGCkx-=b=)o~*K_ zYORb$=Xa^!%VvuVw%Qbbkp(od-&6rN5bx3{AX0QMefh-bieZ4_3!*{k?b4z zeE$u;vGCxdz!TOqFr+gbEC~wrgLJj_*~+DC8T~<+DfW`&y5@bBKc(oc2FIGMKPefZ zm(3TuU|pYi7j%5ZY6JAlGBZdhsE<`ZtzKo|$DOXQo3!>g_*6f)E=GH=k1?x^*^yYs!$9JuSDLrb{8S#Xb0JbLB*O0x7iF1z-AB z=*!B7tkXgd6UCj>74uchN;nvh?MK( zqe9{t>$nr!xw1DFa-~rG_-Caz6mVdUop$6uAU1d8V75r`)+)Bkc#$Wfgasi8X04+pUt zxZg?m_79Uc5k#rb^OK_GTh5Zx#fE&QqWWRA!t0?z>2bQ0g5oPz#z*h#DfCh+{v@p2 z?crHHcgJ~TL3~Cc`{4G6k1F~qaEVd%MUrPp2@B-@)!J!?^B+FOI6Ut`DK^CJB@0J@ zidgwvlrPFnU&>f*D!lM9DUmK=a--|>JKw^jZwUd=iDmo^3HNIfHJ#77Uv3!scHSnI ze=$}Y720&tqqlMaJx0gs zgrOKuihYTQONM;c>fH~RC;t5+t7nNB3x0!R9Gjk8k!Dj|wL5R=RxQlc9x#~^D&Yfn zC8O;JDBpM%K8_bGyp*a~F^5=^)SN&G=Uc##_)7>FI5XkK;PK5=jH7kwsxwD(=Zf}V zn~JJ-pANTy`*o+$u%1T#iD>A-P4vorf52_Qp3^hvy>kFyE3RoM1M(=l|zSF zzes(<%>wr^LeVlClSLK z$7auNbBTf%88@;OJFhfAzi6G5a=ZmD?WJ2S?>(<660e@JUFpeG6mM(lk*l0+sq##U zD>pjeP+l_;MS(A@I+LYGxT$cC#`u;up1( ziI(33vn0O*BEb_^d)(hqr-u$b9?h>hwlIDHPct$^`Ue>dzdGIb+wt3qjFsX~`vEd2 zK0-1|;EPTeAbw749M@K1Y5AYIbZrQAZCt)|Aks#I%F65hi=bAit(?EeLbC#k^z>1D zOVtnd5z(}1jeN!Z`pwD>Rq4Bi_1HP%z@3K3!K3Oq=;04DXv=3By1Wl<5geeSYu4Mk zG-~Z5pPH?YV$JkOU1dwp>Wr)KNbA&>HIfCdZT_saos7;X_*$cmcU{LjjH~j z--;?&#_&VMf+Yxq*Ihvdr@;w@=EgTeA+< ztAy=k*-d9dsqJO)MzX#BO1906sfR1Do>c_whb8;iQ+X{BP~X5mAKqd^DxX6fUO;D$ z5}CH?l;nb8>nz)=GPWxzN69SuZp&nE|3mb};N7b)ER%gV{F4SyDVNnGf!|-e$dUKq zMK~q4h@&^d?q8W5{K|W!>EPKFqn|0rrwhOw*vz`EWcP7bqnr-kZR*tq*E8uW2Ict7 zMc?%6-?By`n*CbLVEZHVWt1CKUuXP|fM$X-C0UzqXmPXx8dllRzxXEW)dTD3H;Jys9_E7KZ#I;FT#Jbh(fE^7RS{Lw zul4%<&W*{({UkvWoYA7MkH=Zph99QU>F%VFA@^!mJ=DdJI_5A+ZzGEfKt8xC-znlT zY}#FE`}>v}>2MO{)@r`hs>2VwmLN~D2VN7W>2lHs&3vX~7OnmC0-9N=owU{gQhzn# z>U>)xDYzlbJvgafeV9pYmrm)R|4b8s!c@HhWS=!moEc|ygD)lBtqRQly1AqG8$Dx` z__oXo@E(nK&G-~#xFv~)?&Qo4lF_-XbvA@|8E!?}o30J9n3LEcccSd)?5>l~$=kkh zdW~l&@`VEdW8Q_mdM7r=i;KkYZ}9xgDKVutmbyMoX-_@2+V&m}bM8+*yBz-5iO+P{Y0U z&qx*Mv*>twNkksX_Cw6m5Z z)`WlVB(Cd`0`}SPYw6fmi03NpjeTqKfo%qBIu*fttfEN736RY;l5HM3Y8N;PwrQC{o{4qJtV+uadaBF zw6r=*ZJ2JF7*#&_)p1f=gZs#qA*U@`og>P59hIW^_4%wL-?MMC)rmP)OaA+M)b~b; z+vWZ)h91scbTg@-hseYLuOE6;&eUKnb`f|F&m)N!a>Yz{}4(ebbT2+e3 zI=Z-l+`4_zdqwpmkJGtH6)zM-RtumsV~op{mI?k5{iELtSiJ6UG-1bZU>fuKXwiLh z@>cVjkyFS(atJCY7UBM;)~!!_x#VgK{TiE*pGY=%QR{ZhLPn;u!!xvbis%I%o^%-O z3UT@KOv>G-Niq?x#TYD^CmTE$&ciZw^2FtCr_%9oa+HzcY4hyBq_tl4Ka`wyd*apK z1M4Q?Y2xDWPTdy%GgWRDFmaMp3Ze~g`MhTd;#RjscV zymq_na_&WB5(^LU{c4)R>>>E)?-6I@dYx5cg;A!OIVH?KbreWC3eK%|vypm@Dezim zF)qeXns_P(qdg7?JB4s8GFna6``zoH3|4hdR_Ic`|8He);p{yIb~5!`@R zaSb6Ors0!cLh5k3sA{Gfq@?Dx&Tv!p9j~nf_2ou#z1MfT{N}ix&uATNpe8Jb=sT-J z_^_BGKXw4$1+9_mc|Wa6TW-mmAk4^ZIBkzd<w#}vDh9Al0V^@Zb?q-n6^zsWz zCP&K&6t|P;ny#C3-f}LR|oNQ;AQsCNGiU*&4n`hiD>7s5lC~9|L%3!b@Pdd1upbqCFQLTPBD&o zp`dJ|Gibcr!8`s-%nHj4^u)5|U0%WmPMO;i%`O(yPDW*8TfzM&FYW9Yh-%CQIVF#4 zM5zaL1?7% z`lR)~BG|y39llJGe~d*~yFqIF7o~Y+;S=0UN6SdZ(M^i;HC4hlV)WT(PMF86JgvCq zU&@R1YrcU)i0U>}PikvK0HQ6btR60yV7yxq;}g3BLS_&8Tf?l0w~St*4vuCx1Y07Fyafkp{6hJ7`XRaGXIW|!pFf2h!hu2xW{@K+t@l1Q|Pvj zkDsANTkkgWcvlRdUaQ~oxL@(mcNnA6tkZTNY$T~B2#(!U3R=}!Gc!^QFIysaNws7J z%(w&+g*p}%_ocvBkPU2MI}ONAWpO;ZRr}{J{RCh42t_@;bqeZuPOY`7Xs8A9XH4i zso}szDp+LfBTfeiFM_G_Bkuz59n^h2OI~I{Ctc4i02NN+gQC>j z;Z{(Sa9p5w@~Umbtt2S}@VH6y)J=?8idg>BGbxt8gduU(b3|y9hT726b2`&4zpkIs zb`Su}A^PY-a~VPo&z@%7`$Ij3Q>RHq*U4QAyMc^5FutQdWzUiWjtCkdG;ZDP5j+cfFy7AYb{=0=a!*s95%jFm2e!Scp;ZN~47ee-e zio_82#v7rYCcG@!Y)H5IE}0E3xj>+;^!sBMGpD^eZ8DK_VIy&Jcn`e(G|>B+;hVZr zzbhh&t`r%0wK87SSKc+qLz14wS)EB<2{!HR;iJXH_^fLplZ309*UoPq!W_2x1(u(* z8Ir$LI(B}M;&rco-)|IJE%;f!3GJ05ZnaYJ0`#`W?YS-Dqzeg05HNODv)U(o*}fYG zQ;(CR2BL#&9>NB)joo&#HPnM997_>hmreMa?;zvm_O+FEk7Qn4WV5tkqS|r>Z5PY$9jPAJ*Iz}!SNKwbUvI4W zt`{J3jIa&FT$%9$TcB{$NdaOc(R!aCdyDmMM}dv}+9u6#r4F|0uXx6%q_i1GDIY)e z`m;elpnCM`qzkR=1nYl?3p}>XNY74OQRr0?$C&5#fkp~|DF<8cfW_3q*tcu^&}3`h zXh=)+SkTrwu8`aMd){QEf`%U-x$9K0w)z2C{k7VJ_ishmaIcoh_yyiZDgzEneF`&L zC%;wNTbdke39KMK3oDiaaOAIJq-;vV>f^EymLxNduPwv))GRX@^#KB=_4 zCRUi0(dTI;^r>+Y_16B`^hhwx0qVg0^2sE{^-asn8UdTen$%0Sc89D_SiClL+^UQ& zD_idu?_8KO4)zsS1{rURYz|hVmp2ytaaHJbTolu*wHRutjw2#O&f&hjZIgI0{dE2n+v~VG00bjfht|0j z_-Dj0GMDVlSNfV!4nnPO=)>6N1ivRhyf&(FIy^V5Zomip=PggV#)e*5EHS9{;XV?` zDyoM<$LJ35+7{7lZ8sXSmwupUpaUvSb%#?kGC_F<{;DdeXj903v>OJO&l%vg02cM% z|gnlG%Ik{DuAhb5n1ye%obucDKa+8z2^6Y$Vrenw;QK4;+1ft62&SJ*8* zkL3-d-A5+N@?u&&vi>0-QeoM;e<*|zD!!AC{HJSw5+;dA&EB^RC_lrzh0^_? z6*H-}=#Tr}-1+Jla&nBDK^TuN?mL=vRlX#`Cj%9mI~G*I>?U&lOk}Zof@`JsbH4D4 zhjWCW6AoAG(_&=#Xs6gv9-)`>%t4;dtK-ur1&+=I1hf53Zc+cNrJ+nd!DEHNk~N9ha(fsg#VGIx%lZMVPeH{} zMY!?PSWuD(aK5VL=87bQOZ9kNRjDUSndY;cu&(b2x3t!!&nG-v=0F|d^3h*#>#8O> zYcfqC)?-Ch9(nsM{#F;*AE<*UdFUw}3?ddp0}#96g+2Z`~R^cCqX=o@w`V1U(EC@20$8 z{$Zcva#C<9UFq}=>;Zy%I{@BnR4f1C<5vUMSpjm@yY0?l|1grGh26IB_OOt1bkZRY zVJRajFOEF*MWS62S35%=K;Zg|B<5#VayIc&M4 z(b#n#4k`aR>iu$}IHJz!3U!mg5n1Yna z+jl5}(D?KK1VED9gcFezQ2zU8&ag1 znkW2RKyRxkJK$fYwwMcMUw z_V}R`Neod&>5xfe%@ZHJx-2N!Kd!1(ZiFd#cL zVW2eVeGrn+G3y!+>h);H>4=hUL)Stbeg|(_tf2y>@?#9vJXoNlbgA6775>-W>*4{& zQR-U3g2B^Zz1Cb0I^-wXj#;()dlje@wK+ea4$26{j|N)Ip!2VZ18 z6o-}x=m!Y(1N-70r}THnC2NG7lNj9hFHboEWs+8dP{r`U)S&d%r&EvG$xQ7ld3|)6 zHv#75xi&Pj#7m9&9MH@O&W`jI z=Kpyyd@Ai$;#K*;Z^tOGtdj93b*GqYgkRtn7>}Zf+;r7?qu!zFd)ESgl=%A9fmdDJ5%ZOq({v5of~ zNgpSoA5uNT1j9PEpwMlTfX!086y_#xz=uI~q>hvyssnd~>)Ps6gR8xO++S%HU zC-o4QA)0+({p3uXN!%{w6!+-!dR^TgD~1^3Rb;Nt4BD4hHNdalgHOt?qj>6zb%wtb z8O@e;A4|Mo7U%`^?M}+Ir!5&^V3&GEljBr}I%FI>B8H^)Zb!-Y#%(TA4a$Q?&)@_{ z(JIP|prhN_UF5q!ZACA2DCJmHXnb!|J~i&v=xnQ9u7h;zKFHtMdeF7uolpYdMZi-maSaD1q{;tT=FTi{T091d7o6h|ZXRTYVuAy5IR{GuQ~&@)$kf$V$0`gj&FY77`D)}x$Rm6)>fun<)Aq~1bME$jXw8Wa- zu?1<1h68KHkFZ3ls?~rFpMn~S+?a(9`T-o7X@!0=q(TFJ;0dEeD8E>sY9wVTs=R;z zf$@3-sFU}isBB1AcvRSjS86YF_@P^I#|wnZu6f*tbtBW5#SeeFC3k{hK_07jCqzMz z4?D{ZuRT1t$&?<%7}L)D_7%P~22j5G(H1)K^!F>}YpM_edU>A~cy{0)2+Q@o4%+z2EhIEtMhX$|T<>}Y$Z>)k`XJV8>uoT+H z?~}X}E&;3%QPmisq0c>vlt%mT+xsE&VJuR`2a+wZly#QWVRes3?t5HjshI1-#;5LC z9S@Z3(}g}lAF((wbtxC~h7X4h6C3TT-ezBYyv>roVNRC%yrxuY`exr{6|&rnHHnaL zQ;}?&)gX^_ZVj{Ms^wJ4Og?J@O?$AcN>31OC>f`z+sE`+)UGOzKMf!WYHcW#c)2Em zJC;tY1=n=S&_6fx#7rcanculv&MJzK&oa>8*(uu|j+>>qYp88P_?Nn4mN={XQb8xd zxolOY>ZUFFZ;^wM>sm8#+cvKzPcdb@`b#w;M)~-Q*M6Ux8=92jV?7!umklNttXTQ% zLDV59*kQ9*TNq!EHOWzu;2bby?IXb5dcUo287=^#hth8nB;|t7n>@TVsQQzx12{&2 z3oRbM+)!P=A5f}tHBH7%qM90T9l4eyn%*`?>nQTG?~0_->mVPzKCX(hsGpE7^)2Vu zV*83wot>r%Nb?OS-@cD+%z{!5uYnh({wmmdZN2|6Ks;47o*@mL2-htq-v*}Df=;Z= zk8jr#UIyelVVTxDQ@8S+8c%0>Bx6MUuEM&`@H|n0tM!Ne!sV0gGdxLLD{drs_rfHW zDDQQmynJ9V3yVO#rXA>{Z7RnbDf|(tJG__>d2_`$@Aoq&|7hfR45(u{0LLg9yf9`| z2#4x$xZHv!1`!K6r$x$$MB{wXmJcja7lCi>Qr2XYh>hx6*wsc=DwpUqUi-G%&*H>2 zD)G0zkmS6E7N4M{ZW|Q`DkSv4b**e~f$p`92cEIA6G`ddux2QkB%Oi{ow-RI$z2Uv zyEHRYq`YR2P*0`|B>I)*kZ+%Sgs2ZTR_hjG*}Gk~ z*oc!S=!L#D2*IUq`cvX6g<(O_);1?S_MW}f>v!;DT3*f+{!(j7D(?OPZ>;FZIu@!- zw#E8;4QiFtw7-%p4N9?wE&!)PG=6INld2?o1bEp$-voFi>}L$?EWV#g0v|0;NpJJ{ zYgBBqfbxP{=IxXSEmC6`=$;A97DW@Ozg4dL&8S<)|C%g2dO!`a5tNBD=?ta!uiJ0< z=#8mOM4nc7)UEC`tgAwMcxJEEJ^GF< zaoN#q%BT!+McGU@W%fQ+srEzLbh>=+n`p5uXb;$@|02&<}?El!ItKD zHp~n9DwH_zZ6{F&fal%USyH|Pr`%H7=Jbrc^+}3#2E=qnH&8y)>LBvT0F(Qg=CQxb zOgd_*1K;9*pVGN;c8HFU$VYnihexV9UFAVSeB|1$W@Xrn>LVO3Pj$A9>$h*xvf7SU zXW19~NMJSmQik$Ry(+cY8<~c#ZI{m&wM3Rx&-gy|$prCCb+EP`W1DM~L__I2s6486 zM5*G3bu*66ig%u}j1^O+3w%fNBB?3mGE#*l4IiIYU%(boe-VegrYnCui`XvbEl&dg zGBe|u7=hG&e_YRy^?mqBB+Jp^y{7qv^1A`|q<82-{pH*6tYT}ZXMFX0JI#!Y`(=9M zIlN)lg=V9J1=0)A0n#0mYcV9Vp;O7?C&wZLw$}>Ao59M57iQ^+82s2?-A?g z`Z-=umON{g?pF&-g;$iMFA7$D`z%P*cJr)*KF_0@QUjxZicn6=m+Nh=aySkL;n594 zC9@t_0$fpdRE7pODuoXMnTjIotGf5vzj^4!pwsLn`g9tb7-~GTQ0;0- z(zo{I=Q#liZt^GG#{=!bt0n?nKDJjz>eC%?+CF1qWcRQ2I1$esZ}@IWL<*f=Ra2lX2=hCmKaDrU)jq7DfK`5+?cWh)*k(8kWT6i zIpZm?r4&B&XG~q2&HenHRC12L{9Yj%I2z$xLaIoY-K+?WBsn&-a{_D*{+dB4T6`6G z+F~eQo>X; z!To-at^McJ^4#5DN7`zy)KJ$Vh_Clcdsj!Z>xDpB4x;W3#|mavfvcwuFic^3Fc*{N9IxJ&i`A8czDdNj5F>pP@51(tcU_)|++)i%DI zlvH#ywIR;LTC&yjP;r@4IbHTRLE6_cXrr%CW~IRcU&_1k+KDq}CSm?QCzBl7~VyTpmqPFRCdvBuMzeLd8apoK4O zdZ~LH2VkzUv#z`GMNA)6FHPHVwQ0_;+!O}1ue@BMqXPh9fysTQu6ydP&A+Px!#R?Y zeaEyHn6DbgkKNb41GVrxHeYDzy~E(|{q$Qz{u|}f0()FtU!LL>x6006c7Dwt_=bli zqT7`I*fhE6}Y;gjC1b&_Xh4_^!=1Vf5JBA>;9%8@+T9TQ8=m;uc@+ zWqMVfo+`3b#-}-VD>Uwjzr5X7l6XEci}xvSRcY6AuB;!_9wv7ay3nLQ0W8z@F9s@w zw}Ndo_UX=(o8t?H7vTj(V%h)#Xm27JnK4BNaD=wXQ#Ng_Ksfu0C?f0%6x z)8|}okqrJY2*Tejz8Z9T%<+nj{~k*aZYl)YP!#G6?XXg2Ts9mY(b~EI$Qn-hT<3(s=17&7&&YX@`>I-R~z-BO? z0!+31jUaY*iDeKPoQjTTWj?V}5ng@56_Jr-|7>Z_V)B#ZVuC>x&+yk>)0YyaJDT@W zO6+hXjeYS(ddrs4Lq(t6{^o|VmVrx=Y?9nAUAG@rsfsYw-mDVdv6Ae%E>wAKXeDqD);$Y6h1dLvmU;LbuiGiATg|26F(0KvxB5Zs|LB_y9w}*Lro;)6VCmsHd}oM;yF% zR@?5alE|wuw75}#+^I}7HklRw_~vDHI)G9~0ZdKl;zzKRARBY5&$bILn6d#JhLI8K zxp3vfCk6U$EfH#@^n<@Kr?hu1eqfW0S4=Y;KkLDkz313W+=wVY@q5fd z>rOiEVqEYOKuFo`G9!}o=2a&R_wCxr5tO>OByu|&o2O1bs2>(pKVZX!vOz)yRls38 zNb2`*CrpgZPWh7sIivWV=BS;V!foWXP^KJghEK9tlvJmB?M1bkPxMF5<``bB!t6QD zUx^0jhFV+l&jv-YYZ+5=tat`M6H6E!KjKnomK+nJ>7Q&g}{#2_SsurgRLD3G;n)A9OADp8 zyqwHQUGWW;{rXA7`)=2`%xK8`MoIZ&y6>`c9++@kT|II@<@$$H^hV6g@82;3W<-0Q zN(@pvg%HV_Kjvf`p$0B)+P&{Z>OO{(X+i>A=6=8Kx4IF1iXs0~kat(_VaeMJ0C#$b5^%t-2T=n}94Fr>av~Tw|Dp2HTO}e|5 z1M*VT-(d2(Q9wTAZA}NZuISbz!F^`=R-LHmL**6(^H<=EV*BgSVCtfN)2#=+-@X)R zLWSdf9?sk*qf3cqB^Up)l$n;riAf4FYGDUYfsG(vC09w!RexH4{xjApiL(5d@}s&D zVKZ!=n`JX%gfq;-wHca=WjBZ4UYH-RbMUp(9kiZ$?+N+H@Ed1d$s5$~`0+`cLj7Zv zTT`kWZ%fdy{j{Y6p0%&Q{a<;Lg|MbuR{~j$W{=ob?e!@yJ{P)xXR0<=KnU)`281}8 zhvts}Y$QH`7cvvT3$-0(%W)A)8=mjHyEZs1c?HiiOE!|OiCk`2dpkL-jcFKExqkF} zeDV-_uVQt@;yv|Ud!TQ_qxHtJh>G*n9*>Vt69JbSf3(&5K+&bh~ZL{MtcL-2a~Y_Idd-Q;m7$l8)<`2b&?e z?X3rDjE*(#oxWhGgH?i@%oT-&D33dgP#z)v8@$1TpwskO_0KT;@9;|dbh!JE^lJ}fKm%DeYEPsPL!2uT$Q(ia}y!_USV%FxAL;JgL z`L5SaBUQr@x_44oMp<<$@9<@Q8K|npY3=ARP(uE- z)xFoo4dovHurmK6X1#?)sv!8}hcM2V=b|N~Ykb+4+0K|LtBkbrRPe~8lGxq-qNkQ) zDpjR;;}Z;@BVrO!>IdSL2i;H)?MIKC306;-&*!+jxneKclP9?8I^&F2^EuZ_E}V% zBrxww7t{-KY#!e|ZO-$sLg?ciJ^Hq?3#p(#*{7zvU|k_Wh4g>158%vY66bsEL~+l> z9M(j`b_nUt>WHX%AO~~&!k^JqkqCc$(FAyHAuIgna?h6n%C4PQE z6m@tVFM|*mazWdwm(N-@P^w&_B+D`C(sT!?(z*?`-&^%?mA>zraG7_M#X=QeNmJvW zZoU5l(C3*c``M0TaOC05fW=^pUU?ubeC8uoArpQ0-8c=)jx(jg&e2Ib|6_~*7TF%& z3z5$!bs7Gf^3~a(wAbA&{9OA#Ja~mIM&;K$+D@_dlO(d(6-sEFf+3yy_mAXMorWpQx9?MCq)s?2%TW29) zn?ISBT1m@f^PW)U2iO#Fpvdo0ky4ERR8F1a=f7-$-=*8MhBpr%o)1$vHnaA305!IR*A;9Vd;uErtePY9 zZ4^QLrA{WrdO5{(njZ?! z+xfDZfy~{+Rdr@Uawil0KQHMPp>&xT_kTb5n^r~B)#Eh-4fYNt@2xL)+fOm>Gqxwk z=*6)K@(+6}(N4s_3G)w^cW7*QjuwuB&s}2gE}8Qw9JMc`53AF?V#W0D*ql$(Zmdt#l~vrOfqL)xdmaOn@ptZ~v`U*Wf4Qo<^r++E)JAV!IyqW?%6u-Mha z#AsN_ngJdiEe}`l{1HIA-G9h8*&1jl)6E(7a4$roO)k&cE%=bZ_@5C2e#XeKF!w*h z*G7$9=}`1`&}bhFHV9{AEN(r0Hk|Hpw5`hZVHb0zCKGj1)uCEv+&b=}-@U)G0!Ukb z3)C3KDKk!Jf{iku-mI_G?`kqJl7G=+IaMl^>^%Js-$vW2U#B&ZY-qyObx-pu7mu0F zpZSZ5fOfx1+H}2W)!Ln?$D64${o(-cdsc1B`)1APGBJz2KYpjtS1gZBMYAR=rTi~u zz1f&E?09823wwO}kJ-k5eo1U`DP#!e@tjpW%CqDZNL|?{l+-(Eu$!SZcYG~BOuijo z@{9I3%X~V%jNurBR_a)4000 z>Ys|;O}FM=sWZL!yno`Lm9YYjr5ObJ+TwDP2a};8e+L1`45cyj8xq;BrqA`eZz-NgD|HTf&b z6=g=l@k<^nj2>GJrw^_sf+@3gV0z+pe=k+BMu_2t0_St*+M@Lo((XkLs0^ z`Ti@KQ5pql)(=|pA5IkOudbexf6O^?fj#!lwUP2C8qy!Uc>lA)uS{L|8-%-a;v}f4 zA+2IZQ?_>@e~0q#STcel0Y@~Q<@>ie;4j&~a}4;#z0gpe`cK2ALE0+&=L!(Acj{lE z0st0iG(;iHf{nij>cpi@4h7+>t(E?p3A^}z!A;1-@|n;lq+YYu3;#_9mPt9<+r0V@ z2-%SRaU(i0r2}2Bwz(^8f+l}f{AByroSva&uQoBS_`3WH7#e5j>4&wY+ur_Xb|12{ zhe(DUTV4Bi0FP+L2woih*x$6bXeHzVBV%q1jo#^hl{JY*#ES8tS*{7l{>{?BF{dV5 z1S^S;?B0puI}Gr40l|L$eM=@c-QHc^(AA9ab2~BXHhPIzn}2U#Yxp zZ(uNtN1q(s%}k#q6_XqFatMz<)_$wp%QjJ&#`E05?wL5c?9PjxV_;-_YY%2(>}tNeGxF%j^}X^0HU6=5 zlr>VSs9X}Gl{mB*fTo71O2QZh7EQ&>YBAL8)3g!V*!L)%Hq2UDLe@8=?v%y#RW^&( zr}~$`)_)z89SW+HGKBFT?Wy_LUEn16l~XC^dZ3a$_jj}y^Am+aRBTTTa{9Tc2D_Cb zeya0bthY=`)Lv=%NBZR88ldr;ArV&QmjdGv-3HNptH5f}XRZl2`q7zwGZAP0cAu85 zcd2`i70Zl&@T=1}k^YH0&s>G!-o=(z2D%+X8T=3W6&`B4yu!?>hqqX(hF4C6*QUZgI2xyR=3(tbEYEPo8jBK4stC-~MIqM) zVaI8446UVzmPwIKJ(o!*ZuTjBUyv?58|>(;SL@U_4q+5qJf9}=Os9-uiPoL5ct-;* zlf_J{Yc4d79ZVS+rM9zeB#n$Hr-c08Ek1(zPT-3c__94$B3q=mGWEJK-lesjY;cJl}q`&eeg|YP_G;4+pfK_+-;obG2fPMTPN={>p7m**x@i z`P^bhF_)^ z@u2gHh2XVGsht?Y2uB59EUIan_HXB9&bh^xv^_b1rshU})!agspT=z)Sff>tylM+V9K_cZ=q|Nq=wEeO#F+G){2M$L7#4$URbe34&*Yhh$(RrO{v zV-3e37Gb}JHrc3-gh|9;DeKRRAw2k;9>T9j5ZIh5hn}MgJZtITP1ulRM5Ehh$c*Th zIVbro@S$tQto1af_Z1)GUyw6*_+)0DTK^B;-ZQSLbzS>KMMP0iQF=#-N*4(oM5)q2 z={+)=B_SXsAcS&)bI!fi+H0--?tRX?51$zP0*vyE z@m$Y!{qK8-bEE3oV*oMpgnTx3glWq>oh79$KQS#{2&Y0bJ zN-wEd0j^n35@kKK*r1DN(5!Wq{Mf_EJgtJNhf{{@f7BnkK)oM$_f>9>t9TFnu8=ox zK2a^}>a(d~wi#^?R(n=#1}TO#cv5)KIsOu@)!QnbTDde-rFhjlpO1RavUZ#dV=ZKm zmg4M>TOhuX9T(QBuERx*3fK){w4twbB|22>=j^ux^Zktrm`r9so!bld{my);MO*gi z;vOliM3$v*W~JlRL|r#N=7S;D&nodN1tst5W1sM~hdxfb(GZo~y)YL{8^%sXcU{)T z76BUMi|mw(EHdZ<3Gx!Xl^IU_%=W`L)qEjcacWzsc|DayYt7T}thVLy;zJVI&|ML} zB8Fand81IL>)~hWE76VUE!O&>t&h{jVCY^B$u^gOE?&wBYCNd)%^a8pNTa(p7h$AqKu) z7n~#CZKU;#edP9C54J#_KY`e<6&vAy)f%U=Z0{deAF=B1fyW|(d%2YqDt4MK7c&90 zLbW25izNsUngqMx%?C0JP0;zrnzK`u&dY6~pRkr)K)1?~&;6H+(@LWE6=EyKw*vIE zNB6SJCz|8CY_Ii&vb0kIGR$2nm)C=PpqkKd;{Uyub2$5-BdlE{fZ!x+Q)g6 z4!4owFs6=-Q)3zka(2gbuymJ4Y^$e&M%(>f@U2@DI|;9r)SS6%Hy`j1})u2wS&3q;N~f`he&_u)e1}`=2cVG z;g7@~)Xu}Pa4_@<-nFNvE+zB=emOieUo}(AUj*#>STwf+Hm2lhGk;e-)nBCLBzrzL z{19|1B)1VUGu|bu-D(ZDP#w;kDB8JDxuRf{82HVbAK#6W?r(6O-{=>HBi>mXHfHFg zqmN97N2kRVTuXMv<=!an9et_@>UX?;q&cF`BJr^)|Mfwte=oEIavEX@OcD`81!k2B zmiJQyC)_)(QjIKPi)kyZ7nxe{8z7vm3X9$vrLaiT_WO$M8G z02#7Otu^vL)yQPiKTj@Ri%2DljWK^b))E|%cePvd8XN49En+N7IlPZTS3Y{ry6w8B zq*zZME z&^?P15nU(d`1uhDxruy(nXqt31a4h5#{*#@Q|_H}SR>fse(TB?EjAo`Jeydgd7F^i zU;}lAoYZOS0UJwArpQ8oR&3I~kC%(FIGm^X1F;7eZo6MJ60#dqxXryTXcgh9`vx^6 zv$rIA!HJ<_v=BQFQYBLlI15wja|JSA;yR6E9O;Y(#hpz>$}UmuiEGP7Y&UzI^ueN;5RS5<2ib8; zk`fo*b>a&nZgD1=-8oTkf?J3(Nx>=Ali8t?TPH4Cj{)}xT_1K9DWxL7 zUY*TjnL39PxN^wpLnni9`(hRGsRvTJ;loT^1Jt61#&8wlw!-2Z4803QL!@Wlx;$+zb6${E$vDwsA-^ zgfYDtd(UNc_f^Ydzf;BT(&=FEM(IwRZgX`bfr~ov37#l{mAJQs?BN!}r{dVeU_(`ZaFSbw4S)wKsR2oanL!Fq zx}e+&Q43Hxf2s;Fi$=M_o|y;aXU>L6yw7V;7HZr>rs3G}cw1%a5e`R4q88#c*Nt@3 zL^N~?|uW~>UuA5gzsV@_Q zJ_;-Nhc0Q|7rx1*>crbq+dy!3z6iA=3VXKDus*UL%6s2#kY8nO^r{&DEpVdRn+M*J z$yw5WduYe_hpxT3YIw%dnriQz9wEVS>s&D0y5(LdmnEx@TYon0_%`RW#~({BmwVV* za@IfO6cLdN_5adV_UL6|4ytiQFTg85)M?lFk4`sAc;ow{25|Jj_>8~X?8%Amq3Gu8 zWX}d)ID%$Zv5V_;*xU8GnO}`j!9Aa{lV5VBvm)cLg{A(KRkp}uwNS~|(bbnuCh(-I zUU9ok5zcD2k0pAw4o9WKu+Ng1AR0?rAtSGMFDXTXPym3(hW|o3-&%A(!qfJHPdVQC zUdx_zxq_vb8LXt))1VoeKb56opW61JZ!OZTdN@jch8=r^$v&lf(dYPNS7&BwcePe1 z;WPO(P`~uuhb1dC6ar*$mb>2;=95zm3OT=U@|XM*)As0(yQzkeZE_nD_UicGWN?O>p0x=FL-8`lmpGxwc6Q3=^Sx&S?6;&jXUdS{w8uPUc3 z9&kpag#3wT_O-QV#!pwWXHQv?maVC)b6Enl^Uln7mp0S+S8x_Nx^Ty>jp_2Gr0XFx z179y($Hw`bF;bFDHUZEoxvHhZrV*E~JRK$i8Cyq|MxV>Qts((A?G@ar0jd-(ok!46 zrU=JK_!Igq_w*E(85>Rwi$hY;mN$s!{oOqZKQViku6WscL1qK9hu@1s&qZI-sV7$O zp=L}!lfLMjl;}Z#waW!5NKA?n(vwdfwST`fUH<5P9GP7JMc>!0Wn4rg*^M6NDJq__ z>G?8MOBSu0%QQXSds1kP-TQ*?f)!La=ot1c{&8#{1)ll~%h&M%OA(*lJZuqQB@&s9 zU>tv~=KkFDO%Y&~2m;JW(1g_z7jp(MTJC-k%XRV#WT^pyGK=#c!D;g|CUFrJ7 z8R0>(74HlPEpICxxAte-`I!wMV|D%hG2`=5ZoKP7uj`E!H+`zGZU(NYkwNsamp6B8 zy!MuQZALNsp;!gRfJ*NrK2rRhqRjdexU+9VY5EO3I#PGgZZ4m}URzb5HGc8+E>fcJaa>vYqXkR&s!$L!8Ra(TD z^IPG=W#T6+ldSQe??ZBi)E55Df$-3o_%a5~&MC=Is|Vh{E_3h&h0w!IlVqr1mKP3JrUT%sybL{MxswUJOP~W$lRZdcXIo;)e{h_P_3{ap1Afy$hdomlkhDrm`VZhlLzDt$t z=A}+h_>tN)4MQsPS)*aW$zS3Vi~#u9lke!Em*U+RQLE(YONL|i!}Pf7F<5Ho54hV! z^BXTSHiY8ky*$fZQ0-|62h9@=G5IsU4t+)vq9HJC?P&WK#>S0-=Y#I!CI1QLD{xk- z?7fa^K%_9`Bde5^?svfpGj+>tp}cwfeKQp zm3|~#uH4?nc*6})Sk$>PZgDh$u)j{-(EB4ac!npO9Ag#6<#hY;7~RaH<$a9nWbkxH zF3+<=*y66{1RT>p`3O%zQRP;U6#U;M=c@ec`Nn+ zTJxzKlSZgx_2tjB3$M~WOBMaAY11Y368KzYZO50E{}Qov3qlWR!;NnVJs9YP(IbTxzPU$L!*qyvAL!xxNu@>??S2 zqyHXKXis!_k0#O*KU@X!XpbBouaICDCGod`*XF5~%lm}2Y=7QkcfIDbp97Z4+41tx zpo)kALe{;*geg~V?34xy49W2i9uu!*uMIrI)K;pZRR;t7TJxvmk}B5eEo?()*xr1n zjxf3DjSmnZp>>nmLSdKdULWxNDq*R^ys-w`N&pY1SK+xMLhjH!*lrv)Xa^uL7WD0i zD$H+X`Gz~=2Yhf{%>7>D8x@}ZG%xz^?a~f_x1{=SYRza1kTi;?YsU>R!Ou-94P%I5 zkn;n4dD_c^eze$C)P&F>@$Twv#@M>s$b`pqpW1)*>AVI<7sXd$##i`2gyo9Oi?Q8U zAnaWFhx0O1Q*u#hku9@MjY0`l-R;x^kt$!rRQ@;G>m&gPyNTfNQFb0`{g`(HdQr?~ zpo(|kbBRHE;T_13l8V6cu^=+PF-$0T%3dK(^{~A_)Y;RFk?eB2H5glVvyJUjI$rAi z+b`1Zccu%Q)LDp#O4Gw{o~LNn&-I!5mA|6cw=aJGQG%g-{>4C8uo3>n|BWqcLO-D6 za4?>KRAm*AH#8C@_zQ*b*}bu3Z|(ML%R!Ij^q6tgR zD-&^U9%Af%E;+2~mG9J@UKlYo9+ zyocwj4VpWTP`QSFh7*3IyuvD$j2x)r1-r))4}2#EVE@)Vl%>B_S`Z)@c7#C5ev75E zA0&9T*Ta)8={61bxAs$bfUFLr=YsdnEkm&IUmBA5x~Z4hB~ia~4Y|_DJ`hqn_Z@TX{lSoKKc$3;ha%Dlp^40?R zxN*e^iN#BeLlC$?^n7fvF#puCr+cSr*UU#n2pQ;?J!zeZJ29mjqH=vA8E@A3WJ-r| zjR{~cvM%-OVU%l7GY!$G%hAo0E7UKU^LFG7ac6J$?a-+Wj8|IIR8NsH zBF~$X3z}|q=U_}$I!$oBB=J5@(Z87_!tS>q%cyxM&CmloWUy%l7lP2I`riramg}IU z`c%9INFMB1E${VR&k=8js_%oXjX`Ig4)u&o>Tk#lD5bO}tlQ96L+;}xPk-NhLd=Df z*}V~dp9_B_rBWy7Iyn}3k6zY@gHj|v2D<`6x=jXNVV=Il+Rhm-guJh2H|ilo6n*x`k_M)|sauMF*)FVPW>j@TVB8TC_y3*X(s z>JYZk;$MLnZG3_N*Ho16*5RZ3G3D6q(YtwEb(ps5g)Dk_mL#tEo>QCiL3Qb_&R3wH z3_qO`Lk9M_+7z8O=2z;@Xth5hepX1>#TPYFJdaLV=2V@vn| z>cRQamN1&TDBr7)@7|9{CQEab2vnM3Z6lNJCsWwF_zB}cyk2zV1f=%&alY6jV&FOV z0Zk0{-;Na}%3%k=~M}_cl_PN23BUO$`J{fGO zy`Ar~z&NKpvQ4(-BW0xM)4VfGa9UYxniY?Rl5>o-kgm?RPkyPqB@?M$dc}%eZy1AI zan_3)IpqG!E}OCRg5Em>zH*r0JKya_np<~2cQY9~*hqSsf^5jz=07};SDn=6SeRgM zA?kdxzj$j4gx1M)rNik~BV&6+J!nx3wG9ca>~Pd##X0QZ-vE?N7nR#+#Fp26=VO5y z+PU-a=AyqoZA;QtDS$~uxz=9N?+uen(*Bso_wI$>964$=k_Cu91)#(3B;bmA9)u6Y z(gDI#>S+m%)|JDLI=XV@w$F05$&NBO*x;Wf=XK0cr0C6C=hI&LP15%^toZnFnOWdm z8ClVQSN*5^T5iRyaX0*tiI>+^D4o?^4*eTj$Sm7HjS+DSu!vJ1%iL2!%+&r^HKKGb z7FIfi!?}D6uD*kC8`?7LGhO&2f9zk7BTQ{@I#<>+We9{k``=&3Ju7rub%z$3|lr zJ)pg5_}nTo)c$Q1?KQygl)s1%4c+d$Z#Po1u3VGjNkEWD{>v$KNa4oX%Y8%P_|5o9 zk2|m;$DOOILu_K~V76MW*TCli+p$%}Q>>aCAVk3cs7LF7WAa1p8USK@o^8>ZJ|jvQ zUCpJtxVlI?OBfJDZ->7e^b}Ii z|1d+x@A-2#TykQx;F3RKmb`t@zY5fH=^`!(L8^LwFA!*>u-`xb9gh>(u>Y;CQPNBP z(+gjj_O{UEXIC15SDtY1pe`m?@kt^Wj`!alUEP{cedo0vvGa?l&EnSau{WMcj;@22 z7igOReeZmcNX^u@R>2sQ&hCn0G6|taNeK5LqQ7}c+(g)rpVhl$x3N7q$p7}1CNc^8 zxPmc}{h$MO2u|`obq8Rs2ggCi%Gb8|b=rlV)~}2Wh(K)c4ezrO;l{^22mxKKT*wqC zdknRDAU_)!3$+=uD5;WrWrp=!6l1AUiitSjcO`T+on#6EII10vFr2NJqxWm(^gzk0&kAiW_{UYN#%L1PPljnij*A1g-VB3pu zw;NDSPs#JJF#&I+dv^LNHKw z0mhs#`Td#Jev?77KWBd+q&1W%q*&E`Z>nII7~f3PeA)De{fpNbM_OS9|(4N*ZGJUyAxSdk^k+ zCj>|OsApn8Wv%R(5hL3cNB&vLbbMtxH8elzm@#2|#LuEFgx*x1U+@Q7|`Z`Ju{c!hg2zT}S8>2_Z zGUJ2uA6)OP&u51d4tDN@vN{t0HG3-hD3BfUn03h#qXrr?mvF`x@eNIl7PQVDIZNYv zq{m`0kDH9`1@%hT};3N7fjIv`{h|!4uF~+^j?){sEdbxwirbq?-BN4{s zx(PUk9}gkOkq&oLXcKmx7ItU2%p16)m%FLR)Ixxj_Qv~< zc{7biT+7U=#gQ|u;5!hs$JNTEPXmQVggz!V#xM{FS)tV0`pes9`FWC!V7->&N@U*x;k!o2dC1`>{5h1-(=&1=ZqAQM(PSpUqX?XaIQbpwN(nNqNnbI)^ z$r89nUc1JR6P#W*t$cofc$w+i;?p!|?ZZChS>w!Fdx7YyK)MCxfV z7#hRu2YsaIBlY=N|Gk4;9V5EqhoU+b#%$*g)}>!d>7|AGDP?GR#j)i`Z?gzd>7*pXECKMuKli~fqvny($ zpwT`D2u$bF4fx0e25Bp@8X@mXgO{~{-zDT{+0mDY1 zr)3;)XkPkzX^_7~rNIqUIcIZ(ra>t168Bvw`$iGlA^xCq4*_nIN{)GTI*nYvc`o7U z?%wJp?xM61iuN4aQ208yJ=%rd*nDpfNg15W+C@!5M|q|~96V=KM9}KyVOzu;D z%%P^{8pd?xx-yfodT{mg#XWoZuNfTi=yHBxl@GJcNbJ?}rm1`y@~cKpKI#O1iKk^U ziNE2vy^8z%VOq;_;oWs#?=K*-a-E+>dvtP=HZ?fKLmk@sDt&a#`g{i;_VbhS7Mm)- zf@$y+)uXjZCL>$y<#Fa*yno7%&ZApH^uelu5`s4VDI& zNz&KMx+gT%IYuwpWv*QR7{N4N*mlzMiu8bDiO_%$Iask^EUF@mGDE?J`(zjcsr-1S;2TJL4$5MxVsyS6DRC2HF0HYnVe$YF-&j#s>Qq z(tS@UMyb$nqN>qFyh@}YtwfRXdBfWP!aUARtKXyl?17Yz(OHL+YnuVe$jB>u3MD_C zOI691uo}-}3-z$^sj#hCDnWAf%_O7sN6Q6Q+k>mfw4#Ipo6f09!=z>}JDZp5o5Iv%F1 z3W^%d|Gu_Q7vD0k+!gMS$zks?nCMWrwv$TnoLlE8`(6oul|9m7g)BbwW#Z^W&cq6P-jPPzQ{L*btxn<#=iGm+jJky^-p^yOx9e!W z%(X$U@+^vaWcf4kit|2j-CoL5DUigqPMODAuWE})kI!8@Jl-^^&A>ug#c?r$D z${_qkPP8&`(Ea_N-v6XPHRP1qEN9a%d-$QLZl;aF*tA%K<5;0b$*0JBK2eb$f~_}83Dc|*R{!7U!a4~2?%b!oL%P-I6Eq{Z zB6PAf(Jy_gL1Fq`IFbz*N7YKYN?WjTW0yq5EO=dinQ;Q>cUQQ)NAPt4BPJ%RRCX;g z!6Gc3(7;j1WBKR~eJrrW11oqlM0N>qARM2;$%cyAG$M2Qo886993?*yDv{pY&7|VX z8~nWLYg+MTD+ZQWMj@aDD!)vJuH8%x2OqHB;KO&D>gS_1a?`Z^bPAT;;Lq0@UkU;} zmej)3IfrUkY5~*QD}?#p&de%5eWP{G?rFwo!=k~wH-E5q_z@k0rfdP?)Zc%4z5o5b z+*lB>?Xm*OW!_Vm-!8sNDc6qZ8Q{l}xZr;i9GOg;a47!^9RZl8(gOZVbOhR_0g?Cg z9qXa|bJ|HwOdxCFND8%c08w8}brBPNJKH7d$v{kG`{q~cZKxTjmVl2Wn18FL^aqeL z{9%N*r_7|?EcFPodcmDSN(y`rZTNh?*vABTApAaVnN4QKxRL!qg@7$f9Ytt~==5Y@)RgdYu(I^FbcYCJlb?)u>uX4dNm zUN|mxXgm5ayQ)VhYm;Q*mJFLLE99&&0{}<_@PAnjn@ZBAbnaCZ`0!2R_kegm7G*HVmuuUUwQ;~G2gu~=c3jYhx zgV4Kf*-kw8d2Aoq8>2){z2IN7VEMKsOeeF?RH^Bp>|}S(_0Dp3XxEPIUea|NH+>fd zx;ZPNFF&GpC00p4ATG_gMZ`eGP;E4~OPpKEg^}|Y9q(SsSvi&9qd6i|x?dq9{Nav# zk(i_LCy1|H*J+IJaFH?47BIQF8SIiyz;KpVC+$=n=IVe$?(#olFrnGse|fBz^`!N! zkVinTp5FkYSBS+{PeI8h(a8_BvlU8yH9sv?%v3Xay8gq>fX(AYQ*msT_gZ(2ar%$P za}o*4xS9AzM^E}fYd8Uy@6WAR(7ZVI#mGfWc1(Gg`Hbe`ZTu@)=S072oD5Gw>lYG> z{azcB(2hKmY9UEasL_NVR&%n7#2dWpT3@Exwb@jh9bdbR3fSI6%a9X&z3J$_xaPId zsBU02gp)TOz)V!gRDqR7WlOx|%3sU;9lGlfS+T-Z)bnZ8K=yB5zlPk9G2L0YNJ85 zq+Hte_WDUg;&g1U{xcG=eLQ3BNa!GA&0#SvUs5%ZN0VDaw{j(zGOh?K>e7gu3YC=I zb2p8o35nlR;?3c}|e=Gs9>z2(iFiktbpFDbob`6nO3L>Dr~v zyZS$WS>SZ?4nr%4Ry}nZdm#`-PN!8J6|)gA?v!!xi9X z;lu3v%R6~Tv{Nf9149+_s*p=WK>k(FRYPZjLv+KnO z?O&*@qhE7XFYNZj9Lu?^0`fAO40b=G%v4Mivsp|LQFyMCsN@cj8hFly-g2Am%!gCu z!8(ylBifT3p*$PTHI2~ZF1|S)e)gg#3CG~?)cEI(xG4VaabfLJ}i)BwER(M^DsnNP>DWNW*6>$$+_usWB`c72x0RO}e(9zxE z6M2)Egoi;EGq(QTv7o;7)^2>~{d|8CotA?pA%Ct^`FZjP-PL0qOBKe|_r-!s{?@3W zq}(6gfi>wx|NJC3xI^c8kUDi^xBTqZ!jRy>=HKwvw;!09<#QO*>As)8F_wr(Ht7GK z;Nk-@@ivp+mxTrHBNJ#vq3ru zEEC1O<6G@(@?moALznNJHYJXu%wOvCyO+fB%5YUqOVJEGIL(u~ZGQNZw#?|qqNOfD z^h|y3O0Yt|XTV?0^*)6MhDT{ki6#v9M`rS`j_j{axHere6^~2NKz7+R&j#>L*^SHEXVoWq<03U1s{v%|4xb} zn4>}m_OGTCo`~&L^3XmnAI4eRx6srL8Pey}W#gNZ@l5*=9iO2I3dbl{)z5SqZTrsf zD|Ic(=>f3sA5ZSLs?^}@BTsEx>Bj}XB|*Lq2_*o4Q-RLiyK2tF43_g|7S5=mhgtmoUFlLX2CMC3bu;>=9rWxLH1^c zbn4|Nv)fV-d(E{h$lcx{j*aF-OH5`GX+>z5kkjhw7BX^rQTWpHDENdrL%6XY^e}|i zzF})FDlgc~R}+G(F^yXqEj~59Rppo~kFVP00dm{T9;MejGJ}?DFVwYMo)@X^)k{s< zLzJ-m&R1I3BEACK*v$MCB-bVg^*XUOZh{quul^D}D{Z(YPkV#qj=2G9M`eo#EcGdxGN(lVP zYVCB!vM;5F24+^Gb)>dpRR$Rys@EohrB?8$A9*4>g|T%#UD10zF;#{A6Q=+Q@o-HF?djJi{Do3z$eDQQ0B!4M5Bib29Yd-R z#yd;q(fb{Bi~Dmh`&h_-EwN}J&%WKLmHgx?wap5JKd7jmp154&%2^74Dp7DG+Pt8M zTM9I%O2{1u{$|8bbiCiSN14acyM-n2q~#_0pQsw?*ZAB#iep({N9Go+N`FE<>_g}x zY2wN*QX95@*NKN%Ygh<0W=z1?m9+6b@aHfOrOC8k?HY9?7QTy-x}hSo%}FBud^q$g zXdLKnt{f%|^;+_bcAC?o-+5tWY2V*-HoVvdbsJf7HF9NR@-BoOPd}w=&*o_-FJ4>$ zv@ewuDJxzeTO4p4$6_EshHDlL%&Pk&)}$MwK0kXN2xTg@Vbj(HZh<-MUwmzyF>c$o zHuj4G2qj2lLR%|OUZuZa*LNE%?>KehEK1<}l+BrQfzLnGR-whh6YlLzul4kO+C}+l;k4jKnW`TDl6<{E+M&Qp)}Ko3 z*B(bUVDR<$YB8muj>;ASQ%V|Pfl^EI-Y3!Nw|D|DS7VQt9Lva)@pFO+-B)!SOOXrQ z;SQf6=O!BUL@y=MQEU-|4GK1z9KT_EFZWE{qbV_`3wfpcDT#-}Di+35J9#@l2u1>m zF5`cwzi&*sEAj+N?JqJQLHTm{MR`P5!|24SJcIANbVJPS_BWkjqsYqPH1U&t;Ri^P zPRyV&xe}N1WI<1DF~3!6*05DTX2F@V)(&8pqQ{_Q=xD~shm$$U%L-gvR(gYtF;WX> zh0x5OUk1jOIVU}Y^S&HB?I`~kUU&Q?Xr=DKC}OttO=mohImxH*&;BUXY7r<{ol(Qr#cTy_c7t2s^=Z)$}yq##$_{L#M!9S3)Y|XANSI(D7w@HYOk&*9tfO>-7W-87HQhpB>deu+#86;LkSjE9 zt>+7nOoZ$8aI`2R{lE<7_Ed6B!GbS(_A7Ycw&FPM9(>@NxELdBXyS-|`Kn!U9bI-G z;T^cpS)D1g10)yu5?Og+X*BVz%BM^pZDu>5_p#F6H~AT>1gI22dS&|gTMhZQ>7Zv6P}!>kM^ANCfvR?CPi^LH zet=|{V%ES+|0Xgse8xr z?&S46p8UYBu2ms7UNKEAXDhJ0TG+u9`YQcHpAhn8`GqJr2Heb76@G)Q$ zs7UxGioB13Jn|5DxNl>&qOsqFdI*1Af4jVFEXrR;Pp3^+({ui4CjSUbx-+q=lt^`7 zIXrqZK$g(ms;hx_KOfnj7wIXchse}FEArGtJs%fwhVJDkobpC)Xk(bYhS7(D`vn_= z*Z~-$o7|+?4Of$#eQ8AW^N6)!MS>Lewy{I5MzX>uf90bmK!$hXCVw1{R)~l{ zen!QwsLPA(2`|yn9en}_PFJx-Dsxy+_hMM z&QH^`Y}{TlMG&msb*#Z9p?I80A7g@t1s&c2P3E4BR?DQute(&q%-Ic2`A^Wxz*)7e zDl7UAPBa{gBOE08WKZ>MG=qlWPpccg&}IJopq__^zyB(c**?7Do!Kb@TDm7Lm>b!B z$b;~I(!!iT2^(r~_bGPn6Xiw)a>-Vm2IBZ^HkPm@`>&Xe_iL45gf8rjW3Tk1_rhr+ zfjIs?TwDo4a>_eAA5Dtt*Mw2^XGUeI%p9!gj3gI|@Mt2`CSh+lramAejWWf^y#0?S z9eSpspA!&u9!0uq@jl9>`hSn#{u@?kYRwxhcMb~eY~KE>s_dVvL87+_Np!{z&Lp7c zv2^rn!E;?Xf~c}8K$t$UNP*0OdJc!6rWC33u?COR|z|MooY8ndBr~E;kHljtSTEErn+vn{L&j{2m+t=!3_6wj!{Ea;3v)%t06Odb zEm+%l`&LqBVMbOkQuSpJRf?&x`_X8dxNfCoOTxQ%Y6f4~Kdb)kd{Qb%(7c}HuRWA_ zzb!1e?)q@}jp%LRpZvwz&Kh^_cagNNP0<_1Ct^}KImUn(K6L{1>viAzt@+-Wkl!psgU1Pm7#B;jVZs)2!EqLE_Vk$rQ&veQP9%Qn8{SLfd_iG zRlH*Zd6k}Ei++s9x@E7+TqT_I(ko6C!NUGkUWH8nT{u5hEdS$VgVBKn#QvR7$h*b^6@*Ti_h!=luYe1#90+PL~PET_s=glyY zb5x-~n}e_ZUE+m(8kB*wb|W+KKKC`%N3v@x38iUZ^{aOiI_@Aa6nDpUQ{u@*28{|Axi^UA*Z0 zE`}_$kouQSio!l%nDe>);vOs6ev1epkGroqj3SS8eA(~~1Lxc~-$Qb}O0kRDnKN)F z>~Igm3bkzT9DYw+xLNY@VK@bP)4s^d(o)hn@;7M%*rV$Ad7~)W_%D#ysb6y42GWwP z6yN+K{;rINas`in3H`11Y-#>vV$F|JXGHAI2L_=ASPKy`|u^^|FbJu*|3!gQVQ!az=l(IRh8;cskK$@J*t+9RFYbX5JH&GrX-|JQ zyoZN0EyluJe{2pcRUU4B24_0gbyYV>XO~KEIY&QMq3r`@&vdn>|6(muBB#=|Td*5g z64VZoFa~4mo};xw&)ZT`UtDQ<6z5hEGKcr~()d0r{QAHgznZ2%e#-gT&p52^(>}$) zkNZ--i1a-=`^){Kp(}Omk^k%iSxpp?|2@F^fMM}JS37fzNS6NVk`U-KUdCF3Uc%lG zQL}hwMu=4LA(tJh*3G-`A%}0?|;~E_`SZ& zFGCW?zZyRF;#I5XyaRn`=Ff$@WVA$;G`y0?+;Y>rUm|%Gsd|K}d5$EpJtC@Ulw{4 zUcRkAnBJK|9PDgzon}AKBj7vTq`B~ZqkT1YN-K7cs0N7R^SV^beb;xU+*q2>D(vkK zalz)BXz+as4>m#}NE_a@RHZGVuKhwd|CebhBpU*AUQC?cmXcGl18d2wZ9TJ|O_is3 z%oAIx8OyC7E>q0O^d0{iY4zWqn2?{}W{u{CiyC4&Eva|!qNNk)G8-5B0tbXPid@LO zs>%#`DX8?f7_JcpisEw0JwkPem;Xi+#$ZuzI#DMb16>&1r|hj0;ngc2r-((q z_w;k7`~T~@;H8TfX2^E_>WNMQ7T!{8mKn0#ID3X zq96Ckd7X&^6WfUEql5s=V&$R=taJJiUlnjwB| zPFA5+WyJ0^?3#&-hnM=}fw=p~C=q;G))7dwD7IxZklll?5~%I--O)U-o6vW=RNipy zM!NuFgX$pto8Ci&s@GY>WF97Xl4c$=+rrh0DL?$9kc6!AH?xYY6CczcUG~j>^9Q#Q zf%JLwn_Gd){wHo_Qatk!W@lj48tCi0Fm7ScntwPHky!s*kAw>`tC6XYf1atosr4v1 zjddfpCFspQkU6|5Og`kJ^cC51lazz~={ z6(hNl?T<6qqd`F`rt{yS8 zP?8+3(CQgg1YmNst;{5yjo+N(s{jw4C|E!KHU(i2w`J-e|3zu+@+ptU-`ANOJ$&Q` zAkaqy6qkz)Wm{3sy6~YD@jJQC4!=s8guGaqe)nEXeacq{)0tQ}edxsa>;-bzp~xk& zE6E*J)S48kOqWWyWKWa8?h_5p?-BMhkp^ooH4u(IToIGW(<8ImDH?N{o%naPISkX! zS9~aG3zB9x$=q5hxle=WtGBX9m4yo#)R`(+^!>n&}dtP@qgT38gUD(v{d zVIjsA@Ul$=!VoY+v8hc>clh2J)_20Qd9&< zs3N_pfJiUW2}tjuiGX0JiV~_c0j2jUAfWW#15!h%5(o$(FejjQ{Jwdod^7X&&99u~ zB|Z+ogs%Z{lE43j^*{aUbd$Ma zB7J)J*Rx+c)04yhpMaECA{?4h7uNA*yLV^p*Kkyx2YaB3W=Brp^?7-CD|rPJrtV)_ zNCYUn1IAu!+VSET^ zljT-Sd*Prt38{swd=+fyuQUXCG-Pklb;Ih4jy$PytX*sVh z1*pyUi=FZ>VW@sA*BP0)n+gYMS=Nfz%bgfsg6VgMVh-^*(}UIWnKV@;UVr=b(*Pu( z1><}ZAObkO|8~!LxenR^6%L+AX4>%=A1cfm@Y|eia7f zKUQl#uJeNwZVKrojfVgCjc7we2dCTcjGO~v=3H@OW~$4|e^CMi=&mP1#qBq%<*toI z#QKyy>V9+udHXcheYo)TwCSJo)oDgnIZ6p} z-w3fyW_WOAD&$)2#G4LxvB0^gLo@6aOD(-}TgIA79)HM!$Eyw}Nwi_g3RlmhK?Ogz zdzU4_0q7a%NwdGxSmWD?1p*DLaw}kKN86%Wx#DB#wyn)JEn>9>0w zfTp%%>mL=g%Hi)Q2zKdT9(D78_JE_v{xd5j?LV~mUS-!edEeo`2VMA-#ZYlM%;fjep!#3vUl{bo{1MT|u%%$O2TlmEcUO2Z zP#)t9^IyB>&u>HQu5lRfG&ScX-%y?0As)1RYN};(Q6Es5BY;bjpC%?H$Fw54Qa|S8 zB2^09r`6c!h%sew^0jt*dr4$l-sSIzx`PAMytr zZ_0$5`bAra|0Ju#J1+fqsfsVYdG^dQNY)bqkt-3AAlz2nqN$2<%pt+W{F;W~N8QXM z<%IAqg^}V`?W~Xp5i3Lwb9`I`3#6F-8$HA#C$saOYav|g=g%Fitt2ND;5j5(I~$&u zeZ$gG01ctO!8eT%E&yZ%bN$BQ#`JMTB!F6sy{5VmwF^>b_k|Y;ck!2*JW^5WLV}LlQFqm9*MX$A}DLda?9M-{x(`}Neh_=|C#WTALci! zON#pj<55j1QtfjuW1D<~CoWQp(%yWfwti)H;7R`x<;d(FGzwdrm)|u}1(aoAO2X8z zp2b=4lp`l5!# z$5(zps&6VZ=7Kbzxtfa;IK!RIZlt#=D)DuvoEPh7j3t9 zS5|Gkd|Wqoq0qCH&xr7rW=}gz>_F{KY=Cs+I(~c|^h+|E`VrlEA;O=^(}CVnUK=6$ zt=vz}kOGoEJ*!XWkM|?m6saKbJXqUA39b|ie|2xN5f*8EEHhCsC zxGLtsYQ(s437~uR`AwOjh|1C@>PC-o*3SN>RPTryTf%bY`m7+=>X356r?xBF zBj9?pT|#`st2l_xFq(p9cMMtXK-N6Z7N{&uD2I$O87?~ssr3u?C%gb zw}To%cp`(qgF*hGJvQ|0ux>}kyr+YJSG|XrKO?gc#2GiskP+_5>M+ZQ^-bQsFcu!~ zDrbKW`E66~jrv1LKj&(>SY^SzU~k{?BX9?-usqefi;k{#KBCUL9rBHeInpq4Y_-VaT((&C{-%$BL^m>J8DMhq%qG zm~*vvfq5v~Z-}O3sS!9ce^<7>pGW27;3gea&2iydHo^|jrP0ko)|@10F;w5mf-}EK z?5s?1Uc{(BQvG2$u5dly!vTmvC>RC1e0)=>bt)q^V2L|ax2V-IGGA6Zhmb zAVK^3$HdYv(ySgqv%+p~-h$>2&5DKz(wWPeREBEq*t>kX(n-DQCJ&4a4y60ur@B}0${@O2%fw&|>WalhaU;Jesb2Isbv8lI2GwrLyU-do6>@MGbF{?SsK@K{u2@Bgh(=Y0`deJUUz z#5t5iKWtP)sWSNx-3t4Z5|$Ym?WSz!*N>YmE>qQiV#PTEFXbMAD{tG6azFUk^95)x z3O-I{z0*ve+xSEpRQjz0(P*7mak)%;T?JBp=fgIGttpB?zV!sg3r}ikrIJ5YR=e<+ z<4wu&oqOv`l`}Bg$&n|u8!~+$ixH>-AgK@28@?k*NGDKQiZ|C4V?tsH%?$RHKPBUQ zXfA2Ub5iOg;9h$Qm%3GG|Dfa83d3Y(Tr3utez9=`K6u{afbHv*Z4k*EbCcev=2=V4 zLVmQRoBzv(R1>97_nR>{!K+zEt-tGP&RSo}mNbCxGO67!}8h zGJHBZ(fj3$@zR;CwreBm-Ym~2>dpk3&-cnU2zDP7T11Tt(&*=Tg~e~L(5}WGUa*k3 zi7?w{OnwB+1q}ckfNIp5`qHBc87I(s#WP$kh;7pCU&4xlvt_*33w6ShFErpUw4~15 z`%Uz5u#ddrCfoPd$^mv}=@rk{%^sUGMtR$kSFS&v;x-3FV&@;7fM*4{5~KtOq*7%+ zKRC zX7Bl5K`*l2FeVgyomvh;Y$=v0wU?66wO`*9k_HVK`%*^$0hID@RIfe}M6|eM?(c1c zu=?KnOQvOD$P~qMA_*HAD8-ER5$*%~=SVgM;xbpiz5zVxMW5OW`mV z6QB!q`T-$?BdOJBBKzrF3=G6U1-8BF6BSVI z^>Eff+eF%+w5hRJFHYm(rzOC7#*nja4GN@|i>%Q{~}5mLN8`Rhs}?;dJ4 zI8B06t(n)S=279Vw5^TDU#QS7ap<*^qiZ+Eve!2HcRhT$6KOB0?p_*DopfK*T>YSz z<1FC4fAGowiHCz98cOJoOC=)LI5b5oFxM{L)qik79S1jzF~5GHC#hk-MnodV1}KbF zk+YIRdZ*!0t(`)Z@!czdgPKd*D{)>$=!ZR72q&j)K-VeF*{ED19PB2RUd|%s+U4)dB$p3IT7Ju$qu}rAU$9`jCWanIvul!dHrbIc%*n| z)xF2kV_J@y)xh8Qz?}G9;$XCMq+!5077Z{fbepk*&BF~-u@KSS_*n8bc{wH*hH87M zt-`l*eZZr-#J7u79>VDssaq<#mib5nU`z{wrM!J_^PUZm=X*lmq_6(1sjX~_kIW|m;hlT5Ix95N;*v4KlQy1q5pc6j3jFcG8leX zu`!pOXf3$^{PXbj&A)2B_vLHNLu;H?J=z|LEQ1ZFb)3~@p2;S7N9?LlJRYFpPFu_G zK;?EZf_r9R=@t9Q_k13VgUc9EGFN0CtWK&);FX*0-uZ20A22vS>;-!Q>` z&*jJD(qrcyrS-Q3w=)2a%H+d$6)M#g7;_8E3v8`<2aO~3HJm6oJlMDSOwK^9!`n}+ ze8GWp=s+qqRsS1{5#cQ?M~* z^oY$daG%YzQ#lRRY24%GYpTg-IMXMbl7h{Lgy|dKuS-U{NG)0Q?J5Z|>h5#iq_c>| z4dI&I19H;9xcSL*cU97pGH!DzAu49(G`W&&de4L{Qn5OXKc0W&as|lFoR?r5dH0~; z2nJ11j(q&lH%~oTVAA32rO6^#hoA2?@oVgYyrbo4g>rSo$E|@`9Sb{DX2EDObFqjs zO0B@a24U;M)$wt14E$r@iUrc?w$aL4frJT~&efeCo^NRgL;Tz;8R_rSH%ryu)Q;Qb zTwbJn4i74P|EW2*&w261InV->$-u{bLzCvYGmo>VH$cd;I?(d4&J>*Xtl6?fNM*ke zc{-TkS8kWhvRx$Jo3)uX65MQ!%-x;Hj?%1->Wp-ej+St|wfMAgWQmdsDi6KTIwBKo zd62eUHDB#(d4s;ms@k#8rM#GOTNbz*O?hTEP!*!Ke!S-UXYiGD&hNW+J)!PD-Pg6$ zRlj_DTJ8M;^E|DP`l7-WZq)e;&VCH~vDoX}99^h`G>a%k7c(tvI`l}>)T>zPNzO%C z{{pi`>|0Mjo>mZb|FxT!+q*u~ms!-YlFDlSq0_L$^&FQ&r18bSgF}`TUL<~W65X(c zzQ&T;iM!vJcwr~yGM#C^Jt4H{%RC}Goaph;J#;l~4UyVAzP=FU7Q=9e&Bq)t9ckY{ zW{B-tVMGU;(zk;FEN(?+%bwjsL zEK5Z!AWIji7?M%E&qC_-d|Mz%O^~6M{ zF5RgXrTCD&@UZ3~39eJ$yv*Le!Is3?=n)04yB-kwWJ)=W2lsJIf- z+tpctv-cg9y2UlG`^uC(v|%af&ezR0x|Qd7pFe{!v)+Qe;bEn0)RaTsVJW5WVW`W5 z&XX}O>>(#rq6k@Jx$L4kJeU>0fe$ghibhQ?&)`n&RIPhSss5qiQS;U?)N5V+WXdft_ePz4&E6{X(C_17 zxNl?!pZTD&LeI{il#U~bzr_c>iBgx)M1TKvtK_4(w~(2-@0UFq(89?^5ZXnzsh;a6 z56f)DK{~B79>aS15ezZ&#>Ka+?KX$?wcBr2lJV(^ZC62n}usi(hv+ov1pCn3tNleT@2j7sC z^!o~1@;@l@6%B9;yVDBhNfdGGVoA&xM|%nMT2vLt-jc^4iNEzOTGFt;7kg93wq!mS z`f`)!*QGRNsaqNuKp>uOHP-i>6l|!`>+WM#HkPnAG_0u4Cc8r2Y~uH~SkD?uy7M z>`JMtP{2W~T#2b*7h+Y1=b88(UEJu;UmWd{* zbPgy=fcLQEWN~iarz#bex~+!WW6!jqAzea6Icq-SvZXy4Pax7PVL*3FS~_iK>?m>hb}K7uI7whIW-IfZSR%xEsIF~o z+;yTft^zu#TTf1@W4Wnao6R%?oSyZqlwv5&Mo!D1ab`H9>VOB^j7sS?m8tSsoPD$S#4qNeFg7R zBp{Xh`|cZOCeCE8Pp-kWA0Lc<>5(}Y$lXV_qFho}U#)8791tcq^y={8DiN2xy>!vE z=r}o4QRvwOmGQk^-yR4$u+1}b2%Kj!i?ch!%Ub0F0k}Jz1@`0g%jz+X) z5Ro7)#YM-&NlQjP0w6#(9XaPm4M|$UwCAb28@yq%Kn?F;SDY$`{g-t8r8ul2xk2D$)4&b9Z-m{OUrHxarBrY|H zd7|`}y>gDO8}9c>hzmrxeqX+vSi6sOT{*@-sBvDA0smM&zmAZSr&zMGS^0Y2@bHas zHh1#p-Q+H3^WqW7L<~Nq?EW+>|HO}_7M0G%j1?)dXZyssgd2L)yAxv7SE#)x2+O;#r5l+`pCB0%NTfNm!iT+hOw5pE@FI>I?*)r_p+BlOv=@Eon4i;kgg_i_D2GkQyJS8|4~x(#*cqI%bvQGH_!U=IPu4mdBe zOPiP9vT{`8^#+E~O*d=pCE!qjb!XcITqO%;YvP1702ltI&NN+ zt*pR`5LQ5FfbCIvEGdb4@w|HTPl?N*T;}xx)(~0F{qg-D#FW+jq1a{oQ|2Q`n);0Y z!K8KXmHwS{uf*yt`-5+fW;AA!r!^GzQWY9KFpm8NxnAC$mVq=q2KNQg^+A~HwS}|I~Hh8+(kSd*`4I!|lajSl{(omb(Ely#Vox9zv ziRt?-#_x}L)>954J0YCz(xH>>&yz}-vfEdbDl*zM*hk&lJ3^pU_@a*wGH3M4&F7LZ zdgHIHWjAwHMB1;opNAJB-S;_d3VL)A)vlE@!fLxMl3yxXoM)NddAk~G`!^q$?KdCT zt%u*5Kflr5;gWb4hf!}-8PuRqPTs-o?8~NBYS4L3l9ADg524^$lPgwH9tH>ItC;C3 zLM$kaTC=-RATu}+CKD)>LKNt9cQLzD)Hs3rwG_ac9T(xP_F!^+Ym_-Ii?cRextUly zTfbx8>kTnf(duU!61z=gV4AUkqROc^Mf8S=u#U6ys+AJ-5+YREX3v(L_LyI#NDC z^CF<=gB|cmhxF$!8J9M5a7@u&jRZCtQVhlB?KIea1|QkNdd`HJceU%}qU#t=*><+H zcG`362t-DPXdME!Fz)!iP_pNR#<}D@3|sw=+wEQ`km25umF8v$s=r?W-d|ma?svpT ziGg7|4{8pOy_wSyf*Io^QT;>dq065SVR}{Q`JG4$yb#pF*r-9?@(N-+=6b z)Xdv6c8kp1myC9nm}ba`<(O1-Se<2UHD3fR+9eVaE2DcJqr zI(Q$tv&A=N8RI3D{E6}G+%90qVSbtPBZ|F2et!(-PQ3q?u;i}ba=3jE9{9ZvRuw0#J@s5;(nwJZY@VVWE5A4?t-4G?&nHfIStx?4!T$-zRre`0GzdaI}5X^|bG}NkVDW1`lI6%c{y0UAA3ZfBZPF#`-;A zwis>wgmNXeVq#DzX%g7#^jQu8&L0s`V65xf_a?lnwe3q94fgEnak0cysSfo)7S_4> z!BAa_d5g;*R3>aSTAn!&b}onqr~dTmehD-rbL!Ur_VOw2oVdHcgWjyC*Z3XmcGLX# zkN@3an*SaoGXI_!r2k$F{y(pt7q$xvtL9$n=?NH0|C4rP)#_?wXqR$5GPh9&jLk_P zje~L}&FrY$<;d_a&_*cTKiNf1ir1JzH&8Sc`Tajnbv|;7Gm+-v_$N#S!1gI^kX3U^eYk-$+*e}QUnspr#5E( zliL|W-6g^cX}V0*v|c%LlEeVM)>IJQ36O^W3aNpHsQ;_U)ZZQQA2YS9OrW**to3Zz zc=t7DG!Pa^=?Lr3HJ$WvAE>~V6ho1K9hYq%D%nfD}5 zjP4K+vMfO}-|+HyQlHPiX)x(w%{+m)!Mz1{Sf{TbVQ0fF zBwx-Cyw1oOs4UKST&XmXw^Ax%&AeKnh?twIzLgS}P?8Z}0O?P-cZZ_Hwat0{w(h=t zs%}tefg$w2 zpybOqokH&4bae26uOvZXtSQYH8DrP!&w(FVx?my~E>-!yZ+PfDg?&^(g3``x^ZSX< zpG>fCDZTSrU~*rQDQgXiFj}+o+C`1HwCvoWAeGbeGr<1p7CGumppU&ClwVApX~Las z4Pf6grju3g-g_Nh7?Auj^K#kLiD<^?Jh19t^%zs{$-YODpfU7V z8P1*5oET?wXX>bRJ)$DUSE1I1T}z)Zr4aaJyD2Bm z(y_z3XD(YGKuBMg&L`2Vet$bZ>D~wbex?b|x{FkLfL>DsJ;?M*brDsMR4TY_JL4MT50n=*uyQJkTQgbRKA6ThHq!ObrMRgB<#WB;j~p?*5VomWr|gzwS7wCW^dYiF8Nog9AuOqr@?k z>&V)K-OU+CHgZL2j^Y3yr)a_iQZywc?W^kWWg*|RFH~B(eyI&axTZ+*m(a%D2|M%> z!ZCZ&u@U)mmsawp2|q`4D6x?=$GISu_{cq^N9y&+e^%-?+1wmrZ+$MwL+q%r#teSL z0}Y342sPCErvL0$V83I0?wP;ohqIKHR#x3Fs3^HI#2-dCw^02?wovLtJd_ETW&kEb z3$)wWh*k`f4BPdul`-djqgpg8xg_fjzxBgr*rV&N zalAz!ZZpSn!~`Aj6aNE<8R8G86$HN5IQ+UtF||qiMN)vPSo$JpIf`0|D4Z+v)-T%< zRFm~%kK&;Qg{t(kg|9KU0O4kt_vF_($QG$6G1Z)2Qyi%>u~LRyQS1x1l`wK-`@1EF zN}T&w%km2w5({cpcn?M@8%~l$!1B`vR`PY&s&A!WG&b;c-s*O&+mfFz?4&&#LA!ZW z6OFr7OiFry4*2pH9o5bf3Z?dxBb@HK;-JR8%?_sdR#$|UJhC--OOA|f;d8mfPyG4c(* z9qnW!v&Ia6r_w0iFd-)1idxD8H4H1jK+q(?t4!;&XVtVP;ik85j8b82aSi3kv-Jp zjeePV@66du=QA{1E79axri>hl_pgxud2{-{j$2KJAP(T>mN#;x2Ti2S0;hpUPS*>r zujawJnrW#F&jSPRa|qmhMnwGE{I7DNJR)cX8a$aOs{}z2wCq&mQwkwmbo=rL1O%u&t!kz#!qMU#y8t7$;KN&f3Z?N*C1;) z`AkaM+1a@Wr}}$mkT{p)?Ahk;pTAxFog(ZzP{Mr&Q&N%;v7WsvWlRCI^KAgf*}orZ zP#Ktf4KLZ*U+IBfRsybQWXdwQbLP>6pAqfylh#{fb6;Z(vMMVS~$e@S=j*ftg6;Uhf59&ghTmgWD0l;*T zI709Y^p6lP1rIRMx#05C~cW=H_Aw*bJ-5DT&Z2n+x)QHX^p z00esgV8|mQcmRZ%02D^@S3L16t`O%c004NIvOKvYIYoh62rY33S640`D9%Y2D-rV&neh&#Q1i z007~1e$oCcFS8neI|hJl{-P!B1ZZ9hpmq0)X0i`JwE&>$+E?>%_LC6RbVIkUx0b+_+BaR3cnT7Zv!AJxW zizFb)h!jyGOOZ85F;a?DAXP{m@;!0_IfqH8(HlgRxt7s3}k3K`kFu>>-2Q$QMFfPW!La{h336o>X zu_CMttHv6zR;&ZNiS=X8v3CR#fknUxHUxJ0uoBa_M6WNWeqIg~6QE69c9o#eyhGvpiOA@W-aonk<7r1(?fC{oI5N*U!4 zfg=2N-7=cNnjjOr{yriy6mMFgG#l znCF=fnQv8CDz++o6_Lscl}eQ+l^ZHARH>?_s@|##Rr6KLRFA1%Q+=*RRWnoLsR`7U zt5vFIcfW3@?wFpwUVxrVZ>QdQz32KIeJ}k~{cZZE^+ya? z2D1z#2HOnI7(B%_ac?{wFUQ;QQA1tBKtrWrm0_3Rgps+?Jfqb{jYbcQX~taRB;#$y zZN{S}1|}gUOHJxc?wV3fxuz+mJ4`!F$IZ;mqRrNsHJd##*D~ju=bP7?-?v~|cv>vB zsJ6IeNwVZxrdjT`yl#bBIa#GxRa#xMMy;K#CDyyGyQdMSxlWT#tDe?p!?5wT$+oGt z8L;Kp2HUQ-ZMJ=3XJQv;x5ci*?vuTfeY$;({XGW_huIFR9a(?@3)XSs8O^N5RyOM=TTmp(3=8^+zpz2r)C z^>JO{deZfso3oq3?Wo(Y?l$ge?uXo;%ru`Vo>?<<(8I_>;8Eq#KMS9gFl*neeosSB zfoHYnBQIkwkyowPu(zdms`p{<7e4kra-ZWq<2*OsGTvEV%s0Td$hXT+!*8Bnh2KMe zBmZRodjHV?r+_5^X9J0WL4jKW`}lf%A-|44I@@LTvf1rHjG(ze6+w@Jt%Bvjts!X0 z?2xS?_ve_-kiKB_KiJlZ$9G`c^=E@oNG)mWWaNo-3TIW8)$Hg0Ub-~8?KhvJ>$ z3*&nim@mj(aCxE5!t{lw7O5^0EIO7zOo&c6l<+|iDySBWCGrz@C5{St!X3hAA}`T4 z(TLbXTq+(;@<=L8dXnssyft|w#WSTW<++3>sgS%(4NTpeI-VAqb|7ssJvzNHgOZVu zaYCvgO_R1~>SyL=cFU|~g|hy|Zi}}s9+d~lYqOB71z9Z$wnC=pR9Yz4DhIM>Wmjgu z&56o6maCpC&F##y%G;1PobR9i?GnNg;gYtchD%p19a!eQtZF&3JaKv33gZ<8D~47E ztUS1iwkmDaPpj=$m#%)jCVEY4fnLGNg2A-`YwHVD3gv};>)hAvT~AmqS>Lr``i7kw zJ{5_It`yrBmlc25DBO7E8;5VoznR>Ww5hAaxn$2~(q`%A-YuS64wkBy=9dm`4cXeX z4c}I@?e+FW+b@^RDBHV(wnMq2zdX3SWv9u`%{xC-q*U}&`cyXV(%rRT*Z6MH?i+i& z_B8C(+grT%{XWUQ+f@NoP1R=AW&26{v-dx)iK^-Nmiuj8txj!m?Z*Ss1N{dh4z}01 z)YTo*JycSU)+_5r4#yw9{+;i4Ee$peRgIj+;v;ZGdF1K$3E%e~4LaI(jC-u%2h$&R z9cLXcYC@Xwnns&bn)_Q~Te?roKGD|d-g^8;+aC{{G(1^(O7m37Y1-+6)01cN&y1aw zoqc{T`P^XJqPBbIW6s}d4{z_f5Om?vMgNQEJG?v2T=KYd^0M3I6IZxbny)%vZR&LD zJpPl@Psh8QyPB@KTx+@RdcC!KX7}kEo;S|j^u2lU7XQ}Oo;f|;z4Ll+_r>@1-xl3| zawq-H%e&ckC+@AhPrP6BKT#_XdT7&;F71j}Joy zkC~6lh7E@6o;W@^IpRNZ{ptLtL(gQ-CY~4mqW;US7Zxvm_|@yz&e53Bp_lTPlfP|z zrTyx_>lv@x#=^!PzR7qqF<$gm`|ZJZ+;<)Cqu&ot2z=0000WV@Og>004R=004l4008;_004mL004C`008P>0026e000+nl3&F} z00HIwNkl@LU4jhaSKFnXnu1NN~!EtwtMg1`#aC;`6GlmGtbPKnfJ_NnWwZ?L&MBg!_)?5 zm|=z)W|;pYtZ8niqN%N>Yy5lh$jnw*RYSwX`uEhJuBu_Irf#gR@$Y2ywd!+a0MI;7 z!_1CYJBcf2!VELaFvAS8@5;p7#GX&i1gyn44oL{WHBNX98%3;TdL_VTKuI7@q%o z;2HBC_wg8>LomY(Gt4mm_rWuz4@({RB!hqbPI%7oa^Ud{*1rGecZO#G$%LYwprWqO zlD>^4eIca-fkoYfymoA14?K-vh8bp7+V>Uh0|sBB^E=-|=&yul z0K>5k=CO|EiLO=!K8}E2xmw3Ln#VYpXM6nt@a$7GaJ{IGT3C4P{-e`ZZyi5z>cWl4 z+xKGv)9d{y1DL|zcMMM~m|=z)W|;rP@Jy&=+ue9M?^nq2PBNi__08~1ML3&@2!ML{ zf101_ZVS*_a>*j_r#AnpA|Ize1fH)J)YQ~BZaRA%x%;p)5_R?dy`=1%P5Dja8dgyC z&@7XyzpLH4um@W<8q~-MZsKfcnI=~b1{8eFeZ8~!4(gZ>N(`9udLxK zxF>)@=Qc6)txfb1YdJx+!`PzkcV8Ct;ws028^-X(pgaG$)l%4vEgK2szK9ua=4_}P z#!So2@m6sKz8NA_kAY{wh!Lv6&<$b=y0N7rVAT-I`rj>t(&4~r7Ph#b zPy@ZYcki*`O;GJPv4;KLtOFu}@{QcL3}mR_$^fmzH^fg02?_vt3cGO?6Ekz8VS)&W z)bruHs2_bdXF&P#@t~PjCP}6JkmPUIJFgySFeyEtYq+vuQtkUf&aDBw-==9&#bCg@ zVWE@i-Zn~OLL*P16KmeQn-UFEgwnpZ)2xqBJsrsF#heKcKxL5YXDSJ*VZA>M!0R4+ zR~wBvGj1g;as%&?H-Qy{xbk6A&D;3^WGL*%SB(d?ytj^mYS@Izv7q-CS1@=Zlzw9M z6uJD}qy>ZXeu2-<;a)72L97|a7k6X6bup642flV6n^_3etPkJUpAVjw%PGq^`bt{6 z0hVz>ER$CF{qUUWXEdv5Y5iM%N%TLHjk;3of0^=@i*Z*n0}8so6D0KFYdE;4x8xmM#4YTF4e)yBi?KBf z?3eG+rDOP{7wSH4l1}H{(hK#xJT#ByV5*te?}sHA${>k0LMZ76`({9Tk*>Fg#*u9F zH#7nE?t)h9Z3MM#PY@-uum`sCe(!6SmC$G0(t7aJ{{Iv_riWR{x{Y=upnr5w@nu1HA>2Vn=I z?yVY9IsHp3DPf{tzA`>^+Bu1i|9l_&aFkBZODDw*%@nuZ^T{8T$nE5$e7n z)-O6CLmKEyDGUAhp2pFq$c#p-P!|z1XGwdMyemq|%0`fkD4>`{s_L-~a}_ahkubNF#6|g4vcX9O;36oGjtZBzw-Gb77jX$Se$Yy; z8uq(;L)qO++|oq?$Yx}%bSMp1J58$W_PTxFXzNqNtdP*jwU5xi!8|;pU~emCW-nqx zHi~KvY+z#xz`2S|q_$WD+6hCA+RN;U$50r!>qasg>8H1PWB4Oq% zw=V%*(1)w$5K@!Yds~Q@x`Vd1v^F39{qW2)HkTk>93@40*KudV-Sgt6& z@r1#lt40Kp^2W}9&GXi)`L{?(T2j?{Ln?lZ+*4W$z zO_h1`L`_X!43l~H9x4-`TVPl@x$VwgCKF7~=h{18V!U4Bkm zbA=xW$Zc>ud)na89d!$Ze~6oDZ9A)X@V4F47U&@LWrG0jMt%`zM2$_19uIx~0s$_{ zh4ofJ_KWm_ZK4YN3YqxgYJJP~Kg+vm{Bqssz!iNTkF{6p!MTA@KWvY)5cD|goyX$s zTzDGCZHM!Zf14+?D<4OlX$VVY`kY2CTp}#6Atj`Z`}N1Z^Qyy1YC2{Qci=B;)% zf7(f?po2Ru{^>n&QVfV`-$q~=Dkiv<<8_R%`2WrO!8qKv7@F&(@SSyzT0aPBs%<=LbTZ0dbEt%#okijZskD!K^%+7&T@lmMS0EoXK6puM z(+Q2OH?gf8k6mu_|29u>M=q{-R!El5S^q^#g!qC|LRyF2j%-||Z@Yf`8KZ+2)$j)m z&L&{1hH=H&s%knv>w4)Py=Hv)rjqfRRXTgz%Z3P5Ltbb0^6Q$bZw@y;cu|9VMCWJ> zwvpq#*KWRwhyI=m279j<|FTo-fCOOLh)ry`!O^`)1R_R}A-GQ1n0ISvW|DkCWAt6Y@A>dgQX< z!E@{J4oiN}SN|m^pq`D(Z(DD+dL=#qjN#1NFY8CWye}c7B;XWmaP*qtp3{;_BBH+c z{6OKtK3rL=xv%BwHEwGUUpCr%#pqBlpT-W4+&*;NBN;;->3{@6Pr>-nmX~I z>BD+LH4}07ywqBKqn8{~`L8U%xhwbmZ3J5~Wa26=xFzSU8s@hb4sQ+i;fgvDv56WE z`a&*SowKID;aKolcm~)B@byCmldW`Cee$L7ye{Mb&=T=F71YF0C+++$@C>*F;qutd zj0ev*EetCCTr>Y5&uswDm-1+}wRKf3ZFwbSk@p_FOnBAQSjT~A@-0s@7z05&BT+dW z-{BTjK8B0CCah+lav(E+Hcp~VkSluqvzkzOz}=3HEo?)kH6T;#k=dQ#hzFfa3%Y>* z4U^yDmsaPO*%1JC5XulC_t_eGE7jxK7#bS~=1my`UpfFOEvbV6dClN)M0zXGr=jz^ zxQFpBbZ+O&E??LM4jC9wZGH#3unV2l;+NKn0Z0D)c0bT)T7zFsH?)&dnZ&18h14B2 z&gA*?u29@2AjM-bB&6R5LKe;liGqY|4=5g(yT1qI)a%>)-`{`K5GTfA8b)ytLNE|_ z&dZ4atHn0!*fwGr9USvfY4uQ@S)C9rLLKkK6n10s+TV2?I-2yNvs<8IX-)q5eYoO2 zUaztFt;jUc>lSo=HzWz9tm^~yU~-xepfDH>NKSB%?}U1t)9RPnf-Zcg=_OWAkW1Rv z+4BqTDck(|4XKg=DIW9M(FL8T)J9Zp7iiZ%qY-L1qZI?LR>gfYcUjObBut}!UKh7T z0H4iJi)k&G;`eR<*b;`RkLY6bqq*?>t_Hxok>_GCj?#n5tVg6a_+@v2kwNG8ymyKR z3d7eNp95C&ZFi!mkH@lH$p z8}OW8XSNL|dZ2t$($z7zn2{M?##f`q1;MI4c3s}U=d(sxc*0Igl z5~w5iYL43;2Y$)L{}2dvq7LG?*n=-`GBDv^utrB9EIkB*M$7r;Apo8+aj`1yqCZQl z<+nQFUBJSZ596OlOV~TEyVej?HE7@_xQy@|Xg`Tzq>MU%Oo`3j@`K0pm#H%2UH zVlo@CG>-c|X91~2|Bo-wv6%i=$Yujm!3AfnT-UmGv zB5nf(0MOWz>qamsX(~zr%ka;F%BWf>wEBTu91T)U0re^R@dW`1LD`*IxVlMl%|u}B znEM`|#k%e`3H|5?hgb3$nPzfA8^%bqF>H1-n#v@+h>>z~UKi1|5tzwp#>uoU`(V$X zWGqeMy2z!S+75gxH>3nr4b7aD^J~{zu3BPo9#JtK2uVJHj*gO8C%xuW6);2ihT|41 z`&m6{B!GVbIco+{ubQwWZT4Xv%T>s(m7I|JF;e9)CcBeRl%?*8(F!ldRWW!-hAm?O zkwEW)>)Gx*kqcFE4mqRbDmJNRij-fWWFaJVyn(y8nAjYeniZeGwmhIJM_mb9s^n^X zry5_w9hq8&e^LVqtftvbDRp*JVi2F*5Yco{Kb4Cv8$>?1C~s(J`eFi`UFVnacF%!U zK{qP1fxC7(z&r#)3N7TKZvXT~ur*=0OA^4d8A4oqR~`WziJ+Czjml_vySfKv7S6l9 z^fhlU1ra?2pclEZO9>a`l<|kaGf+YQv|4ZhzwliCe?KkI4Biu1KmAqktP!}ISUK#U z{TeW-YD5*c<-5RhfsYgL1zYmNKmNj{`TzHS4{S}o-0=J@%57RTt)j7|vZ*;SH7#`G zrj*Rwp|R=iK{k(j7$Y6s-9bA5JpcaNGo4i1YUX1gV1C4_WSTJZg8QI-9L$pJG6UCj zKMG4P72^MgvWL-K8nKFnynjjFSWgkXSy)EkUyIgg+-@dh=4(01|8?H{f36T-MSg~U z_EgD!olfKcxsr)a&C@XFUmzs9K+aLo*=mv75%0Vnud7F-RDztSlZ28%^y4!k;vue0 zqwae#avsjonpP|2HoH;kZ8o?rS|++!O!&t&e%8so*u*4Ny`Sd&-=cr65?w`#LqC6^ zWUr|m*-x%u;BqPq-PX?tspMuDRSgOG@T!85jshl3SXSU)3+2?VRnJ^KdGMS?)Ag1U zcgD%t`q`vT5X$Jp!aCC+Z$VRE0WXqybUV4C$L%O#*$RmzVnRO%+vwe?AXKw`ZXA;{ zHB<5n6p$47aoO7Scbo8K!^F&lwMLo?SBd^4AhE*s7w_UhJas4_r&7mBa-op$LTL** zdxs^?VfHV&h!t#fT(p9|?2m$yi+@&BJW>QMAD(A+$UB+I7`y(=kFw5~qs#=`R!)sN z*fO@}a_<@a0Rj*&S3HGHOjNZ{1T8LFDkHl+6-6Dy{yIEki$M*U>ns)jB_y*{nE#*a3D!@W z@YF$k8N>N7ZnebX1;TPGbps@w%_R0yW^X?{2FT~W!)(4qn0Hn`SG!2Zm-ae^`799^ zTP!T{Pw{nf`%-XaLpUI0O4e)>Kdi@F$2AeFCcYM)&9`EOw&w=ZM)8ycIYBX%OKrs2 zYd3{XDC=<8=CeX2#G~Day{5(w+UL2~shJokVz6KK)r zsP_Uxq|>WjJavFj%W~W0EedYOIpf?vd!4qqua<#Ut%UtH0U;I6 zwQ_}=B1COlsuQe+G+rH=wXv(i*jj<#=7?+72$_2l3ZMWLLXw=2i1PVn!ds;=u9S(q zy=S$cvwa1_##f6^f0KRc2)Sky(rSP}m$FgsgPsdLFN3q)%#tr329nPgz_~Pxd+tSu zxovaJo&Z7;X&p8}4t$y+t`rWTgm-Hk4yr6vRackYl7visD79Kx>3kC&94IS?0FYoy z+4z^SQV#ZNm+F9d9x7it5?qk7Mp0jCXG%a-zs?+Z2FFLgxO2j*R198Bkjr^@%6?*H zm)&NM)tWoKYwFb3h{^4zf|-K_`s&J2V0{Rz8zoltyPpc;7uM5@9wgOH05b~o-#V7_ zW=B!PG0(iwIci=={f>$|#z+$?$Q1U<=&}sVyB4C@!cWXm!@R zhJ~98&t*gSvH{mU*yWNUi-g4fCAL;#>vJqvIK@Ngq;yrIl|KoIEnMTOLIi4fsFq8kXzj5NT!f&%gg2R7Fr;6Q-dIKK%7B zf4OF^|K+h&Ujfg)l!2>-b$9OE-}}qiW2Z0OymR-$`HOMsMM+g%iDj>O{IayIvY}_F=1fZM}_t)(iKop9*fB0*iURJkBM1z(4l7;QYS| z5uXAroZAlLManz8swYCK^VQV6*Ig(hHcg}Bo+#L;YTp?QYUnq#5L@9H8PLetNG(${ z;Gd_q*|)II>&ih%1=0*WN1qZB4svZC^*D&;=a%v4|qj&xcI=gk+Wrp<4n+9 zV0$5;dMY&YnYgLHE@bqYL_dvFv{|cln;zIixAQgrS?9P<-DGgqjNT zF3zT!3N=GT(XF`~I>s&Cm6lnb^rLY$mN)1-$jp;QIwkkxvvV~J&6F;+hK+DG7d#dc zvoy`5`&`-~v`RqbEDcvX{+{#K$M9T8QCD6p;C9ioVwzmd_Puz;CbfSfu;skEC7`0W z?n*tmw#~>)a+yUGx}6hTm}P&j(l4`0&%#*dSoP)+&bG=|;!?)i4;yBWDIdXeAGV~? z#6okm!yW%t;1M(G9AfsP#x6v~2;$mdJ}C{|2R*?p)96cE{M%9e#m>O9sWAGC z^-kpSb%zkuVDlX?ch!;Edf%8}x%wk`mbX#Yi{+rtIWJHpdQql`FFtj9KI9?fwap`w zZt5rVv+F%l8wYbf=vUymA6qs~e0G^n7iD~}iBLWOkOQBdtK}s1PZ9ouFCoy?(pA)t* z_27DhEBgqZDMKV0n2P4o*avIe?xovDKrFg`c&xRrk3b#|fJ)Z{7RtCqFY_P!Q9Hwe2H0!0LIZFFZQ&7_wDlS5J;a>#;9z*7dJ?4uP zws<#=`(HXDqEE2R9S3GtLH%3Q+EFARw}rdzhV->_!RcexjpBT8^@4mxA6%( z7(MF-3kUx)Qdn-S;?c6e<~}_mp;f3SxMt2qN|Dm~mGiWBBXaxyXm|$B3IbY2g4!l? zd8ML;{+@GS)_n;)gTuY+qnuUB>jbroKj2j=>)m4t@ufrG49~>~XW$pMX4w)C8Hox% z*GiO|zr2k6vLzBs=e93}elEK*Eh|4huPiCQ^kMAN)2GiqOU*57AEY$(%y4sG zRYOzY_B;OH4W3OzL*p@X;klSiNWU#8Xk(T(K%jsiE><8dTUpv(_fZ4#{yAwKBh#0_ z{calpRSy6jptAEngI;8_$t$&l^z;n{tcr?A~7*DRo{0|vaw(E3K39l_Gh1O@Z;^YxDSR!wY3dMIjy(7I7YppBxR zap5^?G^FsZkf60mO5co-HMz>N_B!|LkdH1(>*$-j074E0Jij6==w+QZh^NfLbM<;h ziM3I^?jddxzQ+;8qb~b=ezu6lr`+JPMwvZoBUX-XXdQ4rzD?ShsA8}GPo-d&f&t%a z`y~wQER)^P8Attl4Zv81t>y&W z*uLBXX&>K%xUqTBA}I;PCPh!2JOahHVx_|60pD|>qQ<^~sM4kG z!17*9K|kp=hY)i`(Tkws=D1kKLiJoFF8RVLem%2{F(RcK1I!KO4Ag`DOBacXd53}) z75s4mD;G=btHDu!1)hr;n7C7`g*@!2qagAgQ^X`vU&;!*m}fQEZ6ZqBT|_iY;fn`w zd9~}^6h-$?ehZ$dtiZBdWldA1Ls{5r;8!&mSl?*k>a&LM1etoBU&!5-I>Kv$R1z;I z>}Zn4LPvc7&ja}CcIV?KlpK(9Za5XvJ)aprhL7QS@4^+nmhZtc*W0KZ+!Vol9>5nC ztEy`2zvu;Tp9jxEm^0q-DN0IedP$s(sTWo$V60nve}qNH^t>m*2j(!BQ`Fw|1>;95eL<;4Xw=A{*sI?WkdK;G8|mjZnI^x zxb(vRQ^A?Wv<5dq@GRsX?vn-<$jBRtYC``IP?tNB zkFOjddVqOtZLRXF;YLDhbiIew+s6SjYBRt;~(V$U2>VY zxfYyXh3ESKo;3hGSFv$fr6wU5aU->V{!>pkwjM{D4y|vp-O1gQEVSn99P+6g-;nZH z%-DDRwMs$_8~N~(jJB@vb7;@OzPu(Zgm5TsFhLkB6w#MMhA8?FWX<)LOIiR!fP?>9 z5mGdo!kBdkpMmE+)DT*UhOvcgSbRY37`BK`u4}c#U}QXR`&A{%3VT>)(D6VYK;!tG z@LFiM%O|VvkA~+!5N-gD$nP_l_TU_b`N%Q(({ay*J-CuV$RYpZdYU-668d{K?639Q z_OLHQx>otSmm*!j=S&Yf;3fwCEdLtw^H;z#fGlNA~aGp zPhd3;0pNAP@qJmlr+<*Sgq6FsoWVXlNNcHHZk z)BPSiKRF}9g=e>&9@6eR-EyZ1<$ZoH9x13A3fbc|!j5V<8UAE&%(rU%6Y%_CBIL=T z#XozQXYh8VA!1Xh<{CrIOVx;n7v&9%&0cYZd=f6O+RP+zXhwC-YeNA%`&`>EYwBd33ZiHR zkhk~q2{_smGd)l37m+iN#%$9H4ineX6WWjwoEOE<=cXT9j|Kjm6%)9~qbux#?O$|w z@9_A?N=wxpht~z~)ePFFz59w=HpA=G25B3#L*`qx;cvimexatWxaJ)OupQ!Q4VFYK zzlxROhJ(5U)N%!D)r&OT^-VwV2Rm2MalG?5br5;j|A%Ep%3BZeTGZNp*5SpR?fV0G zE@5HL1pdTFax5RQ{#sv#;#8MZc+ZtBRI+c9_a0Xhwbjd--73|k>Io# zNpTZ}}?ZO87d-%dNB<2-Lvn*Gq7iOxL>-d zh1;%9-mAUqIihsn6YyL&iGOx>)oN>#gq~jsJOkl^<6Z}BRv@2X$_HlP+5e1RZo4Jf zUJ94uetd%z`4S?x$DCmLX?TtrAXiWL$L?PyU}Svhp`448=BMDcRgcUcIbP9k$U zt%4mS1CrcNgi4dn`{wppkj%L7%ncPQW(GEM2;g?5yjC>eIW8@NkI&NRMHg-^JV%EM z@*9{Wj}c2i%oT&&$RVY~NolF^J74p!=lC9aAD)ZZ0k?NAQVMh_pyR7J_=r$G`#nzS z^uW?80~bpH=WEECiJ3vBFam2T*6XNB2F9VNEJ$5Z{U)@&&tX6EM}B+D1UfN3?mc*> zvNsfFE1KD^*^`DX@B2Wx?R!3SsVLg1WNha2T+~mf=yKkJ=2r{#OpO;4G17{HPP!mo zgV?~?SouOq*v~BKH5NLK1BEtcLrJAB%5l3h&)N{fbGUTOv3}fn0Nioo-WQWrTJErMu zG++OS?+5Sxq7r@8I$x}d!pLHi8CUjTP{YhM-F zuotKz<{V2C7oPW(ZOluOmp78ynHEq7VxZjoO-spzR2mwBQUJW1y)a#(jPv#+BdA*)j4oCoaE(1p}mj9(K z3kAtMc$ReC?wSKaDm$GI5r38?I#s+0?cn(R;=91$Fc+R5h!`TZBWj4XV>8O_yQ3jF zkwX0XI*(q@2wD6>R@}uPrV;t@;u?KJ(*z*o5CqSBmZnKVgyQ$$S>a53XnUWDosP7v z<5Il?z&(fX;4B2sk2^8ZM^^H=SY)$8yE&vg+ZJn(o%11hmN9m)N&(A{4#BgKr(;o_ zo|Ty}G6LPg*+^?Q^fl%qrUsS2kPy*Qzgi6pW}w%|GsH!PUiJw+K4(H#$dKF{IiXE& zAcbw+B&n9+5gsCCg|g51LUp`q?T%E z3a=zSdpmUpcwTald3DA=mX1!mB_iZzodbM=Ab1u;okA9~eIw2(sfaDs-Jo-+m{8th zivJaOzDozn5`1a16~b$+MQfM*BwtBt@B8Z=6%?RPtX7F5UD zq>d4(ZQ2g}D?`$PL5wnJ7hIlFbCvW&B#)E_)i5EkOTio~RI!v24a*K}8ng6OTIzch zQ_SsD*$6TFzPO+-1kYgTxH}cLVvLY=OLV2IPV5+|j6o_(mKL?td)R_48wMvHMKxJ| zLNvN^42;IRx$$f8ye&Vpbaq->O2^h`$F(>S)u^+eFm(s-xxX|O4w z!u=NLAB1kt$XBeK}lMh);|0T8b@zaFcaY+wfrag#_-4qt`A~CIpIojGo=W%;KlUi0m z2)pT@`#l1yC_}`WDg#H|`TVYC_wqeoR{Gq!rh6pPIcw53Ky8VnzeRk7Z!*=?-&n}= ztS^Oyh&nB;Wn!AhMZQPJR`D5|q)vpCr70;ps-4P(;5qim8gte4w}*o2n)R*LEYjZM zlvv{z9WAG^a-RAYpZr1pm>Yt!@@w{H`e(jcyGHnjxgHGU zS43MTwjmzhkrH42FSY#;JZCM8ePFB_yO7 z+EmE>v`-NWdGDOedP5T)JU>3ZdbN?s`|!NZMr=)Z3xrsYep#~YN4||21lkntUifNr zZ?ovmfQKgpMQn}YnouuasA`M+mCxU$i0*S`pQN6HWiqIfj*Qs7Qpm|ZztPafOx*W^ zYf`Ptsm+W2-_OG2L}KTlh1a?TN&&XdD*a+#sv3*TlR-na=NyWv>WWoX$DPw_y`RNv z6E68y40)c|01WDOpM>Y^8a30^0-LgfXgqi>P}dYwy$Rr%MJh;?m(^A}oaFP0Vi{!n zw|R2v=gSGzeTFt-OI1Sc(i?s6oHsa^kIZP&HsoKfv)eJf*5_rC4&j`8M%%mFb1B2r zLu8@jS>O0lkJv)@=QRKP*M{~I%hbZ`QfR(O1^O)$l#brQE?xtiwXOz-3hhr=60^gS)&21w=I zMxY7R&9>Yo3|uuuu=mjwlc?KgB+N~XL15KaxrTwgwV3Xo6d|%)oZtPdM{=d-^9qlX zJGE}noOa^`G{am=CJEF&Y(bL+&PMJqEvS{_y2X^=H{3UWB(SJV*NT6h9M&O)Nusuy zVDwf8r-r=dxNoq`j^{QDe(zs^41q=EdbWaK{@5o2LqNM}fZnPN z*_*3!R0#)6&!&4PRC?WyR#>}M1ozm#ZW@~rDJmc6UT$fNT#u0Tky zy`G|^rx+@WRM%vVGX0k<(&}!JPa@6j#w9Tk0qJdtnA#D)=(AFY>plsko(Z+i`vR5; zIGd*r660f~EesU)rXXLHc|9+(-yJYtP)qGxIg~x4piSFq)iU2Z;9nkbMIJ9|F{J}O z5xbTyS64ccjD*G^f1QQI3cdXvv|&OqaGQE2D<-?b@_D zDFr@8B$atSFEvM7ELGm(TF%5naVRXeZO&q$nZ)|nR%rcyt#UAqEcba?;t@vylN<=? zU(g4+Km&Nz*vz_ZC}fz8=LHNa6cO<74{sZN;VixSYH@8k0l5=hf$weG)! z^2?(v655b4QPNUB|8wmg2%fWEO06-J-ulR^pci@nqRcvdV;(%moLs%y&@}T6I`Sz0 zG9meW&pmyuTy%RLxo+C$V%X~C zYu1LRc!A{>zEe!c&gjtqnO3K5EWN~Vw@Xs3-@|)SD$D2T>_y~$KX}H5xL%1R)=uHd znBUBVYVHq8LYZy8wG!I6pPfUtn{}R-!@rI5J?*|2o~eUJlZ)>^d2uTy@lJHY-MH(w zV~$+DpA?x%yOUPVJfB& zk`~_EB)XqiHi)HE=-H_+6%kutw$p4IYL(k=_tbu3ZNJC)gTj3L3q?`JS1u`8o%E<< zd!5{>7JSw-cMM-T2sEfhXyXL}qKkF6*`7Kgj=7C286?mKT@M5aNQyw7+llFKn-~BQ z4$iy0XN2@R<&g~u=@)Zv9Rg>Q3<-&O9w~1~wn-br&%$#~oiW)?>*i~4+{RZG=~^6e zNN)$$N?hDsIs6{mXPuabq=5&U0Gwi z(Xog_d~sjSP50QSpWPf%@A*gj~tC&$@vx0?9utKFP9uO`ab|xXM_u19pe(;cL}Ixf(ku?d z5rG)I0esPG>!7zy5blB|@Z}?@$9L5TM4K0bgwihztip>Ost#)f_PHJqTZKt^rK%&n zSW;;@n82n7Jo4JzPVA8dN=_=20}fZx>v3k6h;oPrz@(D|#cg+xc|ftz?zr!~-sTsm zS~k9*&1N@2?r=d+1IH_zEQ~pU$Y)_*CalLJ%$^KD7kbcWS*PpKz@@5w<}q#HK5enV zN@{m{U>(Qj!dAtNXS}ioq3D-l2C1~nz|&&6^BJ&pf@2C87T-(TMg4ZWrS$T`V|W*6 zYzoj!xY(8sc%0rNv|4P5jM6d*MSg>09#z0yXwvf}S#fIwB9|-V!3(+@pP}m5_`-JE zJp|c9lnt-jEU~^T1tgcr$S)Sul*T+lHIDMUe*@A|)%9ecaS)eW=5-O752P9-)V0}d z#;@iRUn--pL|9eK?IxmO1YgQVT-+g`thh{Cak-4lB0gK~tEE`loKz$ryGZI?2_Z+z zEIKf15Nhd;Tac@zB$tWHELdx&d95x8#D*33qtoLQWfhl#DI_DaLyaiV^j8D(k z@zh-?x@NhI;!-hXL5tH~G&Y{=lZY+qvcPLElUCx+I_af`yIj({2{bnH?qz93Fu|0T zN-GO(iU$tNGm2jjT2|Oc^80X?!*OiKA=2?(9?jyNU8F9F7FxwQOB)$Pty`dh{O z5az`-aS4=le3qt#=pxCr%jLLjfoDZTS32x=N*)6HQb0z@dX&}LbJft|g4SBSKGs6v zcnSB_NDn##|U{<#uyW5Q_|kT-IO8_RIqIhx*ZM`lmz;l z$H=(ob-n@IJ!cT}GD^XaWRpTC(%$%9-6N_ZvRF)RnX09BM0-#p-F}mo#*s9C3Y%C4 zBKS#);6zn1VZX(GZFmXD5d`wVp(DdZ)D)J8NG)6MV)&>R91x+rGzC;0OO+*HFSR;o zvDN!$cc9$vCpL005qo}bU{&3;5jxO(!!D1=B)1#SznR@{C#q}fxLkhn%{92*PV~{! zd0?{ck-5&ljiXJqP`X-};xB+_R4H@EqvSIu&i-=h(y8;;E?l@CLI})w{*>9#(%V?e zV|r_2QAP@ueBnE#C7I3LGY07r>!t$h#tGc0Wp2udQ8Ea2te+x7k(xc+^m`!D!3dtx z%`;t-YCz&GkV0>OP(2LgpW+506RJkRTmc#KK&HCTUQXB$XZIk(*hN=_bOTugB_qR? zvdQ(+(q)Jz7}Pm-!ZXe^ru+~o?Ogo`2FP_K6}Mr{LZ1-uV?6>v8`AU17^Tt5k< zg|G_r8g##sJyYk$>0+wJiBNXT88ZY>GtQXLp$FNdx=HY+z@QN-*fZ}7j9c|2cPJ*_ zegobMx5fG?C=uiPc3BY83KfPJ=#WRa_|XSV173Nc$t>c&@!}!iL>flt0PoYF_`5R?)gq;L4`3yiEYk;?T!{<&^~RBEnC%{nD&1oJ$U62a ze9UA;owZqq1*ss|gwc7a4GW!`!(QZZel5G~nUu+*oPQ>4;8^4Lm34O1| z{l>}-E&FSr`w?#<8-ZO4Nf$VBXdP~DZ87LSv^Dx13i{r()4N zK7%e3{*L34;63PvzkCv--a0o>GEBw@y%~!lc*1D&Z*YULa(s8T+rZgLgg&pKc%5TX z^~KUK+di8lzXbF@TyLt(0z>=b6SnEQF6IXvMsw=3>U$7zn%Brf5&`kJE zN^`+~#U=Jg42tskbgISnH?+5LN~ehGcnwBWt=8`{OF=P_AxFxWrL-}RXXL|vvKOh`{QVoCy|k~BD))$liDLD>8?Z_jFHjquiQZZSrlXa5ccaO^@ir-i zM072LhQuTlDX9<3E6MiRWf?f(7dA^8$Oq!>Lu5=JdIiv*a2D<|oxrJ@0QsOa&)&JV z&8e#2y(&_Y<5V9xz0RAf;7Qp&g$~5CxQ5f>UFCZDK@a13-_fYZ+&8-qn7(uWeKomp z5^K(Pz$*Cy`F`9Pj?iX_J{c8`md>)`tZHNOXS#O&5B{F_`MIy3CuE$ix%(AG{HyJ{ zYn)Ouq~qVFcc63Dx&(v77ip$e&OI$WsH%*^XfNbtMT3iRs}io_elt~bPC z1RT`c`$g$2U%kQYf=uPe!TWCeo(5gN@tV=B^GgcW2lei8WY(_M{ZNbbD<3^G-+vg0 zA8*Lu{}Km3XpNZ&AfbcLsXP$>VLARIC=$4EY&|w^;3eM-(%j~m`A&VjU_ zM{j&>-1&^u<+c@M@6#9Iv?r_5ho%Ty0Um$3) zn#aBBw`zra_ub{RBI{3rQ#j1@HTflU?mPU(NiM@-5hxzG*bV^18=9M|I$6Gyipy`E zi4Lqqdg*FwvT$?s7=K?g!om7KE@wL5sPXOnE%8ccWoKhyZTo4h%=tO5gZ_KLMD*Es zBomFm4-zgSuUHw1y7~qWN!NbT*QG_^FH0}Mp^g1bS8vgE7z@+HWEo>|cli1ir|0}- z<6dTWwZ;twE!~~ZI10st<2yUO7xeP7k$ycQ%-t|pGR)mKg%oi9ldG$q4;P!0lZySg z6TQ8?G34SLHfy7X)g5^+AB4qb`~AURS6y9QN%5H=P>18=*RPc41e?wEw~n6nNI}vf z)9FudF<6cEa_dswi9hctV*0lSLfESj@`;F6Whl2_C%<@I2eOJN<715poA~g1pwfFZAkC`kkwmm2oVn(&GfbfPO zE9h4zS4uBNxT|!ARKAEMvkK7IHprgV|+56pgZ19*7EN2U^;wE`uf>@1_i25NwHcY*S+n@4vH z^K>b3oj<9JTs*SAZm!)TU5=gDa%{KCFzg-tBH6tx*W#RBS}@w6hi8v*d4GDuJ?HEu zPO)@zd$^hInIlurg#3@tbvE&odt5WSI6L9M8x1hb4`XSZZD1oKqpTN8t4>_d@-lA? zQfO`1$dnxtqh32k<^?S$FErbQv0L~6;W*6x*x=jtWOD#Jx&3BJ_u0AIMvc^x0N>ZG z;YZ%ffYZuSEMf|dh`W9gAs#MbdXinAk#l-a;*14y*#MRpXGWqG(?Zgm+TE$s0h*Z# zNXlz0mA2s!!gEAmU7L?N8dgDypTRp##lQ`N(Lf8m+4M9{Da_dAjv~WLz z3L@;plFJa}^bEQB$KCFqWy57{i?n9v0sv)S4DEUOZUUf@|NS^Hf3I!2S&On88|N1m z)Ya6~qNF!Ow6q8+y9O?hA-)6%YpARHlt6f-3wY~lYNm?iRxh5cBZ28DYxC>tn`&B& zqGwsSl+}NBymxiC-V^&6iw#h@@bPoAf9Gj?KKR>~gSOdRxh?7Q$Aa*@h=qIDkj2-^ zD|R}~CHY|6BgZbBm0$SW(#qP>{PZZFRlq#~PHH(u64j)I>=8!T9t-xTH5x0PzWTu_ zgKUKCScYd7Ca@I72QV>*>^aTO%=W$Cd=PNX5EM$XC4=hJSkK1J-so_T#=;*2CRDv- z{CU8HCM8Cd>`FB@m+N%Wp$#`KsVEWT38wYcOo1grhI@8@I`CW_8yhPpT6KVH8e~N|+^bp29z|zP=0=m3NarH%TBX zqmgqy!STj^a$`No@zw!~-0R;P z_a&o5p8RK)kiqMS;Eg9F;=Jj@_lE(2x4Xv9*Vl9J_Yu9f?>1|ERgKWwH&mN=UGbrz zh}7Ggo0kul+pgNQG&GwC7tb3heJ4jpk>QccA4e)Z2jp}*i5wrV>Vv>ahQ(GaqOyFE zjFz<4ro2GDCnJ}$^Kc=AgY%G~QHfA6oehzG9;_tq%ISfufYgmGj|TggYX-1KPDe*k zc*J@6wWW9{2K*P^=$A*)$sw71eU=OkJoSLa$(bJkO#bZmEkA+sd!G1dJ{FcGkQ+Wt zqp+qhu*0jX?`rLG&kt$M0;)z#+z9Q_R0?T`+5$98h;QT#mr2D%UU>&=$!*&iGYRaU zcD!E<<3(3<=SoPMhv%;_E0*Hf%*7Miz0s{{5OZr9840dlC~R2r6N3`lZCL5Hf;_>a9$oqlGR3=JZKJ?Xo?!#*AYQ8wX!9p< zw>`KvgBrdz;-2+-TIpx)71nt4N;*-Lnw&jPtUR~5DYaC^{nA5K#5C~7>dQvh(a}w< z1T2!kSG&_;Z`voF@?!%Q1E0VTBdhQ7M(G0gMO#NFBR!p-k`j)TgN_bKus$~S=kMRU zmEEjpGmZ`pE?s=yZypz17hGxWTJOXz#`PW6?uoIld}&X#ohN3(S0QnmjXA^(sFAZy zQ?A@!Q#wbvKzFF8wS8!2m8$MwMc9iCN3S_=j7ZOyuNFgw%;z1;4#lN(jQZU)4sjzj@lo*(M{nd$JQUI@p?~&CZ=g9`DH1W!S1H+jma!$bK6h zJd=eUDB3j9$~e8iCAeauga3hCKW*4hrejdMtw`f<*NbZF&olb;akjjjCtUp+IgFlVghj?s(^`*@{=KW+py%O0Ioh+z)JFZD-f`QFTh}s5PV23-kUBB6Ib%Jk z+e+RMFy>eOe|rcD48a>79=D^T=gq{|Sl1CL zDdQa*d(X!3{uWn=%c#@*z9VWzkXw`;G!PKsslrg{Oc*{~IOFxR`89q>#adnlwH7nP z&}MV-)X-?a9^OFK;!jdzP|$NC>mhqP7I|5v|NdqS=me{Os+ERt?twt=)k?f4v zvw&8-)aULMrSPZ*W7AH`b)22#(Z>OY_4$hUCqy86166Zk-y5ME3Y3QzkyRv**L_v% z?5>@h_}tqCfB>UI3oPIT;M4r<9ghTF-4D0C6HTb*{wwP2Opbi7;{1)APkyKUENzeZ zn&}h~$fLD>yCTYWVCD=yU@N?y9Y^7H-kbZ`$Q65@N2R+Wv(|8XQ{S4z+4Ldv76IqR zfcRw=15-m&mOOV_5Q5j+_0k7xY+`7?=8r^V@1 z)53xd+`4b%0@tCB%cKj_MNdy}X=8)N-_+FP;OKa{@#5Ugn$~A-ZsvKxcPJ#hx2>k( zOwy;_=5g9H=8mvS1g44L^O7ITF;8Naaj(a>J;%iN} zNgf=KD7FS~W#1EAoNVliMDw=+?%CIBurzQXAFt{I)O=ckWKE7U^?1bidu%f%V! zodxJB7+SW-_wQp(pw0)E4r%vXimlyl>;?P2fKtsne5zHjV)^1xbY)CN&AfeGW8FbX zRa{01Os*Fz_G^Q7Be!2Uf)YroSEqsA>_H8ZBG(fmy5ni%*C5)XjXOTc?vXO?=&?PZ z7|7;UJWv<%{=RN(Nt6H0pi$Fp3;ZW2wHU6C;~vFxoNcrgkQ+THU2jCloVuOf5r08y z)2ei<)aSBTZ%};Gh*f4@S%TLDn9n0-!>$Q-L+Qvy-wBuB>kO=4{;vN=OWLcs}oaeWJ1g3qGSLaMRErydX@xwl0Do z`8YWm#rpfj`DHuq`ED<3VK(rc9+%3A=UnVLGX^T3lW!Rq(wtW5sox+#8vX!V7leIy zE2Zh&tj=wE)hS*VCms#Jm{~ZAlE$}cF{wXbiVbT;PLmhbVJn<40Lxf~o9n2vj>Op) z6E}zCv9r;RgUUfFavBPQh)%^hG;H{C!Ats9Db1e}!>-f0ft%HPe%EVKd43Hgo)Q29 z8c~#QoxBkM@=R#j4MVuLDJ^o09>k(})IGL|1aX`ApWoZHpcH_0TX7dn(4p_wdhH#|Ju;lU2I6rFQEkOm>_K8 zJ$E&px_8sIfZ-#iXORx2>qtJG-W|@GEfKVxKv;xOKdVn6`iN{hdFxu}=xf)Sn&>+2 z7!X_G9}?dsKbNN0VT}5B+~B{mu-|mO-0HKxorUl;d4Fc%Blz;AOt)QANJvOSg6Xt6CxMhf#&&vN0K%Zt#Se~CSGSeSQvJ%MhA8168z@ zjh>{xY{g{_eKcg@ZmMTs#M!heKrIdk4qK zl3|wa{i{&({eo|hP>V~8zDoU?pM!h*`t0qm`+a{YFs0O9c8oUOXdFP`K-t*XXlQ68 z)T8_I2tjDLx;_pL9>}2B_k^s!8&jU#TN!p%g#v>BX{o6o*4QkKy}<l$7 zO-Vy|8XAisA(EB4-@tZmnn&fWA&w}g_JF7^Nl2d+?Ks}1CDgY_n54EFI+8q#M}JJu z>qzc&Ju+RyWN%i;7@vTRxGM-n0b=#J3kBBO!+?y&VLUAIDv>Y$nFOmp&7Rz4Lp}Wo(7MD$7-ILJ6=e9B8O=jqs2oZcp!+Nkm|`OQy3|E z09@5$>+ht%L*5N;g_EexlvF}uKRu*>PsV})0|0>T?(Prg)b<98je!A)xD9L~;I#e- zjh7p3Y*v~uBE+y6&IFp@H*VKFe*?%jQVSeTQ1i|Q| z1JR+ki4RwW2ctAFFmP=b^*WD%-rCTBL&%i;ez?vD2jz26>Feuz{*&OrVE>_ItsJk? z`B%rLtz31e7MTZic(DoMhnN^UKlqA)@Xs@HNc9&(exiLEncb+b> z_&eO%NqCfK(}!x^BMC6*@`2n2OM_wD>DB8!qTOzYKC4!}%bPDhXcLv%)JR}OUdM?G zf?y0q@#ybq>FA)%k3()ePCj*Z2?K$Dpr<@v@lhKJ^YeY_t6aSLe1LRT1yL0 z^l7*PGt$J=ar1YG6v!=l8k*|rYFlo^swaXSCP!yy5`28O5lIB%-@qKPuMoU^3h_cb z$^IlA0ibSnpLoU%x(m7<8+ds5ZuU<1VeB4^rKP2hEp_e}=NBR>E)M^x8{T3qO6P@l z>iX;q4iPpK=tI9{@o@J8li%8sP(v2=K%-foEeD#r-j6`H$C13DbScQ3$K8VGSW#A_{>A9`fA z8x2z4KZ;a^hm2$loNoeL^7A`eSqc0A?j0S)V`H~lTWjfr7uChJSk*#5N_ubFe0m=F zqsYk~=@1Zz5D;c1D|sm>-lrxwA^TeN-2x$@;lif{!9E(k!ZH#&uPqhG4i>^ZLxAzF z&C#*3Zad2hICR!5b%inL=!5E=Bp(e(I{)}Q{l=*&J8$pSD(2-X=7Y-4&JT&X3ks4B zf`#Se-YDJR)L^O86BBW&h$b3797B71`}WpWmlJU6!>>kP-RK|yYU((|}X z2@G^_b>+_v{*Kf7tdx3Y{rmSfeP?FT;NW10PRPSa$g!~CU@mTMqTEO4Y!h^@yKZ<6 z3W{P13OQn8SW@qm6joFU3P}ozv;O|du5axjAe|SF&S%xh3G~9!u<1$eH>hQrLC;;~ z&j$a0xjGPLkQ}E+M?5$aFda}gSVTmR7i5*u(bRR8$J7vj^=9aJj@XaX=KLXEG@a1u z&hBqAGJ|hq)s$o`WMtJ}$u>FI>JU&+lob_SkpR#t#PJI-9~8(@d9K-?@T z1OWko?5Bm-=X;?HtmwXo3yf$s=5wrlEpJXY-G>cmJxokO1j&#fany}%Ruhj4lH-U7 zC1BGk=VWb)e`R9e-qe(WnVI(Q-rxy~so$zKwhS;`-3iI0y@9>fRPV5@+7d<_F6-9@EJVN41{akFJtHGr`AynnZD1;G6`q5W(;XqK!a+AOITtfTfyqBB!v(nc zNVUNhg$zW(22T$Ui)*F91WET9{&sis2ntjW3akqZ91RRSVA6frzvBqa66++!cZvs{ z$3*iDuukB-+4vTl^ae_O= z!oftIW<~y3T{@;4rArcIM7tcVi<{HL98ULU9k8h?gD8Jaweikr@y=;8GP0}Iq%uB! z=Hr!^pdu&tH8LOpW4gAcW@kTBI#b}>`>l=2#q%yDtkgo)w5T#MaqjpAxd_#?1rZT( z-Rqg5$jM{7A7$7Rf*~;`W^#1&p_GwzIP{ziX_BJjwHXrzRf3KBf}+=AD_TDgVob$c8CZbaiIt`tC>)lXeq?F*3z7 zM742e%3WDSf$#+lG6`&zu8%t!;!V&Y9^A(&<_3zp&fD zRDOPgOfMQ}}$3~MX8@VAN2+XF?-nEPT^b8E;<>jX*Cp){lkU~<@(*9d|U8g91Me6||-}C0W zI&7HWkdTiS41&oK3}$9#P}&64FgSR4+G%y%5>X`g(boX6Mu^-Nxbyu3V8 z+U4P4S{|M!Qn)nW&kx7b<=5pg76H$6ZbVxWwC*YXx*b*b@&eUpvkphLetCImXJ@Am z2O)RkBQQ`hMdV}xI2cAZ3cB~T<}v%OpKziunQ2l9CGt9^Vg)#7g0&c zL!a<(6cinAPZrFj52uHVi=10q0rm|I4f-`7Whq3>AwskZxKaJCRYk?MSe04-|A{Z; zPG%4vPG;o;f)<)kSy=34k;-c>d2@3`t7{T>oSaC+CrB0*S>N2t>sKewdxD3ChDhyr zLqE|xLtHL=cz*rt_~>YKQhmc`4i~gwtc7;p5cf|}zP4IBmkDGi7ytU4k5jgldY|?YQxT!l$CXb$ISr-b1XDxLt2`Ssp&x4 zhuu5YUu4TN5FA24Kp>?;P#pS1n`Z~D3{|*98(4AD81Go#401FDi z)WKU0=DBD$0YCr3$}XhJ&V3%)9myl{ykTKh^3OV(nNjvzdc|>r!-e~j>cXNfK5+8- zj3KcjY-}v&<)vtCEo5WU8YS;vW;y(^uh|@<%VB@~@jZrY27fAT?$Ya;#>dAOw0h0I zIf>Zc{)!f5`LV+`1?KPxs5%2cRx5raw)V!`kd&M$DJhaJKAaompHQ~V zXJ^;{k}IgG-5<@CcEKYj3PD>_s&B7@?9;xGQmLuU_nKsK$Hc&{wBd;fVIb;qTL1C5 ziShRr8LHk@*(edDjkW1`groQbJ^UmT$qdw0SUuj365w~gJHgfSfTTnhhyx{oGw& zFVEC!UwBhOV5mPm^`BPWhog_kSi_grrNYMAFAx^5PpBOonAjdQP~n>lGHI~2HOt?Z zU{YEs$j{0Hyhz{dt@Mq^@q=+E{tv%qf)M(xy4bo#o{5p9prD|`0)3-Y4^SW?wX#Su zO~2@M6XZ{tvYnwoaM*9@z0$kAsa&qnsS-_GZ}3?gqQDn0NH1`9bTujwG<9<)gZ>jt zD4T+PX3fpbeZ;SEv9&x(K`o)~bdlwKPkmf{H^_)ml((du9JWXn0^98EP`L4b{$Wi4 z0RXhmO**OGp8E{QTN=U*ZX{J`Y(M}C0KNa@o@Y{?bD366&Uc6vHRaVGM(*gx;RUp} z`b>=WpFn6o*JL>oc9arRJ=@ooKs~lQ?N)#ag2qopy=w(!?d1#?TIT7z^c!dNv66Ht zk&<-h20LG;pLWp4HzR-X#y+X2)NJg821w6>H5$h0W#oM5m3@}s;NS#vhCg(_Sb(al zr%K878|$=^edi7AznhrfNZTM}W(NCQTPyl93rrRZL{G1LNp0k#owi9W3Sj?v=zoFL zs{Wld#34=h(?#I zT1ubJ!VTRnd-#y-pKFk$ai5E3AhxoJ+*Q|NKtWbxGJ>JQ{#@q&?!|+AQKEaWgaj(R z+(B$o0=GNK1?hYx))p5v&@XOGY^wd~Rhpck7w}-*x$iny0m~_AP_uad;L+O*M98kM zJrZ$WCsKcZzu*k&%EP&Y8L2R0d@t-`x*R0He;?JDfYcrSsSx50{ubX00e~gf;7y3^ zpnD>pdG6TOQH6){Av!%0ACS-k!X)(?$>pOPA3}qZ1NDk*olL z(^{A$w8V2LH_90Ux9N7nPxp`SZfOg8_3Qr9F!o#Pv7qi(OR}XUc&bEa7J>5y=7ZJj zrTC@?+{&7dYg(70H|b`y^S0%36*&>_W8pkE$h-4tM+{OSp%L;PD*WL+25%5*Qs{l> zUnkzmZo<0_8|M3uYo=m#DJXissfL&P@_LEz>aS0rejzk=w{)wksBYk+qh#FtttupE zE-drYYjt$k!$L@Me~0G@yy#as&6?#qmQvAESJb{N6Yd(L1!!*Oo}J?V9`@qhB+Hzj zfmdcFQg-?#C40L(&3eER#~+n4<5?OlV87%mYK7|>c8MgA^Y!)Sx|Va{;ZK>~t--oP zXO^CvYVWUG`dr&DY#%DJMh6h7@iu7cQcaZKU}5s9Dp9$lzJp19uxiG`_DQiUryjNl z(ylN3y+QI3(nTd-y6y9NzoVh7vtp2yq&ermmQY4YDHRbFER}}VXnl~t;SV-tXSvPk zN*{xGN`XM&wAUjTtx{kIefIwF$BpQr76k`5*ZbV$vEu;GZn%L8PmScyUEIw&n!RI4I*7jCkC9UEV&FaMQm;T7BN*e^J&Nq`MpBR zPAex_-HLj(&Oiq69Vq6Of5v}u$!^NR^~$OcWj)LE+QKjiP5w~T@n}7FN(wSF6-W1r zWahnv%ln#=<}UxKl}bb23+S#a6wm#L#*XBcW=pVYDnXmxp!Vjx5D+=SXawW#g7sVm z{YG`9x{%v`Wy)m5(KbpnReec!TPFYk5MlVfQ#tB=e5JzU)IEdIgMJLeHYzOWEIc_l zF2|U0=bGwjt*3|95S``nNJe~UTuj%$+xULyh!`>2-GEL+cF%)tT{=6Z7;rp3cK-g< znW-pHGf4dRmD|McLzh_&@eG6M2L>E8b>NM##L=y<4^gk!k}6gUT5)GS{dpI2ta7eO zOX`4OS_O>fQT_d3wm4WdP_-bo~B^-5V>lEqYE_>|pPx zY6z0|-X>AN(BV-R0h*m6gjuuUnTYmS)3MLAo2Bf*Ehvqw%BkpOrde62r&;$UHor*~ z4+Ka&AG!xV&K2Pzx0nG;%FRr%t65t&v>JGF zIFBdmByZbukP$5gWDWwglhXwtv{E5_T|$l6vls) z

E+-zcjkW~P=0m9AxwfIs*k4gIFtopy(yc+pwx4$}$K671FTk)#D#Vf==7iLKio zZj=rRH*(cau4_%UJyxjAQ`bumZox|Hc{s`=_)uD6xxY|QRKB_FV$RuGq%_p9sZ~q@ z>MWq`Q)0fe8cbQtTd%OlY6NU`a~|b{pLw{0*8fUv60ToYj44ThCn$aal#&wEX7Xz+ zikJlhA|^{nf+Uri=<*2HRwnltJh$QD{83lBuLY#QTsP{?l@$3u1YOnqD{Fk@t#t~b zI*LSs3u^;*NA8N1Q_hJO_U=c^EVrtvd_@={{jX+LK&p9wrxfPW&q2fJ0X^acE+E+MRJ_!D){3cv97jD%>lE~bbFXP<0 zjGFdxhnMOClO@H9vhQzEQpCdADm81?Mx9K#O;~*l^EFLouK}*T$TI(gm7jR^}^wckx~wt(A-oE-)nQfZngjA(2w!^N5Ei}Bmk448mV66Qta zEp3$QJ5c-Aclnog?%i5^o42JplIBSQomeyNo>GT+<^_zrPLj1ns)JVSvpdCOFC`WW zQbT;r)~MeFvE3x6k2u?7K#jcHY~C*eDaQ^ojYEuzU-Gu9N)MlYy=SSJ`}K;|pNWFh z2T9=UKZ5P^B#@#%UL@bWEIgWa+JsAbq>@tn+=y>k9|(`_Fq1N; z)rmk_*`FQCy@oO66Z7vcfiI|^A0yJD{H5LF%0Mj3XQx14Dp%LiAvHBQHhn^8HyLA_ zc@PWlY9bn}9u$d)UIilBE7~tLCaG%B{OCs5xzL)cOMB_ZsLr>| zsdBBxO3-_t5^Jf=cGUFTc?F<#!gi^R5bhiwL?8upm)$7Hu(oqi^hmsowrQ8_^V06xo=-%GghmH@kC#*XZ8_Yqgc?bT@i$#Mnkp z>l@I@wPNmF0avNNJ6D&HRb_(nYswla&Rx)C6^Hd?(g2XgK%zn22WUaWVbyGj%m(*j>M7;UHfg8)tGqxBs9h znfakA$zXs(O}dRxlZV+Hy>Bz)zZtVy+A%baF7z`-P2pmy4T&{hc2i%vjhL>~K)|7m z-G(1OYW%SR21!!Y{RN_OqGd3Xr#9J&@=cxF!EOEX0;UDykm0iE!X}j7@RVD9VW6MP z#mwOyAc^=1M6gQ1#r0JU2rc&&6F;(?Yo&}KPJe5~JfpKAy@{!}8B6g57gm?3DU3yj zQg}Fj8s7KLCTri^duUnH#m$=)ai z#+4mBi(;@F?_sQm4=D>xJ|9GeA@ImQ)RFJsEm=@XX=$qGBj1>vi$itG8r>rF_Zae{ zSC0-Lfqo+&@u~Em9{NzltJzdZ433N(FJX^n;atf)o&$sV61<1MWo<7Z(2VK!%+oCN zCMZ+D;Ng7k}**Nt2#$|wiG z4Eb8VJ!E>mlO>oeD3kVoCPYCF)X|oMk-lqO`R*-Dq2~f>t`0IYqBM95p1hnuUZur7 zLI)W>{F0n>zgVUMAg`<~Pa8d@3o&hCYuAMbX5%z5y~8ynd1H7^O{kTZg;owRQ=H=S z8>(V$)1@*&gZ+9{^Ui2lu6)q$$?f22HIH};T8Ba0{7;qGXiP=0h(2jWRa{QTKt)!i z$2$Sf#8xn}cqB=uq0?}R5GobzYNv;^gzRQYlajG>MRmA0>tu_nAb1gT|4T0AC(9WN zIs5qneV3}Gg!4qpZxnWEj)Mp3w2(GrtmVBR30N{(IK=u7iq7MfWvKHV zvVV(AbKW*aWs?d%&*;Z~{YC>Dl~`T8k!XR9vI!--pKcv%dXnA@dplr0;e>z?G+ztzFFSc22fFY7Zk^N4)jKvjy-Y=s zOJIZc7kPFcrn&h6#w0wq%00K<6*;-pIob$?+fivk?$|Rwp?$hE?o{zAsc&UEu6?C# zSZx2(WR<=D?BkjZx#btQf&R0vc0EvSfYtQe+UGsz zH{=eJjl4{=@nU?f0d(uy!loQ|s4w;tNFt}V39k|>V$MRM?<grE0brBlOzt%y+lSJjW`}%F&120??M?m{%3nj> zb(cIM!D|x!gt5!bzVcI}6t-Zr+9bKKi7IvBzlM75sp>12`KsOyZek>|%8tqGmhT0@ zSHVQ*MhoQagxAEe4X?fjj~g@{&{+Tif0Z+xx4R&cij`g98D%*CztGl;bmE#fYRegK ze_^qLi%4}E?#7+(=&)C4{Pf>ya@r z7%)(fGeS)?Ua7ns9DDow@NjTGw2xk`$LDrT8_oWlKA#%B5kIQ4Sv8B`ToWx;BZW}R ziEF-p>3}+j9@LrmKg*ETF9Q4!(vSem7XVRIM`>wkM@Ppd(Zuw$|MKb^-i@V|VSGkL zg#Uk14I`Y$FC=} zViR_Y#IjPZUM(>R8y7bz9+ffIN!4T^XisP>_$@Fox7;4N_1a&DJ-;siHsDsrGws~P zQJo^k!~xH-XA(WP9F`lF$e!Rq1(lc8pP^6mQB>5*UaM7_JR(4}Zv#=9&f>`8Ney^V zzuVzg*7lTL%;1vzhEdf%Gp(Gcr>^~R(oI)IX?=29fO$eAO;24}ad}2TLtEkJe05c8 zD<5BdTQesxk@AW5>N+em%;I@(jn;^R(p_wA4#mLd^QsbnJ^!)qv!i|QajMh4=75@Q z>xjshYjd-x)pV(X`pcb^o{o^UuHyO1*BGGi9a#YmCo_Q&yC^Jd0z3Q#!t#62qxJTbxMU9@A4hapm@twlv8852`w zo)KyY;HoucZ)wW!WvV}trYP5Pym3AW7bkv(Bg%#ZcimpZ2%7cT&cxZOCf7*+Dfr7$ zGX5EHvM#S8oXyvuP`fL0xBf__@w;Cm8@-f>t?euxSE%SX_$9+qCHRFbTsJTJ>oA7U z?jJz6J>`05+gs0g=NFeZNVU6izdb~2)Z?RN*4RcrfwLfIkmS1_rrmnrp}*|$qZ}Ir zg`px*s|~MR=eJ#vR=*)5EfXHUAA=Oq_h}aGRHAxI&A*>Nv?6VBFBTIKTzL0vmC)Jp zsS}KCy_9~keBF2^K-%f$ufpJbR+XJu!dI)N-(tun?7t}aKjf_JsQFcAh|_Kd9#UMnk- zP2>rwnLHoQavW~%i@{e1JH9ZAthX_te9qk}lb0jDzK;N&F{aK_uxd8WKF7dFj4$?;<+{`Oi`HT8~+xLhaU!Aul1pGPe z3crirVu*H{o54Bc@Mqy{#&bxi>ZwdWUG26|A*MTwZ^9iK&wtYLI9H+tj_}7Z;%f_J z+_cpumO4q&lkmtT;IlT4jda|zVRXm09uE(?kgk=%%nLYgQ9k}*WwW=l@nXk1=zk|0 z!khk6(I__;L_|%}j3Z05%(INa=&92Tb=?{@JLX~kO|&mLuby*$`y&?0-<>q#q`w`KiZjwLx4RHg#-D(muNS_5LGK*WV%iHdbcb(pYMzc4@d@5tgoVqr;XPJ!Y zN>hwE&a&YBL!3V0lXd_cSOmf}RxkR;f%ypcalI-la^V=2$EA;}>zSbL*t3$7l6y&T zt3~thet@13ktsPSXq`0631bnDGPkfK&wv=g*o>SJOgycqctxAWAp|h_E(+#m=aov0 zOck9hz!!M_TNZx=8&n+S#dA+1T)RljCMm!I>F|5vHquV8d z+xtM|)*Kn;2eH`Z-sg-AK{<}Q^xb8;#o#gI&;h=BWSAOLE>XGyoK(o0-#_46jD=pE zvwO%39(4}5!7>`Mtk&McK^6C`ak!t-;cjG5L(2pke;O2Llj8E&N`T=)4Li2Q4;Br+ z1P!y>$`p^Y<+R)^3h;Bkk5-sNA>GaH8|SsX4)!*}t^^Q_8G#YAJ~91xHkamB-Oy_4 zzra9Z*tKF|%@krY0BIJDU-_h7C5GE0{{jj^yWtG4^vD+Q*dwIQkDtuS7KJ&nG=xBI zbEeBu8@kw+lRqBTqcQzlQ~6ZP$0ldBXKwy5<50;N5PaRcUFkfLIYdo8rNWPbKgoOB z?S)Z&yCKOGf&D~z+hzFNIG~)}&u$&|_!mWG2^TdKMertlf`eQ2sLxxi`84^1BsHNN z?w7j9U+LX9EaN-XT={<8y|1Ps{G3=?HVE4mEBwbM`Z`%0d9&PL#9#8~%?x%U2zK9B zmyfvA)ViqD+$`l@Z|%X}aoiy`6s6WD( zF^YJsE2$@2NBTx*7}5NG1hOhlb1lbgG-$z*B9&&+TI7l{4e|d+rhdS+=Ms%dge*6{9^ixgSOtK3|ikE6f zs2zn}d*9+wSwdoHip_JgKJW<1yB{-DO%UCd4-Pf|ulo!SXs^U%chU2aQX}3nZte=KT-8V~34r3a>ABep}`-}ZhGI8~J!m<`CkB>=s z0}c`F{hlZqXHA&WV{XnAOBfJ=C1^IB5&Ka?@?tT#`o1S5J7OVM94GC0cReU=&Wsp_}Bf^vhdJ~h;=8S_h z=Tpo|mOl()QKn$`)26(K3}J`!>D%I6cXT@|bL*B7S#;Z7Qcj+3!%RB&=8%ZVuCA0_ z2X!eQ4+x92y+6prp>%q$*GR^F55I#!-0jEn!0Y-Y;ggb0cvgKG_jE??A$XIa%9!k;Gd@xb_uLKHZ3)!1)d&DSSV%3~NbW$Pwq ziFZur@HtUNbbD30?Vd@m`CA4r+SoSFacJ1E2do5a9GqCqX#PU+uiO^3i6;Er%8p#+ zPsfbc`z_-InTW&|aj*=XR^~ePc?o4AmdADx!%=#G8ZZ$F=>5E2qfQ(F(BvUI+3D!p z#bytFob?-lNBeWXKqo5nyU~F8eKjR?vf~;fqDcN*_x}UDKtsP?hV9D;GLrBgKR6Vk z%2JWpyAp>g))8^dfP~gYm${XmY1R~;p0oDp8C&6?X7jSMzady$;ZS=%)|P36f! zdQVyGft?yPKit+(m6>2JMrYV`$V8}~d@lv{RPZicTgfdOvbFc6J1PtKBn4?2`z3?f zK!2W>hIwd`wT7lXUiCYQ)<8i?s9H0)sx)>@hoS*OkKHV?x3Mrz18ms8r&wuwL*^S#*&i;o%F@3Tv;2yVAF&L0L)jRvQ&#utY+`jz%C7p!PmPi@$Lwa7HN|C=T zSHHWOsKv@4=~h1ssOZov>`29KodY^8rqV}8LNsiCxAG~eT-G8qL!3@GQnz&O8Lp5L z^J?wwOt#<^RP%{1seLa0EUfdO2Vi%1wzmk_+}z$p5qShQ3oI3-p89pJZG#o~>${WL zj;fMEAv3sHJF;_Mef|A+Ur>k`r4e=6-MRq%XPkD8tGlZU>-*ZX(>QL$hwhPQ`Q%u2 zs2r_cGhQu!a{h<2SIKW*{qa+J*_82)P^QNgiS5XZ$qXAg5ykNNts2S8GU;l)mA=AHU*Me!Lt%Gy{HsespUK7cw3Nj;3Uf>N<~3J&h(1l8 zhS~Br##)RDHJ54H(YVUj=(%-#FyEQyo*VT1K(N?ihU_`cXz*da!BT?h`>Uj9|4kQ; z*zAe7m*;XM7`L^~bA>><)JmMJsD?wy;&?p$M_-UqQBhv{=F`VE%`=szS09HDWB;q$ z9<{l;yg2aEnwH^d0gxj7k!to)ZL|AIZls2=oKY>|BNn~Axw$i3D93b9`_&*0wV3a( zYo50k|Fk($WFpFBR|xUxMvm?y=kz5Y|2Nt!Y_!bq;VO7~wgOLMr^tp|Of|W(r##k( zRls|2halb1B{po#CK>a?1qM=b`hJy%S~X?|WPw|%31g;Z3xz6!?$-Ou2&p-AET42Y zgGI+?_wV_!5#P|ep1Y;7!zayOuvz8HUa-~JAcCBwV( zF`|F_jyeHIm3lit+wcLXWX5=yrl+=W)hcjLTHX9(q(EIuebTSuA_s z;CqJXneO-@>CvkV=;G=;WL4}U5a?E&Z@!}zl9%v$c{p^J+FkUX7-T~m zw$r4p=w}{$ld616GXb(PZ8pcdxY$)g-4EOQLWfd52kI5UT4I(lV+)8Fg@LGvMrikHeI||PmE*(ZhR=-l z1o>90iHvsL?!G7)2q1s#HoFZfb>`|z$t2((2A-a6fa2Ny-2Bls3Tisqo0q@-$LDm$ z$pl|gpASDL{T({`I}|^B{_oG}4J-S48~bN=cTlJmBtfrF5WVJDx7L#EY3Uumwy$f< zkM^{T91`_Pceaio_5G%91k%6|PFhqp7p$PKtZuksA_u|LTq~>3X-0kw_r(qYjwbK>n<#MT-M&lNW zjA$=XOFDTvOJ4bc)UtX3HJPPy=f(p8JsS%{tJJ3Pwg3S#v0~JLaXU`vh4 zwyB*SAD>~-=z;IUlaIwr4o>ybtF$QVyemZfI&087c!*O2U)8=^&+U%TYb64Y+~Z}vf`{Vkp(kQ<#|_zPcMljftwq0 zdvb&FY4Q}zm%pv%T%mODpQMc9MwT{ahI*Pd-Z^~)X;mtFfgx;UZ&qr1Upk}-bj zKy7ALF$HUDbK@u6Y_I`dU2FQmIQz6|O#R zFA2`8o#|M0>I)B5TEY^5ulz4_S8 z#Kcfn%PKTydUY&GQkG9oRpBYGzIi#p*tI_UQs%l2Q3wonq{*9KH0iZ#8niPo^G}|{ zm1&-*v0vJmuMD%6(=#(O8vEu{zTIzhNs>%vHDykXK!Ixg#d*%pi_A! zbSy3OWaPI^;T5y>{_Ic#y^x|sKwS%MF3Ob9?3^fsVYy{#iuwtPD0;j*%T!0pGdsT`v7~z%vWLv{6nhvOnVOo|rZ%rG^p_@8 z9GFyhH%7`{R4#8Vl_h%V8W`HS6cUB@t+u?(ZJXSL))jVwReqh&HDD)RxL6tJ+eGKJ z5uWqTa&J~_F@6TQQu!jId35RBo*H_hp`yHeVBZ0VnFXiF@7~01G$rMBo)llWJX{lL zXKi6&Zf;?f*fO&^+ES9yx{llFcm*zU8;4%1Pd3+bPw1M*KtXMu4p39O$F?pm4dy1e zS(zCbS_P-n?41rfne1w9pl=nE93J=!Fs{r>L9O> z`pJD28Z}+A1JtMR9o^dqc>yDPX;?doMd+bToQ`L?rYrs#Om%$Tz@F)J ztv#)(e=oPedVNW_fu51Mxov7c)OXO+oyo3x`rb+TS-H^uTNA}mM%sSa6YJ9rFADGn z+Zie?u5Lo0pq2Vv5jGa4#s&t#xrp`Y#-xJ&_5bGPUu$?7Vx@0nY46dA!}MhMJJ`qW z8P71=eZ>(DwpQlQ@HUIC8DAZ(@G&wm&@)VI0w&#l4=J7UeXS2UR37f*U}0flW~^@) zo&_!V-EMNSG<6P%89g+jk5wf#5bLAs)9pp&L$9&KYI|*c2Pm>V-yC1ijlrQtDwFK> z3{6a}ie`|YEOkd-sI9dnbXAsCNp)l6ZDr|=K-6v4NBUXn8#?$uAB1%H&DNw48+}6? zcYorwGy@fpWy6Q2x2@5NnCiaOv9^+Q!i8ZGWgW}V1))Z&N-JwePLc)Kg|QqXP2HgE zvLnXzwL*1OlUES6;}*wq@jFz2p4I&-D02{r!_HR~BxSaMU-bI9SlfC8_TXsW-F zj2NTImJhUi2H)8?w$b2qk5eGG_jhon{Q>ED$c;hRzw&4C>{^l-R{#0190I-mQBp0EJgnR5Ug={$X=&V=-tH3I(UG zfB^#r3>c>bfO-M3Vc!a{+wANtToMBY3>YwA!1(Rx8Ln6b0|pEjFkry+3YwAz<}xb^?J`+b0dS@9c`^`{qw88>2lTGjm6QPu8#J$&R)d!&&X_8`->Y^lc6WJX5??uYXKj3-v$d_gqobp5398#pv_W~imP zxovbAs!ELA-I(leZEkL#TwNz>_U*~VrS)yh&U|lsYirL4V!z1oa!*Hl*Wl>t{;ufl z#gWNn;^YatoAZ+k8z)@R;@tAaVO@71Qii&~^X^*Q#c$kMog8dwY3UeWJ1Tm&SBCpK zTU$E^#}=XecGt!Ry4zYi`i5T1*s!}gyD+nIkO^UHacq2M`G{=YS(-ykFK?b06}+=O z)7I3|H#v8la!`xI)AQSCkTrSs?&283Ttg$h=eUElK)+J|&~OM}31-HE;wA%Rd-DAp;t1Wf`tfP~D}wPe=M8$$1vD z&_HwH>o;y+{p|mK@cq^6_ry#awnqb5)FK+8frgr?w-;dnm3(PvsjojY?tX11xjsGE z)jWci`ju)IIHKTHk#ECRMSuni#r2!yq$+`f2b4G!u0-!%xzU%V{+Rs6%^#`wow}BA z$cc2dd$(^~`RakBZ~H+?jEj zkeF)D549G(OlC|}?->~(c$G}%1?m|2HAOR>r!dbs5OtXTd{_QkCJvmv= zx72$EJE+J8gU5?%w5FldX+yo^kx#Doe8PUk0g?~Y+x{3MxHHaL##L97)TDt}3a&21 z%PK~1;`;q{4FZ$)({zKZ-KrYeu^@f&_UucME8>N)0EF?5KyT(sGjkd>9teIDQsLA+ z`G&9e+&l|P4u&c`l(DZQ=p~5!%z@Vq(-LDV#bEN?AzwvlXJ7kEszlV)iZL< z{Q=%*^i-#QVrG7#wgbu&vGtsl(=K;#12sGWjq?dRCMnN~0la3pmF92n5>SNM?Wo7k zh`J)2l*Qd9&~?K1tp+!73*~X@ylQ1ATu+R#guOm-y=Rcck^L$iqw>q67QwlOphutl zThOQYpbpmR!phhJM8kDTS7mdMbF-uMJy3e~RX=(b*J`4A&(4p0JBjK&dy9D0R-Hh7 zsIjCF1AYb}!+@A!d@{nJ;^4<5U$DA{bnl6AWc~~J{~`HU(Y5&Xj3F!C!E6r#p*sZ} zp%XlEz;UYus;VX#b(`q1a5jd3{T;%FkC0%wD3eLm(E8>;i6NU<>K1M_Oz(+T=EAAW z8b(y_c`K2JU*ErGX>%Y^&(2ie*dYO=S)U3}m*8Y(kuq}Xg4%s1+dinUG+CX4P1w-8 z2|w&HTeTJT3AF^;;q{rE?`)$8dSRWL}H ztr1FM1VBA#tHI#hqm&KYXkL1hrID1Zd-dAZ!cdwr2OBdpt7BF(J_iqWyd_rR?tO&_ zH|^_!0oBtB10~@ODfl$xh*S%ovT;b-EH|YaJYi(z;_)lYv%G)f%m-&~s{1rf5o`ij zL_=n{M>fbsIv8Uj%*7-qt6j3s@)%TKnwf86jN=1_hpGWNv-nQ7Fqo#o!49s$KBEy_ zLtVUK2_&bsYW+ep%AhR6z1p?|GuaSCCG+@z`W}w9HTx-IMWy47ZBN(%@odU{sBTl&8s8#_o>R zhR)8#|K*K8-{N*xIBL%r+hQpfP`i9+nOzHImJe&$&%}=@eIja-)`m|Rwp<$+XcJAO zMzn?bo9Vn5t9N3ue+jY9dXuf4x@{pOHjmVM#tpbyn#aU@AFcO{9qUeacQQ9I@d`{I z#!cp#1`rYCY$W|7_tBjLfwJIxPcC_IvOO=#H65Ca<*47IprL&%rTuaQ`nuGNo09S- zhp19i&k-Kl8Z2{C*C^^K)z!2w>V;%`U$(dEeRg3P*W{vU{6#eS+lq1X$XT16Q15vl zLh?Z{zMS)T44;8x*~lKHPiBFf+a8^u+C_{MLlE9ZFdiptX=$aU5>yA~ICB}9$-&mj zoG#H&mayHC2v0?oS4iA$+Wn_)U8geVHdL|d!jnw!cxPVnJ>>JPoY`7VVE^P>agPeb z`bdh#Lta_m%&bIv8E#=!u-A+Y^>^Ph8D-=|>GQLQ8su%^=AZLD(f3O$iS*RB_AS{M za=H7%T}9vgvR6*BJj`^UY&4?PN9d+4RH1sK*z~E2_P#j;s`o4>3RRq(PFE#oaRyb% zify^BUFY{r?Vg;?F`&Jz;#*mhZY@Y7=vO(vKAEaUNuwKDR~n~%^Yfc7jq}50&H^-Q z__=C}_EiSIuAR-kBvm0cvw*bxoXn2t(JXuU2j?F-mG&>~xj)b?iH3q4j#KlMyz&}B z(aCwm6%+ej8|+RF@28*BSthq88dH-#cCMJk?v@+T-cKl?xh?&6~&Rxmf3l5fMEvCo2lO z18dMmlQs|KooCLk(lfQ6(0Fw(bOb0|{r^6_OhrXaCKEaj`~6_Nqmi{%osvPng4h9i za=mAvXD>mo!n8&RGvB0opjxyDRr+l#$;ircWCF%y>Uy~zhRNU zG)u99%7G>Q2SXRIs-U!E-wISDBi`V_m-J6Pt0oCjX)rU)RKn|^Iy!ct$zGA!tpK-E zsw?`ode689S2g3f=H9wMafPIVX#i$@AV^gud1O4y%FHJNfvq;az~~GS=2VrjFvX7o zW|_mtgUcRIljc_lT3KJrFcrM7Qvivi!RFHZ)L>_2aW0P$DD!$-S#DZXpq2=OHIYRf z-CO7@uap4ZC8;ZV=R!o=m+qu2@S^loWoogY-ZPtJ8l*4IfM)JSk zUb{kiRw8*8%zd`k;-vHP_G)>(;`6;X32T||I-&;PkdMSJJUnSXJZ*H3|Z z&s?Dc|J@dzt!2d6aATbLeO9GXAj!sJ)vd#u_bqdMiH5?@)Qb^#=EkDd=BKAy(_~oL zOtMFCn5Cj%1JhS~LS%QQ#!BRYSq9|6MP_O9I;Sr~^xSS?qivQmdqB_Kka%?ymem6_ zb6V4F9*KqQp9)*+De%a;aA&#RN=eN!ylEGQL2lp$(Jpd!a$=~+kL|udG<0}u+jA8` zIg>iPX%4l$iQGDLF7A$0n}||*wd~8y`2i>KYc|yfU#|ckxmZBQHfpCgOzMKP-x9vw zvlOHA*lwMcq;+}ENVGmf*w}7~{>cR;J3>T+_v$^TuE**#XBh-8TRgK$1FCp&;2A_kBQ14l~5PDb* zs<*hknjp%WE)CXFRBFSmdD1+v%!4{gdz9`oX`7*y`lpw9BM?XHJ(um(dsdJR#`l}8 z%3v7@!vH5s%@>ER?VT!5Z5d%-{IroUwl{K(6_iyIAfs-BCo6?&D}HOf!2`p@y6zHh zL1ACKHN94coY|vhb`;Pvy)wRJc#Xmpu87`+I&YoFLZ17UJ?v1iyVQN+FbX_9v)B=<7`zm=W`!zE2JM$vfNzM7hbXD)Q%E&h_6 z@r}*SS_I=ZX0bwr^16RN%snuE0&AJhEW#FzGshx0UaR-qKD{)QBy~k7Zm(0d>5)Eq zIWhG@OF_n@0!$S>9|=T{uXMzj%kVnm$0p=^j)P*1R-t;&wk5OU3GA07^AG75)O+TQ z9sMt+=dB&|)-D!G7d_=Ja5HiiSL1Eu5R!-2=CC~l&&@0X_bTauG>>bWgeO#K$fzDx zg&3_eeWue)m{Fm6?PN7dmiNU*uOGRv_xuj1fmLXvC=-KMCh_!a3+S~aKbI0zkWic8&A+9dRPd@mVTBm$yY-nZ$jY4CP+l1rBiC?p?Lw2S4 zS~^GXo1M|CbBN*DL#=wPuh3A8F=^itzdhY%EkYH(ui$Slykh_8%%$5mDQ-~QynX4* z4_GtSk@$MgR^S?IO{8RX#W|%@frNi!z2{tGGTAinW+mN8LeH&zFE(PU*uloqI1LI( z%LhBW!tdZHq36-LitBS0JwweL38n~3@pK~g?Nb=sY^RH&kS9bEofgzOnG>f`dj|EM zpPpwsR_|GOuio=!sW~^tV|_PQJ9Qx$Qy(y$nR2EiW0bV;^)Qm;5V8mb%)R_VnvQ~5 z)7#z2CNyUh-C;v}&lX>Xu`Ak?i;PAixos1TTkTI_zIId2=><^~A5`yIh*0l&56Cp* zCt^zB(2v)v?AfRUG=oE(RRmaUiY9i@v)S6WNLlqFqI_g8eR08}dIgKfH{v7b(GL&v zRrvAC8=gHF>{Pan0R1y17awo;((&!NrWlcPq~g!Z_K6Z0xApm0EeE%j(xZG`9bL4a zJ@x9`GYg?Mvn0;5#6eLTv;G3is@_#=JMGRKlmZ&Tp)RU|ELM5LV9(`D&8weKX%~W? zT&Krzi&-`QFscwcU8u{$#mdIU&d$zwpU&(>$JTLr&XvESR<*A?d)(vmsUg?{vE3oo za{Q|1PDY&UJoP)+3O5m&YaAv%K~9>_o=6AwpkVfa@m6ftYcYOygHzGjH^9@?$<{Bb zY?xp$ES0&l?(O!n1y8v<({VcYu0A#i5At?(bxo}uMPvr+x_JBhYf3UJ zCsxf4m72(}2C6u}?ArSD|zMuG7-id~J-IzO$E?r`%IE$CiT}&w$%B-x1!hjs$b;bhHg~40YB>jI0?u#_ z|N7o+OFlxq=Y>?7?|;xK1;0kV(BPBMO?+LeMU5AlFiNV0n5#S%bBpXgSS^IeaMK08 zXCUsTicFaZJBWM6cejh9#a2SQvQGT-a0&v zBWoAW_x$ej-Q8~?$?k@1$1KYvDJB_Yi)Ar0Gcz+YGmV&;nVFfHnPEnw(Tqm(>+TWS z+HCgTY?ABr`{a*k+|yHCb?UsQPF0_mUc$ZqliYhgJeVjB${IPxBnP`g1tIw-yY(xn zE~ZLy>W-nsQ2qtfdp5GOS5a273r`_tRE`eEBFy#Gloh0{!#dWNy5loiW}rZ9yD!CE zR>m_Ae9?Hl*H!tMVcq#=AI`Ow7i4#wOWa~7stSur28e!TYrf7&MNV4IJZE4Yn)x1@amm3Qm6y+7w)Ka?91ng=>n2NYn zWDoJ67vX4iur4pPV}EDZ-(Fu%LDR{v>GZkrxT%t$%wh1i_j)oiE87=cT2U)=skyJLOTX8Vc%;6<{7? zv9rKkOG8avRo4_T3ZDyu@h{nVwk^g>ThBmWOG86bOGaYk+D;o>n$&PvRwl*vix&vmY zAg8PzJgB?B+3u~Qp{gV==bkYQUXanZ{d?~I?YbCuEjdL^1Itz%VXPp?$uWBVBq`UM z=cBKqrLLi&uBH}PHMuobVyCDqFROs412o_#0~9n%PjuvW2aCLH^?@tZl;re%Qzw9> z465E(Q^myXEPaMWjg^Jfo`1(_XSOZ7@Z$h}v$e9iZEW{wu`xKa>yUsQDT_3aQBYRZ z%AMH-65eg;?mAkUV5>B>B5TGcnhWD=!MLr~-%(Re!NAe0A0#_eOQeUctb(?MWBb|C znlMo8TQGFCR7H&x22}KJjyLDU)k0E+hZ6-YkTb@PmgbdIj$9_Ld9*T;rXViul3aA* z;Mi8N8hCOW{IS)Mbm)Q-z_Pj%T$2D3#4nX*MkF@_tMMKOQ*B*Kmu`rW*CR{?z4O+7 z@iokEuxi+-<1-H5e_QXFFy9@ortAd2odE*|j87WarP;}ep`Vm!#p9Q{8W-U%JCC6_ za|ZpOsh^yv-tP{kW8ujg_!VTce~a|&{F29~_TQrC-Ek$UIwY80gbF?sEz<>ec(*P`q z0RsjM7%*VK^b7+A3>YwAz<}u)1`HT5V8DRs8K!3#Fkrxd0ptG-dd4ExfpTv%fLbRC z{foXkhTGpm0UD>!|KkrasO>%ASr3rNz5U}_ntHwGF&irjvomu`t6<$m?B31___MR~ zi_56X#tpx>wLA|D>-_R2=EA4Q)89DQ+(z!7Ys4XPeF?CHxrNp3OW*OwZtd*uo%K9! zXLpyVAAE$zY_BYVjh&rYM`3}#_cmsyr)F1n_dc>;U^F*?OM#ZHZtdW~r`}qGzBvbo z6fdkJF^9OlmHFA3`IU9_iJ`24PcpZ>j=Fq=kI>slH1r&J|o%|+Zf{W9%1%3XC`M>P{*c(J=mU|npxgC);q@G zcIT#MmbP|@g%t4ky@i>X#f{_6Iy%~008DdrW1sk#JI9Z?vblY(*?0^Fx%;zEv_s71 z%KQw_hjViaOUtX9TL9LVfFEC2URzn51N#n*#~IMg=k;OOH~LnHSN@aN19xwTG(0Zg6ww;%vw5p|*Ga$sueUc855X za38s?)omnTq=zSS?XszYSpi(e;>sR0^|w&SU!`u-FI00|>aTylPVw~qKdv*IB+dP7 z2ds}!EA!KntN*-|3!qq~CodXA)O%X)iIAnx=_MQ{3kjG6w?bBa(BP*pFB-8-m~o)c ztHz*H7k4H$v>@d&QoMau>-uPwp#(o;=m8 zCpG!^S4bY-ze^`!2o%r7lxR{sym|Z1b6$nieF839@%_y|UAa&8_!Wy#&PQ^*=#=K59!ra_z=La?)#0-zyZ(5)N8C-@hRzqj*k9as3bf{lq%6uOw9L zCHd`p&uMH^z;cu;X>z2bx9{A3DXNok>FbT7ej?Xt%)t`9^X>LR)ZdVN^-2=40NT*e zaG@>V+behPaUnXuvO3c>J`(ib-MaPOr*3g~Et~g$eSZB3?CFcAxBmLs9Tw9dKVzP|q>o6x`rm)OcIWO30i)*q*>GmPcu4OVC>i7{&-(E8 zBXSDzhwp7hKDr-zV{v+H37UqDx+FaDGcX1J2o4&8)M+2weei%pKVjkY)3p@6cb@f_ z@j@;3yCnCnQcCy%l}7gF@-$vQynFL+3@YIxr!^FZ(?ty&iiVd9?3gJY-MaUh!@mS7 zFC1<5fP&=iQ)>HEaMaev+Oj<59+6p{dq;IYS)P(iIsF5E!uO@IJ)yEJK9jZ|FLmdB ze3$gjx8m+?0QYZpB`Gl7CLz7{Rv}{cTq(!JRGE9EcYwJjrk4f0dyFd7dGhGytvk=T zWn({Z2pcV-uU!NbdLbe^9uK&#DZik)Jr5Aw4nc+(L;^A$ICkAn=`@McLN}5e`xKERw0ljApQt=Xi zl~E|s=kA)Ffg@LrKhu~m^_Pbr$V@;EX{>jypLV^gxf0~|HiY~-s3Ca z+0c9vp07s>iCTpQ2)suhNtIM}D^=O>y z=^O*YnCW7K8na#xsQJq7(>eH0=K;3FhWq&yO6O(5PM)u=rfvoBSt2)^b>-?-XSSKT zdezBFWOuaMRzWiF#9M4lCM%OGK{Zy#E#LBb)sM79>k7(%lcHKfQZul6q$7%-DFXPj z*-TN*F@JI*o$sAL(EmMd`pWuoQ`_azPqg{~FBD;}tmry{Y89ih10H%VH&9j3x{t8z zNy!u14e&Ik$VFRPJsPSNfM2QBB>93yCAj@RWsms%a#a?3t(p_N>M|u2$~+FhPV}A$ zb8(u?k`|@JN>JljsY8Shqw?-}Cj~xRq9g{W_dEx4@Q+||W?^Y}kAPZE7pKrW8QMu3 z39Z_x#g(Z#NE>4}jEUW;cpP;wHU)O(ls$utPu)1N@@G+qlS@F!0lKq(1RRsTC?{2M z?|DL(^joVz^x<++;btf3FI$aTNB%$|*BL2sKIyHD5fsZ;9p6Y{L9zr@Ml=QATr zxL)&^Ad+XmnTemMLU4Ze4V!o5iC8qcDqZzYpZ!VUGQH=W(P-{>0l?Cw+f`RtKXT^O z`cPFm8s=F|$isz1?zjFY7erqy=-wb;y*=tKBxDL zN#)@;3~b!Q%oI2Wx;Z%eWdTloJ>F7FTu4~gB@oi2S*s3AYHBUC5EE5#j_il#Hy+pH zsVXfXq#cqDcywf4P*O6&Q9(tD{pF*3*PihCrep-z*G)q{@?a_=Dx+>{`~Qrd2UG23 znVpE_g<39FdC8lzdzxAq&2dj0J|f_TN?g>0gv2DHTThqL+YOOv4LQ*Y^3p0ce(fi& z3Sp!wCM0a+6A2LDa!o*K54Zwd>8{I-sDwIWD7mozC%oW&0MN6#TrkL@tC4h^Zex9w zfH-SBw49wt5f_O#(EvebGO{>yZ-Mh@HOF1oDXO>8pIT`pzf@(${+5nTT-`i-8lq=GQJbj7{mVRbPmGxepZ-T>V7B6X?4uJsgvBD4 zPbRn9E4>s@mK|U3sV*+(@UKF%rNH+F5ml$-IjP=g3jObXG#$HI?nEPVTmvALd};+IQx8ic-vkoPcMo(xrXP$Skd6TeR?TlTcX^ z?$L2B!V-}StHVK#3c8gb{bH&O7#y;jN?mz`Ej<(k#cgvp(b$nj4>l1SUnM~y)5Pf= z0%|5zg+jRryh)v?pn7WUWPvBYZUfYuCQ}iYv{GL=<``)BMg!R_5cytm^a$t?XJQ4- zJgPd%jf9K8nRK zzk0yzkUg{8U`-)}D9P04<2MK|TEY?&E!9>MLcBs2*^NMOwOr~R5#;R{5Lo{^XX&+m zUuy1%TW9kV9mN6^JU?Bn)QJn3WOhPJ&)wFLP=}av0b5^Wh^2nwOq&P2 zV>+n!yxZpBsOek<(%eP8=ea;T)38`ynG1T)g!$28KNll?V?P9-e6?EV5#M;We%(r- zWp*7u+s)Vxrj<(>T^z2-M3jSWrC6KhH50Rpu3a%y&8)_f>n$Cvn3`$kMb~gJ(crGD zRoGRkr{_{V3T8-03jNjIFz_jOW>-TGHQy8BEXKqtYj2hJvEK7!oE&us^bpfA0;Vpt z)5lJ5rNl?i)}!Zuu#_bKE*R1poQ@N*wRN#DPwWL8_eN<|QIeZBi)+jfsP{Y><*lTd zhbCY$sbsu|Ha^9g+u-W?o>&nupSSWv>3O^>7tmWNtbe=0XOr8vI8kWD!6j@L5$Ma5%awOsF|c^U?fZuRE= z{-sVC!1{IiOcsSF+cJ~ky5iK7uW4v$-@JGtXy`kPK9}5%H+=TLzI(#JK>JwC6^M)X zI?ecbRKh@VOj7tk8b}hO`n*(W9`PH*4G|-TjTC1qhhQKYo_FMyFFMX|58Fr?WOOfV z&XyYq8$%p5DGBF|$s)mhsmdvr8SOf2Mtp2yr?>7)#ScAx2Lre)jouPkjg@V)LidR~bZ zHtxH8b4OY!wrY2h{@%2eK2iC?I<4HBcr5xOvSDlb?THb z6Sdyjni;2&_Wpdd5uJW8_+(4HRT*(1PG*u40wEu);?~L#`c}~cGbM78ffEaTAvThp z&0rLbZ*+N~A6wFB6$ zF(_pY04CSyBK$%+7xa%F-0UW?xgH{_=}<~IwWyDPDpD2otpx3Mw?o&$D!98TnEDCHqvup)RBWnYkWAS@iJ6>Z#du|`osLu8 zf5c%N_L@*pt5s~B`{**g=Q4Le@eJ@VM_+;rHw_b?Sv_Ew+mki9vB~N7Y~(U|BfXLG z?5`ehSOT?`u}xan?z{%vuD{mH2P}3aK!*(ZaZ8wm<>Y&qYWQRiqnlN4eM6@c)>u3K zyCvqs!Bhp_w{NurYmcWhGDA$+zv8SE_D-Flu$X=SCRi0K-J0VbldMO>9C67zT^MC0 z>ppTWPvxoh-Z}Shzvf@)J@@%(>qfQ=HU*0-rR|^XDb7S{tHusY0(#GWfZlVRA<0`O z@SDrccCv3N#4OV%&dO)6ma6be2dwR^<(Y6(Yk`s&E4@|e@ga_;l9GZ5V5GN4>a*ey zo{qA@ES~2^7e87VtgIM=CmhAAss@*VzHT_zRbAL8#!bs6G!t;2<24bw#$NGudb&ng zKUwb?Q|)SJZ4Q3@yxud1p;IuzK>odVTVs|1uWNj&nWB5#ncg$Fo6v9m%BXlA`DyMw zOaJ9>S06sO`Pb(P0hPO;V@#F3C!7NgVvG7SzJLyJa(|~&lbPtKH zKRiutd+RHS2hSeUbF>_|_l!#x6tqAP=@|>e^YUWh%a_sf{#u7UkMOD1GH$O_gH*D5 zYa>~o;kiV>Eat*?MgSwTDio}Bq*w~F`>YW9)X4dx$HAy>vBXnD*QkHCMO?zWcYLzY zhM8U4BfPk;z(mTe@-(NizcfDB-O<_I-QC&IJ}@zV?ra9G6=5VqqnF(~){*Nk&!$zq zN5C}4^1r)r^&W?m;A<&Rj&yHkw6C);i2uDrEMSw%^|pozel_)Q zo@>K2=4gG;QI$nL9hk=p?r)g1d~%ywItRwi>b)N>57`Sn3!L37R1lQW45{wy?HL5Z z)r~v{X|ikA9*`TfVRssXOhu*QFXWVFijB0CqMEi3#-e!meNR&Ar}Vs&XR9lxlYMcS zyAW?E`0&~d3QEhi!+$}~i>*Oo_e3Jw2D@7ZSHNR@gstvG6@HH37SIxK6DdOE_pW_M zrQ-+acg{Id&>Kcn4s_RqXewws=0d?WcAzFu!?F7GC_#`sjao$g`P{(4RI{nbyXd~T zR6U;i*KWUJ@*dvm^fZw4C|w73r-k@E`=`2t?WA2AaS%N_yfBC^@Ka~=f&zeMi>Er_ zmBAWs?Vx3AkMlDfM1OCR+%2xa=CSeCbR!Olz=l=)>VTuj<1cPAh_gIpb;&RE6q8F? zAcpYN2EhsT0#dP%Ho;;Rn}J7hRjQ>)M1Aj2L$a+)bV7ZsnW$d{7`E-U=~`L__cR5) zW6=*S>+h~Z=qTxWR1B2aix@|)A(yj#%~WkG{sU*Nj>;@)=~Sb)F5LPuz2_1)UZy}u z7jCV;D}?U`11R8dFcx4a^yuk>n}2x~KDR%V=%&Ww0(sCT?b}SA;HJt}q=JaLYt80T z^4rh9B&DLIr?~P*Cex+`K<}9~Wcc@86%e&F*wbDfVZp*<*Z{EZQmUq9MBD7~G@Hz| z6BU!spMZjTJZ5EjsINLffkVKl9Edizsv^xyl8$$H4!66V#ApoDKxc(2(B(hYd+xKc z)3+#EKBZ@HKdCENM#H>jd}pG<|y>oq50J3?H0NU z%0U8?a|tTs>IfjZ1NEL6-KY1ewdEZfM&^^v>4HYkRmO6c>pdexM57`0UC3nByG-vn zOjPt(5E{6^rE=n6+F$(d6twX`liD0b?V~`wki)rfZ*5sn>l7WsFBOCWi)$Z^m zOz!RPqOedn2k1R3J&=R^2SCsKfgN*1dN$Nh>HzhgnVcZK$e~0d8AY4X^%lwd{81Ai zPeKzE(0k_csRi|(YXQAynNZNZ9qm{9%PBcTdf4eD51(5`r8ujr+4n*2bTnC)fi4hS zwVH_O1eHV7vXH1HA!$?vgkpAN$9vC;Ttt^a7)>(gruUm9oTFzzwffl8Ckwv%yX2`n zDPi89f!8q&9PIuSdpQ=bMSz|u1c~&#Q0%Fzrw7c292Gv3xDb1*+~&-rL|-i)6(FyC z%2t@wnel=Cfx*GSf&RYHnWb~|3?;XrD1?CRGki(v-gUZ_x*Dkd%&i^+9RDS{u2gw) ztD4oxa_1lZ>#sM-$;lo)zI)@^T?$hmN-Z)MzWK+0+#>@(`t_f`XHiPV6E?ho*c3hc}=XDZRi?o2nPe|&rUG5KSX z@BaJGxA~kZ4^QbCWOu@1nS&&cP}Z>@#~T{Z*fx_7sLJ8h%(kCWRGU~-Dk9<0bOW;p;@-Qi}bmxT9m*DZx;Xrv8ne(>OX z6SY<{bjh=zcK{lN#_lh4gzq4w^845R=dahfH2u82bd(U_v>)&mlMksVMCkFj zw?P{N7B39qs$vZ2ts#1Dc7CBB)z_1({(~~4F@F##@K_Pia~cDcII`%+)O4qrzc8!< zA1BL7%qF%y!|I7v0oal11Bs@!m6EGMJRzNhj((Pbab5lP%dl z0?(>L7wF&POPKi`)AIrD=m4}G-1e-S;1fU)w==-h9#KSGJB(My+L#9%pWOuXp7)M3 z%hhId>Jbf#GtIWr+KoiZ!%uiAYZT3$>?05OQ%DB^de4NhDho}8=s^PEoZfS%uiEo} zT)p@BG3kxJ{nr=IbQ6fW_CwC^ez-&W=*eS}Z@>8CU!LpKOs{SLZ)zOkkM@sGP{&F= za%@457lqh4L@k~kSlHcK+c~ow)OfX}41MxRQtn`7z*+i5_}IyxTLs*o|Ks{&GO|Zx z~8F0>31~OV!D%`S3M}&j?f1>xiR%Ak^0kY3tiHDT2NB8j+=n5x0 zYqMN{dAEy!3kpsy@ao+nO#6#{Nk$z+eN&WV!4_q8vAfu1+qPX@wr$(YVwY{(wr$(C zZL25WTk~e}D>C!mT)AS!JrQT0v-d^-iaWKk&)arMi3K(Z($gZE`yg!eEKX%@y^$nr zv?;o+Db8FWSkDYa#6k;fn2&<$K+66)d408~wjc#V@Aal@>vA6~y-dqKESMs;+~&1y}Wc*hz9UCO_8NLD)_fR%I)u;7elr1np zu$jU`b&2Vc^Edr$PhfxVRKkjBpM!#KGHj={LGF^vMFM5Yp8OxqVrREB-1z&2c8Yu$5Tczhskz0#$SpxO*u| zwj$ontr}W07h6l?tJ|tU`Zh9E-_j`S<`6ljkW*nw*dQY*MgwVtn2-Ws1BD-R2h2mX zTtpKMhlIK8>WPhFVFdG%aZ)5gcH+XMs*0S__iHZ57x9fCOW;T3DCmrMfMu@jK zHp570#;gqWMP&~m$>NSVPm7WJA+SmLV63QeDG5KqltQ=h*KNfhzNUO{pW3$C)<5R| zzK!8qV$1a`i(`^H6N5Gm6?3>FIu*QX8=4cVbr|^NKiV zWAc1mRUJFaX0gAfmzIn@H8d$R9&zZCD{B6bGcv!~e#V$jMv%v?VzDZU=5IS?f~LgV z+_4!9{!NY))+IcB{Y_Ra`~n}~Xss;-WY#)* z%v{^nuy=Io3dd%|RTf)fIsAcci!Tzebr-y8>q`*hc`FE*D3EO*-o|tagfv0|yi9d9 zJwM8?tR^OsFmnPPj_>N^ZHnEX`5*);kmA=N#U3WzEu1C${JMDPNy#Qv0urQ{Y=6Oa zL@4Fwe@1#}xPQuRUC9%ifE`^f=#8s+PNHu^bQ1N+!QsN|hywsu<(hLq2M`(pquBSm z@@IV}xe(2(|eZ~`dEAT8?4jYuhxNK;UF=k zabjeP6MoywJ=tw>vAKTPX5e#bczf@iOU5EWuN*F&8LB540r^(LeKvjtPtW$u@Uj=m zw_lM_y5vLT?JD?Ls+LoYu_p(}$t=(pd|&o7Qz9CXF=~q3je+i|zImg(W;ih$c=S&3 z@xM{g(GVGH);nWEhwvkfTghZ@tW|?E9B*$!CkTRFWocbI=s4;dVYDl0T$0Fwk_FAo zN5EVT-`a*~{h`AIulH2VQgt2~FxqTU-a`&qWd0349!SbnN42JwwuS~q8d0}a4#%Vf zTR7G}NP$QDd5CVRdz2!f=lJ>AE6*_5+EsDPon2mmefsFx)Jq9_>B@fITHJ=D%gV^n zWTah%+AE+UqayAnu-ux9<*)l!6}7z;vPSh~34s=~6N`%}3o8q&OAiqk?HVlzuMBcZ zJ>35am%t9r#^vs-X&D)0%a$L~EV5I5xj)OEl2xcpLc!Qi1VFd*_9U&PNiGJKBt2R<@H32Od9U)b30Y1^C9Nvwy;H+|>M<+ghJS`R^s%vFgDlM&Niaj#oL40dS*Y_q|IOk@D9o+>g-4P= zL_xrtHl~4(3pYN+T!-$pO#uzr8Ua34%QH`~u1BkM#6 zO-cI)sZlEsPpt*gzUXL!5yZJYU9I@2#=^igWO8`j+|0E|o(_`XMPC`?LZFMp( zOF-mUfvw!gJJP7?X@X_XNo+URYI}g)N^2h5GV{H8F626NsYFmAg+TlB{hrI;=7Dj+3Kz3DH}aRkrkDe?B{jeTa~)*9X?*q>U&XP#%&dCQakWz`Tg zz-dtE-3GbzCWZW`Nd;^;hQz-(1Crd8k)PF^QytS917oZI8=CeDZvJ6!d-xgec?ST7 z)6)T}oUI))_Fo@3eJ?COQpW$@4GH@{5nLeI^}i;Z|FPrY9rz!k^s`5B#{II754x=* zLioVG=aldtF%Me6kj^3xU;iH8=PAG6pGiC{&sVF?IeYNr{q;2w!|0}*7o4ST4Q*@gCR5T zdn5Sx!w*BL5rp;^*qW(tFev6AMwt`9=!h0Jn3$wxcm7 zpum{}iS|Rg0p$E}Z)1 z-qA_uojVQE?->5q*HlK^f4d;&uXFreAeU$?&=8HkpqlqV0tWVdqXhq%SlX&ld>&-n z;PZ7p9m(KrR37Eb7+l)b)X?30I^oKC=@p){`avd1EK6&T`~JJ`e0E>ydTY74LG>G|@}QCN7aVTSBPy%M?H@Pl2Yc;Nl(Wu?cX$`2%b zFZTq7Rd=iHdFzCx{Z6T52#VZ^R3o z2ZJVVzU=qpx3-C~bu!%+^3)~5)}=T+J!^u@Sz6|eaT?S~fE9af$8gYz77%2Ki@2=G}-5EOo^3n~Z z+ZhA_C%R{kmyqMv9diT?N%4e~s#1^lomwcqFX0f?lP6J-y1a^D;NO*s{S!skA$Iq) z^6`&NuVB&88$-`Tk+f#+97zG-ILmp=nUA=E`qGqOI{vgWL$)$|93FYZ^*-GK>}Mst z;)DWb+F#uDyH4md~V;0%r3C^2`o@Ub8Y z@)WSKGd_!eo-kOXPpMT-OH=U66fCQh2-!g zWXH3$U8Ol*7*d?bFi|ZbJOXV)3Ih55-Mr|klngYtwX(E>D4HdGf+aC6-e1bgke{Zb z^OUJ~W=w~dHnuT#u)<|I%GU7rC~0h&nDn4I6-=pT*QN!R%mmDUobra$dp*OI*iA~5 zhLp`LzD}6^qrFmS`^#XafbD33UjpRM}DczM<>>)V-Bz(%8MzK5p4K6qM z6hS(h&1I*<+*rpNUoKWF1)p3OQzGrO{6Hr^)%$b9nd<=4p^S?ZbBhp41KAEB-&oL; zQkkOTK!eU@&p3GK_^{e!Wu5e25PJ!ujErMo<~32t7!=B-+0@k%5)@SQt80s<*mA1p zzB$Z?4mbMZLd%V}T7655++XH23>yd-7Qj{^1Gt{e9y5koLQ-Gx7NuoFw~M)gEH`(_ zALLgT=3cKbz((E}dRq&6iv2CCRCFKs?OMLNtUfWyTKLtPxT~3*LOUzI(Q97XzOQN} zBl3nKd6oGqN&~{jtjS>#^Q(D?R=_ zuV|sfR}E8R^&_RKs^npuVy7&JkhT%{cTgemGKSML0JvPZoJEmCxDvS z)2u7U-p_+Sx$n5TJm@!EFk5tUp1Rg>$R%j+0`o{6tB8B0rRBvp@_gMf)-7fLLBLa5 zsP7w5d0)6TMSlCBpu`&GlR7};a*k!}7PGkd&k_0ymk?sK!j#zyW+;5qY)ppDOL3hXSkrm4 z7A_9Urlr7fH?RBFb0mtFbOaancc1qKYbYS)P!+oxYqllsL^7@SqX z@xyXcWHEFzt*K=!KzKF6;CXR-LbJ2<;2KTKn+^>Q_m^w!>Dwr#0bAkBg<2<--@;4z~!LZ9u!GLUwq25R`z;&59!* zF?P>m`gO{@XE!~(q<6lQ@oC$pr0Gku;_CM^Yle^Y)~R|@2myCUbwolC5qm%<905F& z-NQW>WkqyNMjQxjl)n;nc5OyMaiIw^&Xuu=KKhz$s%u{Ro8;!;#EwSN!&ZctwP@Q^ z5gKd_fkS3hH@3k196{47;6Zso`kC?b5C+D)Y@uv>)6+Wf?jRCJ<3uXPQNKFL|`sOh)e5L$8*1aFwOv71G2Nzn585$LiiA*)Tl*LAxDo%?b*=p=Z|^RptgfxeJ20AAHz0h+v6zN zD+I0DHyQ#gVD_eBU>4{5nf~|FHsZNL-}VNbcIJVM1I$DFdu;rIT;Usy=XbOhsbpCf zFWckXL0aK)arJG=pi9Uj14G77yhi&pPmN#DWVKUNE#3Kw&lJ=6uUpR_d-l!EB-9bz zdUtgkaAbO#V6)k$#h;oF##su zuk+&t@|SN27JOze7EtIOQmlDcj?h&bVX9Q$}Y#o#<|F&CY; zY?S7x6@tF+1#>9`TLZ`9N#@BM}pF=m*M@IpZC_=!y@#Iv54 z)Jtz@szo!15ng-@}%WCQEQI zCr*D}1K$3=&u5CmA!3$%D(IhI&8T9)Fs`D<_?=@WsTS5F?iOZAAk8w3pKDIC8+>H% z!*Qdc78Hv-p%f46-m(oj4XZUyj-OKoFktt!`iYtqyD17*psOMRyD4K(J09wS{BgQD zmDH{uzdhF}ZvEF7JcHDLxbzpN$?D{{eSQd64RvCv^?av)rymj_Y`s!8rWRNsY;t%pgW72+ ziJ|KE1dWwE!g5cG$;QD{zeeBuxtlgr7?VX2M>a#mVt}@0mP4RSjle}1o$I+>x7|?n zS7Z-Z&OY@GIaqwO$v}TjNe7!=c(4yIj^xfw=en}8-b;ay-v#`8g~njYRqMbSzcnMEN+%$3g`s5g#wLH0HdKISyi*5kLpG_1BNe#OAZRqR zG_vvbhC-0gba?w48B+1ItP&6XqbE{KrFFvcodmFkO_D`P`1i4rARGjeQ$$r@Vn|w) z7_N3uo$rT}@Q9Zf!@!@V`Kzp~rzqORy&vVu582{)iK|h2$jz{}5CD_ndA00u({Kjc zM@5!W)W(~tW^iWOG*!^~8@LoXRN)kFi{RyJhwk?KZIcc&TdU2W_=N`0P7r<-tHC?m zE{)}N2mXQxT4h$&gymk#YR>YPBQ1Ef0Pw-6fpmd)?aL>5A1ItObEieuaHj>8XiJNl z=s6`77kh*mZ0@XbsM4#YBUF85RW;S+Wp>6BvD?E$>n`Gue6{KR_0p7Z*|)GiLyH@{ z%hQ2m&e49+Dgb`{(vS{rPwz9=b25Mp_pI(9ykjAUxRzS6Biu1D#>qXC%-_gMDhT}W zU)sQm2h&e;U@~We-yun?xIG!vWC&w}=?&D8pNtBix3w+dpVN$9NNRn79pxPmjMpuMd+UrQSzDzP!ep`i?xp;$#L-lY^xLo)0L7NXf3Fr+Ea*D4Q&W55}!C3L*hV4w`m!!ZNfr=2sj`8yA1_0)ds%lJcrY6k>uI z37{IyGSOAGBf`J?r7f`-@oL|LdaXhM*%yVI_g3q02P_nxKg9z3U2a0)6e!V#WJY2nutj(HZ$k2o!64 zCqPviYr~fWS<8d*wPRtqs?*JYx2 zb91gD009FH9ivLlmO{1jSNHO99lnv^_3`}A&GKvymg0#d*;UF0p59QgKAaz!qM7EU z7NcS8ipq0SI8aY;*ca#b^EgYWM@F6oLjDf$#Il<)f3vzP$Jc?zN}2cXdn)>PW5qedx67SwQg8kFB2 z&{C-nZ?z-GQ9HwJk1xcwic%yOSVcW{VPMO!r zLOvw`9ZfvMLXHw8$m0k|w1X5=CW^RTzs&Dkxc62H2^b zS=w_z9VxN;cpoty4&x}bLB_ys;|dGyx>jcJTy9y8*R6*`f5h`N>`1J)%3kTod zK`1tVPZbcyQ8mJgsMMX`TyeoeetINE5hL&WKcRYf^$ou3(uLGot(26#bnajq{a$sT zJKo+gk79to;MbjtdM^!SkY}dW7#4J9KbIaWDJvNt6d<=c;)Wm6a#xOM`iTHTe1)wM zvYwP?N#3(hXrJfSy0}{=^d?I0`lB{$ijP~vacchIresev0+|?;x)%evWhrztKvw2* z`Te~_(6ZHP;B5Q`xVO&FW{^nNypUr;H513si__+S*fz4MBbjD^;?`ijC?P{&mFeSw zZ5fl!tXG)tzJ@|liJe8otDHb!Ym7DARbyypP&gOomE;x8$=Y!*5p$nP#e_#gqQ*J& zR)7T)dgo$R7jcz0C@%aOZOfwhCMSy2ffnH;12F+6PMj?a6~PCMS>9ynFp zrH&}FHT=}Jw!WNvyeZ_pUv>!mDgt$BZ?Q|vloC+P5fZ;!=ssX|s0nawJVst5!Pu#@ zQb)NN@B%;R?8zu~T=tq79vbL_$3Q;NB76!}-FMim6aJG^d~lV~WH|B~EU|xL)t1+O zv&~prYtJQML9!@c*R*S82?6DcJ|jw?zHg?{sGO*Z#*a_B7N<>1~fuH(& zv`vVXE%^nOWs%E(IHMrV)CbP0=j8BNv$}%qgPV(uFU%jV-;lI_j?oy!HxsHFVdV!I z2Q~J8h=U@_yOwVGIK0GgtW7Ea>iAl$f~r_ReObpAS{2#Y)c820JDATw?vLIuIun>W zM(8rF#vHt;wKG|U2_D~QAEQPLxEEU515Y+^ zf~Cj}IyiX~0|PLvq3ON&jU6S7GjKYP*f&$E%Nz4o6z6k+m}af({E>&~U?uIm!%gfK zo4fYVVP@aG?0FU1CY?tqA$pp!~qPsfZ6#j;)`Ho#^b~!w`kM_Ppb?(y2 zw!N{y|1jZ3fY-peKF3$r2)6MbGd!T!W8?pqb^L$qRIvZq+JQkz&-|C!`rpC-F#H~G zz_5|!qTOceo!{f|j`-kKIJ-~tF#eDGozbi>-#1k~H->)*;ky46ZH;Xh6f%ZOk1jiT zZCN%%L^q*mCZQL*20t%s`wyPuGDiRX(Lh$tB8<@PpWUXn1^cjJEXGOJ7!>*_a*aIy zrBAv!#KphIuBY2JjkWHf?G3SlBs^0d%NQJ3GIfJEA!FLl@8uS7xCh+zZGFCa@E_p-&@pbc3PiPl}hlMVkxYXmf=vZxijUM5J|qSk9Fof552aT@wX5{);6}b z1ISb|j-<|<)#dNS=7MK)+dYq_14g1v%pkJmP2i=sWq<-wV9z(*9rtieuAfx$ZsvK) z7gJMqJ#YRSL`Hjym{Um<>K=)aSE}3#I~`BBzoP85xnGN6idT>3zOY*;H9jl){8v9V zD!T4O6Bp?U%zC`kt*5@032y$puxro^jU6aEs6H4K_h($}x$Wrnlp`{`f~)3@shWHq zk2g`@$TYCeP+nD`Vtn789xvTcfU^iJK}a_ZY~b7Kw%vz{@K~OK#jN7aOb_79`CQtA zcnjX!opoi*{KBAFEamAKI8pFSTNr$VqV#q-x_Mc1p(3aM1gl?ueY zy^$KBPVQ&aN471QrM!-5Vx zPY(G(r#?C5bvqQP)vIx)WqGRZ+{3z9GueM3J>kZ3{g0m?!-(}lAxT0kM}?6(0d&9I z`W>dOBbwM<%*|gy05f7;ch%*c)3GF?1=GCOuNtjpzTnIQ z0}Vi`?uiI=T*fnwZ|fm#Q7k6|JHN6jLUNh*t0t|~+>AYgl;0K2vnw$d_tA&eWM)rc9Zp=}e zYm6c*m|Gl|r{NI)KYFZ}a;2~FsI|2{OoHKll(E=ywfy8_0JT<$K!UyZ)bWa!Dti7_ z)?D?z^i3PT-w0R9Gt)|^B8HXhztA}vChUBhPh%B^1GAmm_mP}Hz-lth)eQd!y~0d+ z%u{w;g9TCzuiw5Z92=FTsD#;Ij1A)gOH_r{fbFq(w<~`e!4VPp6V^QTadcG;0$JHY z>5oW;-Qr?ootBTV`G>M?X0D)+9g13u5Bmb%DgstM!Y+6eu(HT|x7s>5$*~|Vhmx9H zSL;sR{_SbXsL? zsJv;e6}i!aMmR3c+iSUa`l{uxCUG|!2LEl+59Hs{IJGgcz0qy_8T8#clqc=G3;*oF zt20K1B=_%5n5kCZ+03Z35upEzBEhkdYjGQ-T;lraNHxif9GF0X25;-7ADY@+A-emF zwzNA^iT-tWv?@k1urshoTIO*>`Yq?en9YyD%+c8Yvxms5NMD$ zV$BNp>b=3Wo@zE>6-=pQb&V|Wna4hCeV!z6a&qG}s`G=+<)LrRTh!8>W*!@vrtF6M z)g{Zf9FKKgKuU6?H{S!zJ+Z?)d!Va~(g|efz(mD7W~U@~5EWUxQPD9m**5X>uJ#WP zlQx=s>-WrLF@9LHy4V$=MflRqg>y#xydPEDCG!oWMm12D z*LZF8{lkv>&FEy6$=y7ZwN8L*mC~%!FIxOgjW14U#iF=5Ovu7fZwl`&OtO1@K}?Hr zMbsNV^>KiBeIHyD5_m--N&2r&W|Lfe28gK~dppSUg6kDYkL)F~2d&E*;t;=j|$T*0C#}66BZOoE}u?8tXLpiNQk#xXI70EJ>K#!m1tnyh2cR=#2j?o;kve zvY}*PhqnS#1_$>-|K(I{tVS6G`-OB4b$&24xHyHwi-W?t)gdR9?tB)f5aLY3TC~CN zYg7ZvJWxe8`!G-*^F8uqR6Q|LhIA*MPX&y6B4(uANfD;p(p<`^JI(=T)7*KN!Tx%U z%vu?nzk3K7%>L9FB*b=fu#RKORi`lkB_}p8F|jo?Ha^VhBgAC7xS)t)>~KC8^gwHf zE>n;HsA0C{(9r8jp3SFm@xsPBZf(c5!XRS->_Yu3oAGA)U6tYC)9?V;=dQ^9BTt#2 znj341StUi45&l{P89v2R5tJrtOSx3nQW>6=qpO6Z>s@-V$IGHd;@|NffQS|P&`XO1 z(CiDOha;n~ve0zzs4A}xDPk9Sg6lqyLv7rhsfjOgPR>zD@pU9)8TW%XkOu7mX;Bpdd z!G>{Yo3^GqIcw-t`f;Y8PqW@9{6{lVM3NI~cOdAU1YOAnf)h<}uGJ~~$UL7bh~!=8T!sG5S5e_M8T79}wyo1m^|J<>O?CuY5>e+3!m<`#-U z{HEQ{_=GzO>QDX!^K7ilw&W*hTawoO@A~FN9b9C)r&GjW$v*wKj_4%%LZkHYuw&qw z$2|`mi%KjjMuZRE{L9k!_Xcx-Lw`9ob%O+en&G1v(9kISighBUoOmVmvCPHG(FRLH zV+0A+?=1bBlpGm?cTN!r9S;*59UU1rEmMoj)1d>hMH!9q>lV??oLKxMBaQB!X1ZyY zKe0mTbXZyV6iWo;tzH*Qq$EDuCAGk(<@EU|7wIvRpWu^%cP2Wi^}#79;K9>{f_~}r zYN;i5`$4fY=G$|5<)ypuKeC6q>0Z^d)p`lTa8%6pzZ&r0dDEjf|eo3I> z5QUsK7!r3Wle!RTstNw>aK{et3p3i@$bnPTSN`K?nF9={wb%+bZTRz^x;hwz}WXvZV@VUfSVu7brZ6XVGnB#416I6%kS|<8R9Ho)Ok#<>jJ5k)1ayI-k-Y z`_UYjXIJ1PtejdF7q_d8ELwIWCs<90CY62iFL)+L{zY*|ucu$}grwtG_M8rW%vRuK zi+{o3Bo6Om%`W_d(i#Re-#`aU$jl0H?uDXJfawcNax~otQ3> z2RO-2SuNT5#y>Gy_uRs-j3bGdy>X(DxMtS3a*Q8Od%o?j2sz&l#MF9TxjD5k>>Y`+ z|@>$jI~bskFzyf=*gL%?Pws?%MJ-O*VwWp$3MYO^&UwE>A(zTj_f<@US%}-wibr-AA~K*>9;K(z=UTu@ zIcpk=DIGsa@Z5_6nv)9X?9R2}Kb@RtM6%}fF*5)JhZg(b)rEY)Tw&0VtK%u8V9T<)#dUDH&EMv@iW=kFcXmTL&vGMVO z=&iFdThfqznbCOlJ;Ih!9&~>(nyzZ5A^|Upu5S#Z=-0|Fx&}oc&IoQQc&HfWK*?Y( zA87>ok^m^Jl66`SsK?$l9cmrCl%uX5Jgc!0uAzxCaA_8aKc;KhAG1AqitxWT*yTnk zLxC{$KQ9@hP;N$G9OYKr{(9%bq=o21@O_KnUpQr_JJ1e%sF>M;OD1zX=h3y0aA~o( z81PEhfj`mIX<9>~C%u$gAp>o)5DKA(o43vSbo2dA_PfMP*} znh*>znh`s!86?$oR0gR)|lM8mv1C#6C&ooLWXaw>C!?k!S)`+l=chs z1d8yRoJ8(jc^g+TLot@=->qSLTzy(=PLb~=P@2lvu*Gf)%3Zd%FQWmpEN5UgS)o7DSLr#wBLAcrBRZc&` zN2#_;!gQQyOQzbGn1`0Gq1gNd-D8YDq!RGcwY%38C(O<3VBc7h*QLa@*NVQd;VcW? z8KDK$a3-tiKcr)n(%xkHwy$t$zjHS;H*!SFs5qEV3oh(=3^dGmiA$kJJ)U z-HUF&kxAnAtKq>ES4cL~kcCV|M0}yl@}P4i)L)t{*8tF1V+QJNzh3$0kq!P1V&P#^ z*jq=#L(WdBDF-s+Y4q8hAopc6{2@Vh7IWH=W;iW0Y_EDcI_%BGS;s+g1;nd<^)5@< ze(X>gnEub0jLut&y>1t`HS}~8RCyX6SywD2O3>!E(Xsc+|6#)M_3=PgDHSyMr5SKg z5U|x1@O3q(nBs(7?} zSXxzXY@&#<;WPAVt*G#{@aP`Z$ezMFoKSg{*E5r9?f^x|Veg&pU?%Rut*vK}p>xgX zmLf}+i6c)8*W>43-&o@wHdHhYQ>h;rnb028nCy-2BbM-OCCz{=lzDM{98!^P;NP~} zz?VoUVjoYlgH}pzdMxc(7sP>5JcHi@8Oez%(PN8kc(xU$ImD=4Gf^8peRz*D3fXE~ z%zU7dT)0wh+v?@{Cm0r6>WT2aiy%Hj{=sWdo?VL#<@2JJ5wQ66aaZwSJ*yHP5`A7& zD2QSk6#$sQ(!8fXEfs;?5_9;wz9!m*_(DwvY3b;Y(Vlb$4YT4;Xm6Q4xxy)l6mL09 zv-_BRbtv96UY*cCBIT{%BYLFvYqTBB{trc1qwvld*?y z=XWVG8#LD6BAP!V`E@Rf@^L*5KtX;hmuR8PMmM_WS#}Errx;c=a$cKL9 zvkP2FL^CmL%u{7KKT}cUvWygt_Ia$GZy<`Ea2Nb7+3PAWxuQ)LUU4QYyE`C1oHV(X zTO`8*)Q;&zM%oMjRs2Jbn5?9ZQLH;fKm9nvc$f&$JtC8dTXy2gIe1{SU<}Pf+=@}EUNmMuTXsnPQ$X?7PWuNCphLw*B(#0i;ZtSct zY}8uRT*WghqKmZF+Y+~P$wN^5jk}_L&%jiVuK)nAp~%#&M(dl_w_fXv=pp#3OAXbT z6de@&=Wl{fZ~b?s3vM;H86T5}ue0LC^y8tgoxGBNeve+YEKF_nUl};v2|?Y%!O3yF z=Es75AU{9@fnq7?8@~wz{_{q7=Kl`BL$eA0`^kR>fMDQP|M~s@KlrXW<;8EpO8CuB zNC>cxkftr%>!~XrS{nmaNXK?+RPEW4ZzjK=uEYxEa*$w1WO2UX!My4fcS)YVx^l8N zQzV1zKJ|FaNhMTyOWn`!bzh`g>*JNycW>l%A3hm&;;-+%xQ#!#l3uy~K$W`d?BmotvO1$$bI!4yYzTIXcau7}uLO2#JX*O3na!2 zz?R4i&1e|r=}L(%x9n-+nB)VNSoVew&1BPF0pp7pfOH*TK4_{Y*$LOD6fVs#bA z|FZmA%*sl*6Ykn@>-HrxoD2Wl^~Grlxzz}ow#Az%#PX{D5!&s}#6QE=u2ozd{-TT6>uG{RgGq_&*95r`3>-L1AmtLiP48sK~azW7`Cwf>ys$*-STKxO@fNkPD& z`=Bd}3jbd=5WNhU_i`5LbYPh+7wgSnfr7iE*LOA7_wxC6FCrEW?Eh9&bz;>PBrJ1- z<~EeV`J7Vnq7`C#KOI+UcS~SZCZ{$PBIcuWn7e&A#;R? zsP(W=3=@SrYOA>C`mq$T!6R&uNTN(}Spzh0a1!=u6)Q@1`eZ(rR(YLJd%Sj0V{@@F zZTEFXk$;?uCu1<*)JnUqG6&&azY(9oUiZ)`>DtJcBJzDifvpxWVnZ4?OP+6a3g+eK ze4FK}Rw-I%;5BHLrRWU>fx&H{J1+ZQsxrR(6O|eiMI>S!M?qRGYuaV4GC*4P<=3_j}s`P zPRv3`hOo7TFC7^V1w$1Ssv_9%?lkj&*AJXL7#2cxUido zjfI7qmE9zVt7SeAd zotDrK=+vUWle4|Kq2ZV;r(`#F(nmpo$FOK^bzvQ5(K@0tVn8)(BWAxEFD{iN3?!UP zoefV7uWv6a6W8LZifS@?5~e&{k3G-n7j}}MVBz7CeuTP_448ufn+*MruCQ`Cl-B#_ z64T>kHQzr9Yuh07*d5M~77gX$ZVKAM=89vZkghetVnm&2k9G=E*>vj)xwosb*(vEo zB`v`YjLP#@2z~)UwJXM(Nh^G8vPcI)CK!o>;`r*K2t}ox`!%l&Ixg*uDoL0qSZE2n zk$k*qk&0d;w}~sw&ah64rXpm?t6M3kIPn{N%}#ZS#n1&pU<3D1B_I{8a5Y!v<#c6b zX|MfIzF>$G6NheyCUk)l9ctFvV$tMf{*HtzLsjq2?yyRCsP{1;`31a&*wxflk)&dp z8H2QsVhkIFe@)G+wuThAYjL%|J4(Z`0W%*%-(1n(ctG%Dn5K817nOAB%Sf`gR;LT5*2=l>z zxawpq7u#ejq)?t0MGtExKu+~%DYT5!1UvqS=?(tw0Ev-uGX5q&- z3l^=(6}CAicTWi>N6XRD-tehRBa)ScY&$ zJjrC2lhq{@uBh3wDgN^92c@O>9>e~e+W=s)KnETqLDPfJNNl6i%6-I9y?we`x(N|ps6{Wu+*@?Ge zRC%$TEVS$F4jfMjKj`^>9Yr#Js&QF9GcTz`fNJ|SD9ofBLfT(?baha`5muFoYR^dO zby9I7hZGm1z&&6$+>bF|t~q9hko@CDzrb3?G8?ik1T8tLze%Et#m^2eP30Z>Q6zQ)QC!;R+m9BB0g{{yF}w;+%}~a zpYqbB?YP1*TM{+)GujUC?u-*7OaX}zW0_b^P63xta(rC0c^N6(bt&N^HO?Ill@x3@ z2O7=eYeP&a40;mQnu^R7nueco^-xY{8sHqbs+HB7d=#dQ_k+*|g7IOtzi46xm<4ja?=^14hb_ze%5Wehq5S-LUN!$pN3D(K8O742bCNC(H*b5?T^vuOV+e? z&0=koZC;)8>3Zd**}0XKm4yX%wwly$3gw*}XnAA@DV?F{cYcqt@>kuol!QO?oWC?~ z-u-7_971_9X%|wEWz+g>{|{N`6rH&r|M|L8+n(BXpW3#~sXfJ0PN$vPw(a(*In~s* zZQI-5{?G2&b2eAGNp6ySlYCxpSm>2WH9lxQ(cmTu-@Q%7%qx>wcHL#Vc_hbTZ}!^C_gxEcFz@Qj?(2na;(bIJ!|O?h~F4sWyUCBU~7vf(RbA*VOO%y$M0q;$r@K>bk>qHz5rZ3Dqnsb>|xGtvGmoL ztnalo%)CiD&H`sN z!~1-lU6HduCRjg6W<(Cnq^(0MHI7OcZ*Dari)t!HhOzI(nLyV~*J6N<5|c5(RJZDk zoHcX;15c+_GpQP6%x_g=n{ju`j8h$nrF49M)k|K8Dd6BJFQoV6MT++%brtx;Lla)c z*J!)c2R)h%tkVj?idsz&Ep9Gq+ft284ac8|^K)+5w$sX3yA4Ul?lk2i_G^962={-F z3(tsohkNJ0?Z*qiOlB)0xuyz2_Ur}+RPa08S<%0P`&W|80WD*lAQ!hio3i4Q`}!wx zA*NB(J8t-P7#>q8(Fgy0Urt4Gz4o4r4k;&nTVS|AfZKGUcWMTVs!Bhh7B3ggG zgC_)l%@%ND-v=o0meLSHS%Nj%a8?Q`1f1dvK&!+jB`j_snX9GQo3)EHTriA zP}Mk+3g3VNtV!=%_)ANi=Yq`}b9-|>sgP_@JEC`v+ zRTZZjG{EES?kWR8^rs0jKFvJj&Js?ui9Z0}IlWaGee!SbGiH^OHdy-4v&M>&{+!$0*hKB2exG{08Y!;}Me~@yz3aS{7$`%{K z93zq45;{S}3pvfKSa#YyI-5 znON*_7>&}&*uL}mphY^I_5vht$J7F5Xv#08K$W4;V|zR-->SXL+=AlYV?YT(m+R;< z_)DB)lVMS(%t!Z-^KkeJ(+%uhc_$k~)~v|L z|4AcE%9U1sfNL63*q{V=R+#MB+X&lD340bh0py%%mVfqN#A@m3t%H6;U^IPA`T4?R zAzRjTIcPO@fW3=Niz$1?)oXrjL{Flmgz9KROqi>-M@!LTO~a^gtvFg-bBo*$6T~Ll zhHjTZdcvKD*k4k1KEknzEC*~ox+RMgn0B4QpZdNzX4<83Q*u>%gA2);{cyOR7fE{7 zCnr`AuGq6XLkh*Kd+^NzLQYJ}{^a(k@ucKhxXYF_T4EF|%DFJ2 zO9f5;>ZpXo!Q^ALG|MQ&;+6WDqeEmj4(_JA@q9};18teP*;nInB!#Sm(xhl*wBSlH zpO!JQvqV8}m!RzNpq0nkpIhLBf1mp zAojaEmd#8CV@!VZ(*vvviz*V`MGb;V^MkBCi(SLpit?#!#$x;*;vC5Og$Mj=GGhom zN*fnbwe|4U;C5{23ky0Km`7WTCZx3QPp7MxlVvi*KCknPO|@)L{Z5}_dzt;uvNS)R ztZsaBrhtZLG4X!Yi+RtM(Ip z$kCiv{dC-}g^dnZ^R0|GZ?@z8oK;wm5q{Ern6mFl&&Md3akI|(L{1l#kD`>=W9Cza z|EmyN74;v_PODrqYr634X+sybY}=)T`tE|q4t-`?|)4~AY7z%-s^=74qLPq@WS zu~xM#eex5GfKq%cg7oCiUw*GymzsIjCxb;uvif**(Q0Q-!w5)yU9*vU$U2AXmkE(( zgj)oil7AN!^S*2?CQH!)Lw zH(|Gzk%YIw?rdKw;G8>v5SZ7|63E3~I@r+G6=zn`lFYdJM_DQMaG!%a>KtFQQ6cq6 zu4Rd)hQW?t3-s)pt`zIZawA&}zcQVd{n7-aSzT_kdBNdx0SaD_P;)Tt{{S$MM zbX#r#n4M*JYImNg7x37B%65EjM<)8#*^uER(=apUP!N-SCC7#^R^~cq)Bd%Pp#@GchYK63w{dyzP`NRW#zlfKCP6>rSf+jz*z` z2{bX%YHuYI6BF}zUw!3f_-~_&4PwUvEfxBstN}@SO3u@#yiQ~#wzQ-1s{8AOwzlOW z3G=c6xwM__V_d1_M`BL?jMA^(r1SB8Q^%-go~|_=-P9bs8l+jTAq$kH(ge;uLep~c z@n0FswYxJAj0Zmi{78N+i8D?x=QkaEmwohlxTDtK9lzP9gGp0)4Zmzs$y=VDKf$Lf@}6 zO#6)OXHU8TAh#Mp^P+0d1kwSXFeR+ptogZDRh~0eMx&sY~D+{?dLY2B?y_` zkBd!I)^DDautCvt3a-2~REV5>M-_BBMCquQBBzmdl#_rVw8LFxn9VTPG;#zD`}U)4 zCi2no5sUmF(2}4pS+yTuf?J|O5r#cz{rt8@jV>V4`FBdQBj<&E7MWhqW}E;eg|RCW z?%<E25T%bj=FA^}jhg?Yytq6$ zO-_KTG1~TusQT~1v9;nVV^bnE8+(k9_Lf@S>>_!2Nkv8Ray(xDfc5N&nU*24YRbF2 zYx06dzqM7tqtSW`GSa+43ai=?p`mOA4X;kJ??pb6qSmP$zMkPUjZ{A3J@ytCq*f^# zEFRC*EEZf`+pT7{waVVQ;U!S|P0oOnzt;O9bDgXV7e|%yBM&J`?%q! z*L!euBa`=vNprF1rMuD0iIkd)T46w0B7~1h5kX<91&>gB>UVC9jg5(WN`^8pO!i|ycluUKHhZnfGD2CU)h=Xt{%Bpb~Xd{7NaS4_5$z6L#UbN$)=^?Sd(~q%Y z>(?(rJ#G<+dk$@tSS+&hDKO`HY`qjE$`WR}=ddT_WUmvC>b$if58P^cG|3Lwq}PAk zc@0U*DJY0Z$oAwPETd#@{~ltWjjanWT{L1^42o(JZe1!P$ce%qbH1wllrH?1hDV$= z`%92S4ihvY^!K7!ihx~^EHBsRK({>vU^rTTNKFMqeh5$Aperb095CR=mrirEvJIO? zLuc(upn>V5k`F6_AO~kn9wkxm;$@;**nFBwL-)Z!~jyo)}mC^G|TC zcliKJt9zR ztZdArSJrlm1LNmhC)kE~qm97l<~mI*nyhZULn(hGd|G8Tsv;{NOWHSi{hW$G1Z3ul zmMz2M0so@_T7aVM=#Z0{G^5$OJ98dD<2x9B13}rUs0W5lOb5uwSMlDbNH-~lyV~pE z_VJ!X<#IVaefhrm%P7MQ^#jfsf&ZZ9JxD1kDejvJTblO~6#M^%3ryPfVKjEy8y}$7 zj?TLJ*pB+;^)I;a73JF)vv0js|Z|T;_8YD zNYAg#{{N2pq9v}mrKLYiO(Cu$QZq6j*;cWzuuuVF|B(x*Z#iMvLqkI){%8#i4Lz+a z|1ZG!KP2Px@aXyNo27!1*h6IGmSC2O{;QQxuHOQBZol}$6DwXprqZrsO=O+kx!o?& zw0FVUuw`JKwerCf^?rd8>ih~H`gP~$@%w2okIuXJQk3a3uqyfO1n+9n)freYHb3>R z%4hd6-DCCEuXyc%5@+#HvH28a*fBqv)5;o6;D!CB&u2}r)F+@|V)M78PzjF4O9Q^z z2Is7%-x_1RRiVJOh_s6z!@9~Y(@#h5$)|#BLWCF5NCa#3i1~*On4o_HxoYzH1O|Ft z<8?%y;Asq&nzLPNxkAfAso9<;2l9vm(Kwga3SD3koF#i}YBs>P7jN#TN=7cTECh|} zt?Zb^7D6l4pOe~zBA~Riq>Rjc=G$>WGhMWZUok{X&o4f8^}YU>9E7ySvr5e4r=;ku z2y8p`*D@i0VPRRtiNfTo2zNvnALz)DWHQ?~Ib3!``*<-k%IogS^E}~QAVHLWz!ih@ zHL_X;>-XgI>-=;76&DIF>EL%YzPVlGkL(R|mz_l7GNeds4}$9QX2e>3-PBmUE@U5D zR;TwnPFax;rk(EOmL}F&(>1`o_`&oe`=u)9*RV3iVm)&w8ANn6`VKdo_2*pXQt&?S z48YTb*sDQ(nVR)j{&Au6B?RJr`FeuO_+@enx>wS)t2;j9K7)_ypct=0$S!FQn1nTq@z!L6g3dTRwUS43lSj;zf8)Zb;>|qd^1qK$?!^?7VtN$_Oa(DY*|2u- z9YJ7cnxr>;@a}7mwvpc}NEEWz|2aZ@JZh#ltG5H6%$@p>I&1hKT$3|^7XAR!b>iZz z3{KU{0xVHH>nnfnMn2VOeSKpE@FH40oJH)Ai*tw*TR|gUw~_IB2ClZ0kdm_k_-v8%@w|1rCtAB3h6Wo}21OZ3A?NOFQ4%xW66BiZOpCkb&L`uWdd;?+Cif z{(9oyvwX?Lj;?J`@(!z0h>s*QW}wDi-siFo#IO;gG?}x-fdDbHm3m(@APgM9(bd8%Ad}wBr-> z)feJ90hG2Ss7L$H*)QcgBZFx{5ilSeq#i-5GFshsbIvA?6pd|y%0aj=?cYBMe|4}e z#-=2tE%L?u#e2LD!v)^w-eDpDANev}y<38^k1y;Ueh`TM;yg}i8*z25uQ0)&UV_fS zxeOXa6ki?GgE)`1x3A9OUS(*=DI}<^M;Op2wZhhb(1ydLUf8TfWqVWadK2P9N_gpI`yv;l;Q>^bxr;mn?Ta%!sN) zEQ~JZsYt=I!>VpIZ|uzw>#6Oy6bj4Bw|lTEfzRD5XJzKs+sTEOPvAn|fB-YCmziUG zKvPDwhE8dPnXyVOMz;s_mEglEe2_e%X}XOZU0bp%8{^8s>cBlvnW`6B(T^ z678&c$}g~A61>wZ#CvW52@;sESpxzQr%r3Dggd+5;nK4@q{@O7dZ2y8E46(xMgA}( zhC44W61nRWuUkj+l74JL+A2>Jl%%I)wN+zx1*pRI1HtNe{MnrBt7t|=J37IGVWVY2 zGP@XI6bfXBG+oP@BBDxvF_0N8A>}nVr$6cBY4bbD8PSC%WcWK?V!tqmZ`CH)?bkfB zhl)kWqW5HpdtN#=@kBj7FE{neg{nt+N@8w4bLpc`$Vm|MW@&~Ft%$|4mlKv9N&l^M zKVlxM+-%=%E?PzNo`yRDWA$Zf-#gNngzEePd2^fni`DYKqApb6`oBAEG2o|SCJKuR zUh&Nl-X9U;_iq=>tf6}>c&4g`RweZ@kX=PSV!D}UWIsvu2S?g(*}{3xzD$tr;836@ z*(mFET_>dPduMB|vKiFP;1NGVwRO_zZ!Mc6abZfWJ-&}f^kSn;w_M1D9Uk{!1I+-GNm z_Uq41#6mmch_~^Lp+hHdVC6_gPTI9DbRgR#=Ju`?4;LECywGqK?HYFxLK0X-zM!e3 zs|sW16b@iy$2|0;EvJca1XFk4ltIU?Lp)s@$`5A*QS5PYdQyz5t_EIt+cydu{e=!* zhg)O`uL1X6^GbbOy}V!#Te5Ov{@w<$&%3p8MVW=@PTS;fLO^fniKWURC{JC_BXNfj>t5JQAq1HHU&IgW_)TvM3~E z>Fub-K1EPK&9n#o0y(rFuH+e^G`ae=hYMHQQV5}!JSb=HPPx~km`>Gfn5?nN>>8V( zsU&%MS0Q~R3*V8%evjXx-$5{2_qK`AG0&Nt+x`xS@I|?Lt(p+F)@;Ms$#=}@h>yk- zkq^OR&j?KDmb&CEGJRoq@F62xTH=e+A(e^tkiikZ`~AI zSd=9cbwiXN5yb16-F6<7q|E}sDGnOilXRVb2!qd1;|Ck}9?b3|atHEbuF3lRRcGeK z2x+dR_uW9Q4mNPdwsE)*Md62g^t#^)cG(X$>Poe!DJv?esW<}b*yyxTq2u^Sq#?TqTq#P5s9|2y}SMa<*iXda*-epx& z#kZv~h#BMP@0-&rfK@kdsVK~tYnIn5>lPu;QH?|T3q%L&E2E=;Bq-DOj|#I%?{M39 ztlFGRzwCPqdw;pU?#hs*g+3VAXeyj0)WJq5~MQR zH-KY$$lY))AOp|Bkj_mVUZc^H1H!Jpv{nQh5pI(|uAp@_soUK|OJK|aiRE2Y(YMWk z(amn?-uv90udUH;ki3`fXT{z5B7BHrpuUKX`$9rr#K?{Wk^7C{ zYyo<}EUB&VW$Tuj_arwosS21TXHlPAK_m%-d7A31XeQw z4+V|SM!8Nau>lTaZNB>@BK(xckAOSGui^&Z+gKTW#UoyfKZZPSP)kI^iQYX}DEPM` zG8OVUlglIEJ)By{2oSTYRbaQ!5+&b zb7BJfFjD7V8#KHHYFv9}u0oysffjhkK0$n9elLr}DM&5!bxVYBXceIjcXoukMweGd zygVby{*#W}jXoSY=9T#1igV`-a%eFe94#cfw8B&<@TuVPk`I56`G(ndWt2v3!6_6U z5d`Kuu@YFc3lX6G*Y+mF6+^QF2zVMEBB1@=0wsF;4byge_2xS^egeHMhbAf*US+{L zJ;fK8x5%j3(S)ftkC*vJX4ZBZE)4ro2K_)m z$!$MBUep;_&tLC`QDzWQ!=5}mHeQ0-JA7q1I=}(ao@GeX84oNDe*~0c|5jPnGxUn^ z{eWM^Gqvqis4=ML*f=Yq&GBvZXyn$qG_$dEfcv{P#!*7zdi$(5uDNpo*wVF*(gL~J z=|g|jOUIWlPH=eZofbbDFUt07{4(jI%nm;jDmm;@W;ClgYxVXw6{Kb%;6r1qwu;js zbUci83RtI+xpuue{&2F*r_(*d>r`br%E)0JNRzwq3{bPBmP?%ALrFeA!iFupesR}; zd_g6dI`eMGX5j4B#TS&;r<03z9;`KgI z3?x^v%H7f8cVo5Y2Fi_n%^+;HjP<=brqeHq9WAWwcC@&VJAP*kBI1Y*jVk1j%NM8B z)=N>OD$vcR-1W}hek*;{_g0wv&*xc{0J42#u!PIbt<-TL+Gu>m1W#6sqci);IOwxsM$Sg(W=F$GL&~v~UPfqH8jGUG$OR39^+x4W4##Mp|;(CKsrA)A9Z8 zv|G@^*viBz|LMZ$lVUo6H`NhY#iS96+oj1RIQwX^#>m2{Sm0>m4=9j-E{hD?<~y3) zlEk9boA5uxNp}^WUBr-$(c_Ls=q$DwHq}{nf}zJ)-W_omcUvvPvqow_jt7?X_!60tN?;yzf`m~HT-Aw{0kU1fIo-)u-;Ta-=@ zeYywVlQ;WQhW22A7h*+w*VUr@NK*HFR(%YunYY(jiZtIO@ zeC8YFmO`r+c?weQ8BpluCe&SD_6*;rsC5?57Qn&kSikv!j!K z0=gAV18$BH7}PcTj9y}9$>+3E%v`4-u{UBldTIaH5=R=|mNaQcU)R@G)3KeTcPR}7 z_>q2WDH#_REeJ=u9yw`dH;7vBFRO4hogx|QO?BQpyKu2>162nWKuvH?DIg}|N_BiDF zj)CyyGVUBu(FDwaCysCaJcpH))a08X`Mk$YaGzKj$ioZoejiFmS!0;I+a7snNPJZ+V&?Y$#;d$v`T>`CsT z_i@%#ShXNS6pBgvV*_3iNFsOM132E)m*PY`QSF3(H zH#IZBw%}(u3Lh^2oX@p|j$lf7#u06k@0p5`s?7*Sf<#%*i2SM5SPjwDYYJAOyV5`S z^-#w&jn2VI$T?8JG-0!0g<6yg=j*^9&ND`1-)?8>D_zC)zQWtzk8LgbY(pURpa+aP6=i!N!hcIQq@&tAvgKk^xB2H z>=&tFRo6aRcvQPoPA$eT{d>AP!U2JwI~6K3>ha(TTVG-X>Mu#Scf0FCsM-L1Oc_sd((Ser0Za)^WA**znop~DEy(P&jdUlo=P z*7;~K!!95atzHJcrknlKZ0n|4>N~$r@Gw+8*oP6VN`b~O>>%+x!FS(B>abdHj-O1T zPo44AGQB5J>^iKM-$FyBMNrWM>lj;2rnbo@m+o)*UZg^#sBlVV8&mh!;18xbZNyEB zav6MzIL32G%5lKvxHb2__Z=Xf0buJoK#BxQyaR3&C!sF5O<*~$ss#$s;?rB9Gfp30I3FV3f8C)#_ ztVkp|>E~fs-UVo@p)G4VEA*Tx>`Eu#T!Jg_jS`9Q$O|`56yrCN$^;1t*!Y+Ek|ncA zdqk$ju4)4r0w(z5F0rSQ0JHKz<5=gId5XeG^N zH2U4MY`LN{l1Nl_Gzy#(ur~v!oe%zlpci<=xSK16*%RD;WoywQAO_0*(~RqsnZk%v1lGbXZ;G zFBR=YO)anj$r&n3$m#Xzps&~)TMu*e38Ks}4>dFdsIkN0gTcY$4I7ErxL9uKKSO${ z=L+gt@pzNAYEye>W&sW{Nj$e5%H8mlQwGG(IXT(X)YMjf zXt%ewpIRDyia+%-TO(~9DR?|m=+8YXSFe~M)oMP&FNOi%k!dH%oM^woFWzqIe~HKV znW5g398>=M>4@7Tmz>IAw*L$634!g^DLWCiDz%z@7;$BZNNeV z3^L@>ttPV;y9(M%N@5BU*XE?KULD{gOJh;B2Pt_zVc1K(Kq} zIa=K|OfCle8$@Xtu~5saWS=8Udk$R{)*_5g#O;T=qh8+`Cj*_TGCdGqy0=Ns^?m4b z+v7wGvd+G~M@<#|@2kg?ysgzl&pQ?V8phmufKs|*d|tlKiy;1$4VuWymmxxcVsV=F zki{PISDzEL)Sn#Ftjs0Mp0vUMbd7%IFo{2MI77;%F*5mvpXmr|yZs zJ~QAV4__-+WvCnHeQf;sD0}+hI@zzLY4T8AEn?R-jOcO$h=@NTW-+Bv_3<&f{lu2^ zw<-eO5FJ8H(B0FcLj7)1Hv(;sL>Z#8m-Bw$#e(#Ixi4JRV`1h5>%LhnN)%cQ;y4-yuhnP6ehxd06{1+Gefzcl4V9SW+&ubi!n!NdJ zQokTmmbx}I6War{4HyT(X4tN;;x*K@Zt88$mKBV#8l#RUN~uW%ILW^hkHm4Rvyctf zwcN|&^tA*e;3STiJWlJr@-LCUGWTffyiJ+wS-0lR{{BJni@mO1;Spr=NJ429I0C8c zj!DbON=iQ5O)I&<0es*CpOdqV!G??2In$2XeT+p2S?BOi;u8 zE?g`KxFscQJN~n@exPhWLPCOuE>y=PY8EpkV|nI594A0dO-<%+nY^-$YR`!AZBMOf zRs)LWV!gn8cN`3b#TZ_pu++apX|M<1)ps9ab!*ft)5ABBMCS(;sw!X;*NPG+lK;Lo z-Q;K;*)VOX#wAUIO{GU_HA417Gx3!+eYG;uH0Kf~qty~Qp zJj1UzMyA3K+)p*SJTqB|l6WFNp%Ur_ev4(wbyvBKD6OhuWMXo#vxBN1%?Zqwswz#> z_bb?N1x6|sZs{ zoVrynz1-bF1qF~x-(C>!IsmH6-=sc^89uj_o#oX<=lzfM*ROr7fR|U}K;ZxQ$o^g; zk~X~C9^pkvLYDN^mJBJ6+y4*B1^+)x_iN|>N44MnFV#f_K>GXmt?f=chi^k8K@Z#h ziOinV_S$zMrDtR+-0xf6OLYMbrG9^!{yd`2xdTdDQ$JMtKj3(4Zoj05BnO72B_$<= zWhYD0TYpR6NBtlOxNuQ1q4bq}-GSa6#kp(Dhauh;(cCegEd8=8Hgx4u`O{h~cLh~9 zhL++DrO+=sL~>dB$%-gQ4Ot}KM>Nw({@p*b(aa_Lpp3L!xnhl-s&}D`G1%+|5X-8D zUiMW#c#Q~Aey2)7E{COaA}m-Tf~E}(%{dw5GTek&IjKid`jO6$7m1ngD>*`8p&HyC z>@Ar5uUC42G&h~y%bFykPdsVYQ939KsZfvhmHR!Da-nUllF`g$5t>eOWfxN?Y&d(? zi!-2GAg!V~fz(@8w2W}ptD*YvCvfSNyK#?#0sde>&sd|_9M2HOg-w$6{w_x$aJGz1 zjDG#sb;K{43P4?cCVp7~_cwFfe^MGt6xRuvE_{01(vsp&x~t8fR?U`D@mK)#1Jd8r*i}wL(NO zS@d-+m;CdqR^j8R525^hgAk#QdLe3!%8%C??8`NJc5Y_`hbMcj*U87PyOZFxB$)|)De+MjE75@je9w{VAs3am&c`Rn{Re9F@^4>jl0d@C*1zRv&=)Lhr|r9VUO(g-2Juku`m}AN zoK##=kl)t)$_`VlXgBh`pJ+cYI}y;X;Vj^0UOkIajbr^;*&@P=;WubW%-aWSSHMQp zLZTDeD{NIZ4CM*$u7B z%bVsk)}Audpm))trMSVLNHA8(0xDqE}TY;F8d61#;NzM~ba z2i==^n_e0oAIj(BP)l*4TrZBHpt4KfAq#SCINmuoEHHzeDoi3ba?CeBemU}4!@hqH zsQjDM=ib4)3R~f5cY$jNTRimq0FU1gl1+SKZGWi)BY9x=FCyc;^Ow~;;uAD-v!-{( z$ti)JWm9kJ+Yb*{q}F-?p#|Mdfi5qng37V$!MB|QaOEa16y7OSJuPmIc0V1gOFM$j zw%|;Hqf5JsBfT!4LwXFcDkLQPFQwWpt0i1#8)Bo7(6Uq%xw8R4U(%77@Lje`sM2|A zenGJpSTOXeN588UKQ)ttVSl^i6mflp3xlJ#RL)i8W?0 zVU)jhCfEsp8N{P&EqNDkVBuT0bfkNUhY+E;*xa1({AD09wjiC=i&UGTFUC|3UP;d! zBH(_bUL20k01;*CKb){+YcaThbvAc#1i>)M7l3j_JT-@=pak<~wy6p(3D(zyqF;2< zQ0Ih86C9M~Q}fh>Q5?Q2Xa>{1OW%x8)LKI*Twsy#6r+)kmFs`z$5C4xD^o3kV1!MF&o?rtNy zL<<*Pwf^Ai{I^^+N#x-BCC|9e4lAnY@tAjf4jE#yM{Llcczzdy5hR-I=nY0z@{_eZ zz?nQYtOa61ocW)|P^i5@dK;c9 za;WX>04HV1vE3s9Rqk=X+h0bys+rHrkbXnyaN1Ch-Je67e&7Ahb$si&(;Tj%f9;Li zhVY-csO-XOQ;fx2k_8nuF_FwymHZOHSTtPwjY0Is5#Z9q9ukujxJw!3CqHVDf1JCb z5SMT=Prz#OGURX82qB?_0&A9(hIjlU&1fd>h}zB$1fC>{K1AhJ*a?=?X~+s-4Krd__uIV2Yrp+ky7@Rs}ueeL@hnmt6_R*TJdgux&>Zzm zgJY$A4gmBMPjGntaE1@7Pq^W^k4muyw7#C_IK90j#1EF_()M^2_jBG z7tb$>e@jgs6CGsj;XC5=l>W+*I6Tq6ABcYCwPE3=U0dDktN!>-O6;cUL5JHi0pUPl z-GHYt2_9naSjxpYwr(Z+Hp_QtJ9I z)_JRB&yY_WhoQ<(?DE;XglcRB&<$Pk7%AY$Md^7A-)6OX%gM_s(xvz!ab+v36Rm7g zMJbhIJWAAK$btbaP}{KTSuxbI+$~QF3r;Ohkc`)ZX&&%X>wHo6J?k9nF|yaQW;y z#h&|E`9?&R5|T&94_lFL^eOn@NvXCYD21tg>(hS*U1fm8BY$P8B}3MU_LcK?QiVpd z28cCfsyN~D708$M`2@9Pb(cM{J1lEIIZ+T)>B4LGcCJrOD|1530kfmbfJD$dUG{sXNAEh zr``u#lcwD4LJh=^?zyu;8S-E?+EpaJfh#9PCwT|Vj$_gXeGYQ%SM zChoJ0CaNeB@7RKfLikw}G}=Tj4|T8!+swmmL$&R2E;X2)2mwWnoEoM5y_;+(i!4qf z$IH4hPoK-c)2q^Yx6STL-wW4^I9`w9&cH!9I5IfweBp0s-+s5W|L={uKZ>G%T}(f$ zy9Oo5v_n{K^CIKADuLWae4Vg|+_afM zQbg$b%ytA^^W(A`{eVvN& zdl;_^K5ynp4fUDK4!}0EBnbf)GX$F3nG6)0yx#eSBczYsc!#vG+tF{O!oP0rb(&{S zeh{O7vos8kqlV?BR?_p&We2LYS9_!4EVQtTU;D81pM};EbStRuzFgYOnNdvc&r*nW zE=_2NJh$&?!8!DuUtmyWeF08SGYR2sc3jX;#hk0`$Ba(9Oudo?9Lacfj!mLN^G^Q1 ze+3D40PWt?omu3SoG``BB7Z>}BmWDj+V1*!6Qri~#OF z3Flp329UL3DZMpVS0XBgN)u}5{>Rk@dG~zMX`?9ac=%w{Sk%jB3FAlQ+9t23Ber~2 z`F=M4#u-VC%Z84_tL{PIPpaE&@`;;lsgx0oB+t3Tpgv8f^$U2W60b?plvNexy&ahD zJDq%HvdPqUws}{S#C1r>H}==TT!23MWm?Ofa*eYTKi>CM4CL1Y{i-Aa<$y;9^i@a$ z9a@iB*2ZH3$N1J~)y+*I8d6f00+V2ty-^Cn75O~?EN+E#h?oWp(WWkIUmA=Gj`Rn2C&0Z*XyQiZL?EyKFKHpi zrqn2B_lbQ#T|-5RtF-q}O%ys%GrNTBpb^@cy=*fiS*QcUe6MyzL`#m|*0(|ZYJ`4v zid4C&cNyf$udN+u{94hZN_v;LUiESI}+e6nB9=lEdMhhPnhntslGk#)Dbu80D^aY-~x<<5(&bZzjjfQ zX=}HB{*CIjn--GKhnE+w*PT1N#h)MDe#)1WFE%93g*sD!;>U=Xr!( zt8y`i#KQ`y$>2TDbR04_v>4<|(5krDnE6^UsfEdY9iM$~QZW1525uhp2W?G!t=Q64 zUJ2$y;FAAyGJbf-^XqSC*K&To)*&lYNrNM!7vT;o(#eo;Q;~jF^q+0R_tOSwX8g_7 z35y~NFD=?9hw+lBu)aENH*a|fwqEt$i+dG}Jz*)uIV!G3`SvHlrW1?NU~R3cCVq{b zX?6mCuTMDj!eSRd+2w^aMl1AUbJ!uG=WhkJT(@wUVILO`-v?vYSmESQD~Xbd7p=}5 zyAD;5>^dMachbpZIJWfC&?5K6ZfB8uHK}OK%7d@|_(R`Hmk4icyPJjGUaHBaJR3Yh zD#IjwsZykP1L47&3G89=je~>iG_*Uux;`^0;S&Gz!3I6P-rm^k$SR0KpZeT_lfqwG zQBKVqx6dmb-P=O+awu6iWq+HG1mQO$m6@bL?UBM#=>J}A{S0&VWc;evWK>AbWSv?E zm8B(IFpbNwe9m>Ec2z`po$b5qrUv%)!8>=(%bsJ8#X&JJccK=SB(E59Dk}#JQZenG zSWj_QYZp6ya9L9nhjWDSkfyrHp4FhZ&#K^#ov+8iTjz@=@M!>tHku(xdlX;?@bJRD z^?m4qpd-Z3A8Zn9tZaCl*}^x+P^NJnf~oj<7+^dCRxZwtLfpJxqbPFBY#z0h;?p&z zr=@8l4STJ?At{5!-7A!jvi;^SE|&O>I1Mut^V`TZ!|#sHz#u*R9XcwiyYjmD`iv5i zhCsFvd%cgveC;dg>HH_E91;WbowkcB?#D|OG>8;H^B@HS z&gjhMGlG-=fzkTq02!gY!F}w3*2OO4Z-Ha8DYI;&uXpVMS<$G-k}+OWPj+*SVN6D_oD}R4RyszaOrrytvp@_P5s(V1{#FiZ%O%9~GT&H(cq& zp}oxC>=xRvd0IX3@lp6wHG#9hpQxKp=SQ!?Lvr{OrW)jdBNohZskHav*GIM&$kF@e zSt>5-c&Cm<*%^u=a>urD;m@<6vxFsIe#TQ+G1}nww0g#Leic^%k!a9i<`vL~z~4>JEjY*z-i~ znOVj4Hb}13Bf?>BH_+_$ZO`=6Sv{ng_xzxPk473#`7Pw)tj_7o0(zn+^v26Gz>^iNc7n90!Z5?OKtha-7WvG2gtrOAA z!5&s7_6{X??2>>5NAq*g`=;X)ew1|^Q2!~u$y!D^wQ2 zpnpcuU+_R+cURK`_0#6-OEZ+JCSo#k<+IVMeJS-98s6PbHuK=ikA$O(sBt#{e79vH z;lk(O+J=DV385lUO6uZj+v|+M%kxIiW?9A|d&@xI_jzi19zB!Imkk3Dzb`o804M2x zjQ?}we;@uoL*U;7oc}%kd^o^~K7mg_+1)iZF+#hiKmPKMWkiC8cbwbZ%0~RvwS{L# z`T9IESFF%N-ca}XSgiR*k1BM7v*ByNc3%sFAD{C2!uWN7hqbapKRz`wFfutxbQ0Tr z%Zy>mCpA^?3Jd)NvHbbB(gk?d^~Mab#{?h( z(kefSvTJ636gcK40dc{>WU2&cc@rZ}?=f1`HV!Q#-@ryz&2Oc5}5sWwvz zr@}s$%7R`}>azR|lGv$sTSZTZoK=7n>P7tFfi2eLb57di8PK_|%&Sml+xQXrSROpC zz}2@YauZW?hj=-9kBmcbR{W6l_!3e@1|&wp5+|S!Hl|{EQj98s;Dl#Q_BUEQU7_4A zracE#hEonJ=wEr~(^`1a=4n=HE+KocVJtI1Mh2$eiyvd57P6RV)v*Y2gz^NGX z#)yx6QmSv}UR1?xE$iYG-x=;=UO%^3V?a5N_8rN5Nj0pf^9PHCC$E~EE`FjLjWV;lZ7w6%&xh5a@^x$+vprR`{e`)UguRJco_%n4(Uf z9%AA`<3uDotQFlBa~h`|eROAac`2gD$DMcm{OO|nHW#JW^1>d^AN!$4GHsYHHu>@^ z8_SZrnFgzme$S|m@P?%*a^cxicIuYh;%$;o$aLFsD(~baO}xUPDO3+t)nPt*=CxVB zm#p#ShNh}6GJ1-e<;8)@ht-OfrmR6CZt;l%hB_~KGj|Iuajz8X@!=91J4R%7mBne0 zC>-68NT$QJtL3e8pVR0P^w+fn0Rq3rzkjH0!G$+ZDD$gxIgJ?!e2S)Qf zW9iB9c{(rGS*K3jxutJGqf{j+9F$MpVEAjfy{U0n)W?HrXx~G1m&cCYO)0d%x?PPq zha?{LLqZ&rTQzrK_uS55Q4{q=dx$z^(i87s7bkXv9)QUNKtB2UDp z_kSKFTM2ajaE9b@2Gb;U_y{+y$?AvZMdlj0aR%wQKaUBqvvr7~!kOA>)1jf)(80m; z@5c7w`UuCP5grgD=qvpk(6GpsHM7#SkENOt4v%UpG{x=cCoWASM+5Y=HkSE`#9GPj zvWScBPw%G%zpf!HP|{(0jhmP+`azep|N7N+I55<@Disq5{j(d7M0oVY2KR$_a$F!L z`;HGioZlxgW)ssBl$`C%8ZI0lxRgVFczQr)xDaCW7a@IGY|u>9+?xXCldOvnYwE(n5Vt;NH&)rbWF>^O;6Y7 zXRF-t!_07HsNd#hPb+|oulDanL@w%8!ii?SyzoIMXD4-rR1~-1KH!P&O7_Qb_r4@| zJ6n*5?NpQ>#iNnqPsD-bdsXj&GCd|}T+Mo%#NqUrhZ8@)(nee5rGdQMtOZ`C##V5K z9Ji#!SG3i}h@@7!G0lZsf+Me_XAQIS4|rb6 zs4g+p$MB4K4ptx@zQWYOwhdqe@QBk_lh#bLN+~U$C6-3w#suedg{p;0yVK)scDjZv zYj61JY6N7~xL6(Z_u^Ut>NZp+Nhmxm>@N1C*0gJx?^P&IUVu@)KROh_a=%D z{p1REU>%78+K;<0#Yhapx4tEJBqYg8Yr=@Y!Nd=9cPE%mrVRQg&jlVIGV6<7Nd!NYQjT`&pi`kZmnL@IY``@ zNAx`-eFN9R3%S1|YmWQgLxQuD5198ZXpg$S=AzjsgoI|D;eh>G_o^9x0zHHocSW-h z!<7QLp@CIH$aYSWsgGziIB1mpWg~n}kdX0{;Ju@~gvY26+o<+SFy)|aUN-k^HefW7 z*j}|s6{!jn`+_ytq|GIXvExs^FL#_rS1D%aL>gxug~wGatkYg^q6{Uz={4+GWZn<4 z9kKkJ17Gdb+pNyBR)-(l`aEWc)lomB`8$UsC8*C*eFF)H8U|8Ar}+*NP} z@gdu@t{2yjruUj~&;XoUS6W&wVOtZB@(soOFB0T2aJvm}ta)7y&~tuGool8hPmftp z{kweq4K&hs&_fPEj!Y}5Nj5*+HtQfiX6I5a@wy5Adb;v$EyLjHSg~35pLsgJb!U_Q8Dw(4TvL#21bpQR7k9hviLo^IdivvX4;j9E(D9W2GZg$O`sm z6Y{!?m*f0ZwSyiIM-2g?ZN)eid8ZyqM?kv!=dpe3MQ3$B17_PeH@~e==Sw=gF+qbk z_Gw*VA0WbjQLF4V?m5^HMBTdoqz09_1292#afq_RS%77TLb+-kiSyq;*GAYfuqtPe zjCNF$x){V$kZV$IAkcEH9RINjQ;#F$xQtdX*(2zk{+a6ogCWq)yZKDMXPXAy5N3B_ zPEn)BZFW0(7bxaNK9_-H5yh{&olj|WSzv^dpbs7B+giOWWH2<*-+zDCVeWv#a>adx zag{oab6{ni4U^!;rLB9I@?>*iNH<0YRo6Uylw)J_oq-^G2$&jp#-S<-Ft$|n+*yBb z7d19~8dLMh!EC;%K|Sy#J6f*;H*3K${;?vQ+w%~DIp#g)rU*dX=L&&KK|p_ePqiSl z1o?!>C7qO%9hsJRcbi>u`pJtoQ&hCgi74r~^ec8+RvP|j zCo$xbBDSi@$;ElU|A3wSmlGwiyI5gjXef}!0_80~wnKGFCWm-eKLtBn$ZBd-bhQ4f zz>NxAfCLN@n+~ox8tyl7ipW2Jb&Y`DURcbM77<|+uXJXZb|(T?{Q!iSbfaspP%d?K zi9Q7OwUIha0s){p1&_170kM1w;8lJjtt8CsfxCfSVSlzDCT^JfHw>(x)c`gu1O^^9 zjMf4}E=xOZoi66{N=6n8&7YCmR+*^epvT8RwxJk~H$Fsvk;iEKwMnvP*g1}zu^h-> z`cU}@!S|A-&PoPY@ITA5`L|3_AytD<-DjGW8-!T6jDPPI9Fc zL|M`~rZYt0;rNk5uf59F*}SfPp>dtH5e1yW%sv8mYDCF*CaR!wF5cW_2|u{gWbFU~ zn%Yq(3satVo`yXsM(RUKBNI(U&p--*lpW??nXmYnoc)Ms_l9xlh^bE*)6n$d6>1)* zsmu3K98z2R%1!m(pW0BWtO3MVX5UfIEQKVssAJ3M8%N19u1yJ|yDU@)QIm@9LcfkM zwP8NcL>gDRso(|BM{V(yw-)VCYu(YNMOTh()Sx|UnGGD&$3ba0@ymP&uf)djkLs>h z)GYc+D_wf?rue7(3LA}9RR-zDaF94YGw70cT4O0yi!mVQ}H-6^&*gxu04&P_1m zj4&*}Co3l%mK>2IUEPo?p4o%Xa|SNf!XAdcw%o7!7-{z|OCC-OlXNbjjOI_11W(yK z%xhR?Ck55@X^I?ts@CIANUF8|gm*>;m`{2_;Hr}^hcu}WKb*(fzTB^rXYT-}8lb`e zECP81pqup;lW-pVtdjDAN=tL{VWE_!M)t>aSEKy+{rY!ijPn$1TE^*hu70XTav2@u!?fvBf%huhqK#)otFRbdzCt1US0zO-izd z(FGnq38^>v^pK$u<@Tg55W}x>tXVlZEZ$T}pvd231$!0ve*TTqkqo;!xv;P5x@RDb zd^P7I%z7L1CUzP5;k?AC(&c!$$~QJ9f?(lj;BfkHZ%`*M@}NT++Ks=NEW!Yy!+ddi zk3Q~VhN`}ufPN^eed}^^NuU;HL~0CHfd6Yt;0(c-*+lHm(>aUWKPbtv0nDPaF)Jk0 z--Um_|BB$l3;8(=ySTm?Es5rHbe9c$;FbF0^FA2!z>FMIzZz}QH~VI6mR!gWL;3XM z9(s!&%1McV78Dzwst>yZoa-!?l7dlr;LApr`Gae{|3229FZZj_;_Wc=7>GQJ3%6-C_i5?1RV z{eXY|NLE~WNm}R?WX5G+_XWo(vQ}>DSY_i{+1OB&%><0r#O-so*~&9Btjx@O1?C5b z3WVGX*&4U=cB2V+mDagdw)XsRU5BTE9qDJXgy z3NQixDs1LsVi}D*%!wxScM_o;fVDX5ev%QJld7>C&ZSxs2{L*>yx+4C>5+D~lwYyH zsd^_9r#nGLrn9RH&6ly}CS&jQ_;4wN;fp*;R?96bM`<>X=H_Tgz5YXKzs&xq+AcPi zc$?emK8NT;ucT=FPcwokz}{j&-^#6`i+;U&UN}^Txi?R+kR-FG)$Q%=T^$MD0fD3D z5@Srp@S>rMi=~p0lzdIEH9yW!T+k$h<&giz#YJJP(k^%HfFMUyf7Qx3h)LuyY3INd zTY>xOKqj7M3d0?iSJ}EV8QdBE42f*sfrOn^drxYZlt6h05wy*s+OPDwO;_J;F!!lj z8&{N)^8Tp5hvo!KE+j;E510)Tw*m(kcFmA{W{;5Mi@ODtmT7hF&Y2A@h)|TnQU8Wy z`6XayzmwpUyjF{R9w#Xxx6?4pD*WePcFT> z7&_Gv9W>B6V;SzYCl|7-Ydab$f-$Vu19pN+hGqUFbPnZf3*nX8H$v4I6cOEKJ&Ywm z8@m^X;O3q@$eY)(O=$SWBBVkpH_jA)-qty;p5%TAnbcIr+aj7l?*a^3y{;13utf>5 zEW3-I?-Z7(O0csmF{0wte9P&tS1@-;-6Lpe9UFsE81!=YwjqbF0?@o&thZM2e+A

Mb72}l2{OGHwa<7{fePa(=5M<|GXJ()cFzA*Oru{VB9-T)!iy9=5X>?`+kDG=y%|4BV!u2dc&qu#89j4HIz7I3?nfi3)EqwCA~*=#tMJ9#QCl7{vzjPP~J^TlVHEgs*8!HGNVnS8?)M%lf~?k{Kb zQB3woOGla7X54o0;UR);z?^Q&?=w)D-{`7)-_`2(DNf6i^-*~|xkU7O=k?_qUrO|Y zrQ+HYBw4)a(?W8>C^>-OSeSQ1%(~$F1M(S09O8{7>xVffH{kTaPhOf7L`H z5ob_yWMvJP>Sd^!k768s6*NydFwq<642T*em^RuS?m(?I@f{#$(8n#X@80-up)lbH zzLYMqy8Qcckdcv@_w$$jJiV`Wn}J3S7}rn^2uTMBoBVd)H6Sz?%0r$}Wa+mlkLOYN zq@1TQ{tlHK3bsIak-O2{-IzXR9q_(|!8>^pQGVU4@L$UbO(o;UkQs$JL7 zmsBj8tB?@+$w%19d_v)l2gSE@jS}AHtBXsB3C|q9J-9qo-17mY@u0MWe)ore5|rCO zlkIdLkW*ejLfTDXAS!#lZmQI26WeLu^vG`k)Zk{_w-DUksl0Ga020D!d zH()5+>XFhndMJ0K^U>K~pkjv!d)P^k(3*&Mv`z)BO+Jwui)MN6Q~H)=yB!H{8{h_! zW?r4?3b`MJh)Fk+oJXt>@>0S3O3SdH|7+hsN`AkkEms#G00$04b)>1gB7fU8(eR=G z&#Cl&f8|;~VtHJV8S35^3^n3U;ymu7NiR^}T}M%n{X>e$NWHc_qnS4a{z7sD$4QVw zc6eupayLNxVG#fHe$08Bg)ERT$a7kL4Egxw)INP{*aA~2%l;SSKk7Er+IQEuk(6>V zhwp`|do#WE27Qk2M|RAduMlvvBwE@w^;0faCgx!$iGssn?(5uR%isd|^V1G1%f9!& zdm(Yk=C|MetHvQp{-X# z1O^2S43HPd0!ZV~y_~bV_tBG8lu(X5iSw>DTANpJGd6hSgzIv6HeV$jZ?9qDXn-2$ z@3WPZbvAu#i#sHr||*>+ov|B;I&lFynN`DMJzF7BC(ANo)^x#Dlm07_mk|JFpg-%K5@JYL~K2_f>!M z#0{y+rI<)B4f%N5Q!%r!RbTZ7*xm1^$T;vHVM>wt1O^(|AhK+4?|azlFgfxtFgX%w zC@6&l>#Wb$qrr9a>09M8jNS=r4z+FX2?ja2`0VJbNn}}DQ!R-OeQeB^M&QX7c%;1i zK=4lbZh$7}>HC!Jp$G1hf~HV^7e(~e`>LEJzSZ#i8eDuxR8U}NvkZi@o3WtwB*JaB z;)%iECtWI+ohk=yx!CqmaDs{VP+wIGPg!5HlxCC9Q3JUegA)_$l5B@0Vb1i5g32Ad zq{Qr4Y=URIT|)H)kbykk*F8;QnSG(;W=KtPtI1&vFqk_0ef}mYl6C7}H z#k_B2ZtLS=CU4{;AHw&MebOj%MDcB%Q|Fk$HMubhGvcKI`R^p2e`?;Cs0+o1X-+Fa zhm@?ifr)WQeDhvq^UfXE5o`&^jBU}$135&E2WFGKs_Ufmn7-WcOF@i(b2%TBt4vg3 zo~YX`mzR{QuB2ktz)y;&)x^}gk!0pe4_MWST`#Xq$ept&990}<`TI)N$;#MO$f2yf zDI#feO|Mt})S7;+0m4^C%ydOGreQ$iG8W>=N&8Nv?vgFA0wc?r3mvC&6VU7 zGdoGoSX|2VV_6H5&t}S@;{iNT&V!XYa9A|*=YYo6@K7Q?Wjd`>;dgKb!_=(;v~Nl# z$J3B@*MpS0a2|(`T=8WGw!N(t#zsx&(#gYqJ?x)KQ<>BBAo1WAtC8Dag}mb4`GVf^ z!5V{(#cmWua47J)LaNFwjylBw-`h_4RZ$b=SGMJ|TmJ@eGk4lai9u zo1+ZAjkdbL^u4^zf4pNtwZelH3rQi*1jArZ`y;x?8z_Ya(-UK9-{#&?u5hjE8)#~3 zYOe*`am}Gr3|p*%n%bD#0v#-YF4^uH^OuV(RPpRw7L+#Krim8alh>f(26Hz-NKVqR zbhrJ`!o~%Ubfj3)vcPO{!WVZwD60^61jp}5XJiBfx7rA4Q`Gw`9(0*DL?dDjRH1xq zPR8PVM2^Zk#P^w9;^1hG@ts$OCO|xGXqN%ry4gTUEj7Vo$e}H|BGn%2pK}OTeg1W~|O27AQ^0+O%lQ>ktJ~K`>wLSZJ4|`W*MVzmhgmg*@?TS(}$+U4w=- zudijBIfgxbTYlx{*iz*J|2{=*;Zfi3nYiy@sDLSbyS#vQ5I}4Rqi)#MLpAzLe1cy7 zjz0bZx%&1UbHa}nA`a>1>m^i4DPB=Z;$o-jXd9W zZGwqvCNi@%I(8Y0GF@xi5d+P*PlmBdgQy*?r3|?OszFs1^M|+em3hg1s#AaI| zlGc>>=UKz`JMG}TWznnUzgHJO|$YJU}*^KyOR5 zp1{wrFgsGgbahy2ir}$CiFL#<(PwEBPB`uw{W8k&vP+t7RXA?$7#tp+nCHqM@oHy!gn;z2}=bXvKwnlL^NUkYPkLB3SdFEFlS41hx5t^Dkmf3j0~_X?K7 z=%39}Kvj;a09TtyH|v?&0Rc9xU^AZyJC>+`8P^pzw$+st6&01`b+o!UKNT!8T__dx zj;GnD@!+0WQ9i*e7s@LH@yd=jBdq#W?x(6s^D}LnI`G*i}pUz<$?X~& zz%I_AkLpzKFJRYtHR;+ke@G6JcFWXS(brH>@2RlMxidOWc=kgcWXX+7V0I?q2MJ*e zYXekkbl>MJ2yc2=yjuT)GN(8E&}1Qp4(t^e%hk%ra?!rYCTp&M`~q`*^*h}aPV-jA z;bD?)#_=wOCReb1ZL#|fyckfl64`}aqYx-5&XFA`!#_M{&S9;SMeCg4VWkf~QlE@) zcTvuH31Ev1Hk-oVNwaCtpgy*k_n++d(!CsMPH4_18RwzZ*%u-L`4%S^esI<)H6l&e zKp|N-cF(UU&h<<$uivuvmvu=xl$vbT$F4D7wNfrl4Du7K+mVS2$BldXjM?uQ67^7- zswimUJ1%g{ajGaIklki6lWnqE3_nO$>uUQZOCpT>q@K1ymwh_)Xe(EsEjC(n-CGq6 zLoN!2oHE&c9Ytn@l9gN^F3=Sa1s_Op>A$4 zTR#q#Y~p2!RUF}XTREmd15O3_MF`vfOY{@fTJ-k5 z0|`4M&1du!iTmScwETQJhB=~LPehN;_m5c3Cs7kP;cBlwq8rn~+CR-s<7Qf}dky$jG9I!!f$r{T$;jW@-V%qrc-#Tw*ma326m|8Aa9C&}6>o*4$MZ0yze2z3XG zW3s>dvseX|cEb^T7Dn~V5OGv*F=$^!-{`^DMQ0qpDw7hPpeA?DV|Ao*V+NNIz1-5$ znq9{tt@Af)m9gicD23&HZ7PCMAK?2*atqK*{}+YGSy<2pqi1?+p`Bq1tKoId*R4-E z%($x~LzCX=hGbk3!2)^$Bz{#OY;)-?17EAw-m$Ck_E0FbLcNo@MR1==>@s%5`Iox~ z&9WeR<@LpGO_H#k(_Bx(Jaf1p)^vRGfn2Ju4VEQJW*@$)fKk2C^Ez3uVeRvsx#_K1 zd(Evq5zg4PWv}1=g9JuAeE+^jc5pNPrS|Kl+^`Kl^@+P{RKi-URd1^9|AB zKs7E%)P%m|R6fpqWoap0QJW&RvxDDAEwM?s?&_ESxa&9ynd>lrBHd&K10nx*Px|Kz zMLP9OH~(cNV@te{^U4T*eC@!{Q@G0#TGK=HDT-sMd*Mwmr>oO_X-{7dvl<<}OvG25 z`(7gKeZPM=6NfzqQGinq(BD+E^e(_&^$j~^^*)MCN`((~VR2ejL&Ztvrx-F+jaRQH ze?|nVl3dz(_>+S)6+Z!aocom6TVSM{KF8}{?ZeI5JqelCluEOSqlhGO0Ckvf#ksMz zIFA)Y)ym%915(>76pkVT=WBqNi{s&10G^)HPbAoQW*dRJk@OR*(o$>aM7ncM9i?#7 z@x94m)*#Uv2BTb_o*qG&iGKx#+snD*&;ayD>OX%m`m`=-7`={W@K2i&Z-;W!BTr#! z+?YJN+jhxIvo~kZ%&ks;q@={)S(jVgKK51j@Cb*mt-?`;ucb%gv~`g5Qt*Jet@yVk zo2U0-rqT&b9n0Rcu+A?wKH#ruPjSR}JqrrX$trA2^R(b@J_TH8V3#SShR?JZ-k(qZ zhifjS@Qoc(&)FIXL5ee0uTFjjS} z#ScDHp~fof*#}o|`Q$Q(hb~4__Fh;KaGmtS@G9OI5F5%jdy>q`^s9@68rE(5EupF< zkrlmzmuR60II%zcAT)S>tj%kzf3=Zh#G*kgaXb@Q@(^tgHre>p)&q%e?3>M{X?k-HLeA-VfhXiC1JbfxpxJwT znuCn?#;5G{MNp9=Uw?Q2@sl4oRoJFFdr+KJ$D3RzT`0K^i00*QGs%FQ$l^uM#P|iS z0jtx6Tv|vf*bJa^T1r$?*rf29Zhx4rvb}QW?2r6xB<%MTUwXqSqZMU9Nk4XPTtGJy zgV$LbjJG@}?KFo$Ct#!gFl^Ix=&{)M7tRajLTFV1K8 z_n3~wJYVApCOQ~z!mMeyv3Q4auN`YI9c(1t{NUxU1%qWgcz24G?9j=A>%J0}KlgJc z3y}d^%t6KTx|?6kuPH%m6)60?Qe+m5ML6g)dcuz97R+CWyBan4sSbyD2xbHIIztSW zEQ^|l)abNt_2$vogpw(cnQ4H09g&FyG5;twSNbva%S5c4B)b;=AJ_J2*`T+wtDb*- zZ0Zs_%{3dRx9M($nZ3|l-D^Iqtm~A)JC1^)mB0wcoUEqce2Uk?5~U`q!`*A=Qlx7P zjrn9%#1|ml$1R=I{rXQXK2>>5eHeFV#?5{QbAA)|5vbdME39xm^Jq;jA5qq0Yii$L zn|JTK=e@HG{hpU@KJV`vhx&QZ*218cENwby=H>e;4*Lj9Aw5QD-Z_$wg=)KRwSIJR z0l(^=G9?d`Z?(CLrYlVW?e>dKfAmViX13Wah}tmn_;^91I~Laxeq!RI<6oN52|o?j zxM#4r>3U|zr>CJLW1rBCj!;`90TvRg_6)k(>)ZMH#hlaEcFv>oc@LdL=pRUNqvyZX z5Xydv4+s@*9YV5E1{F8weGd~NvAERgXA7SCyUnvj{KAm=mf@P=mIkT^=mwuoYm=)E zjOFtlUXxq8%gyf53y|9ouktS-aMS9>$QTyljPs((<8<&w0($xSs!#9YJkIZH%l^*P z7?w*qhA-Ga0c~;Gx#_wFG_px3M5_9ivAKDRWVT)xOq$4ol>;}2k3-Yt5AN1ZogxwH z7uUT8KJ)S|^)j+cGdzU;kd02yyHPnahI|%DBMLt37Kk8yWtEKXF=7KrJUvE@)*9WM zZx+P$vsGz8+TdBm=u5kV+@`5NZ2kT8=gM`fw?(UH=vkQK?eIxqi-!QRPQCQFUFmf_ zG{zEPR~$krh0XrY@U2ewJzT^G(mUDX1&uKF?Dckslfeh*sR$a6)eYxHmpQ58o@S^x z0;P>cS`vB~(l_OMi>`Jd8JCB+7L6^BdO)V+C=Re{K0m2kPk+n>r9)82`|7Xz`1Q@Y z8*!k_G&i{NOOK6)>23k&24=roI#S2;-cr*;Kcyj*f3}`yCIX;+E%K<;*y5)_zvYg^i*Uub8%wn%f3PDxl0o`RqG&pv~V_t#Y?2mZfDvEF0#^r)i>c*Snw z6@`Qbt-vSda0g86sY{NvTV_38-+V*6_<^Z6MRVu$$7rfWZQCEIEX+pC{%kp1xRS89AIiP ziXtA+ZhoE$1ieEorrTJGsSpDvz@zvtFV z3-U?@w+~A2%=NvnB$!GhjA{{-zzZ5e^3yR+dnE(Kn=6s4Nl03iuQi2vWTC3#ORWw| z;1S8&JepxQ>PZ=x8>2x{*VA-8LQBmCn2P1Aj7Eut-O7Fj9li$lG`wgA%EeG#P%1!r zQ05;j3AFLxAU-g`anbKe31)}WqR1Y zzDF!7!2luO|BQH9t8fAbyK?H^zv{Ux?As<47iZ=7q#a z>N*7+;+BmQJ6eM9PyD!q#$z*wy1II^t7I^;xZcT&*XUqQ{+wrs$uq67leejKwc3-xWqusNei`u-a>4)Q z*KdfK1mqsm5=SCvu)5kV1iWz`G-K91?d;a2Spp*-ebvgTl35FAZ?PzAC>!r)cE zO>0}HvwO5>V#gmY+DtVi8v!DC&hUD)XoOG_fE|#Y7etc`c#Xlk@ z*6TfT75+q_ZRbvDHidrTy8W(!?!p7JuW#&XY7!bU98%m{R+(ZrqJ)KQZ;@( zEZg%G!uCd6lpRAv_0l8%7xLY-71YDr{NLXXK>WW-`2QIGzxi?C=XdL3?Ov*@8E%>5 z?Cju4WxT=lo!GsqiS0mpZas*MsJWFkaEvNR0Igqqm{8#b7Q@IVl`5Q%p=mTYT`R>-~y|-_}w%!0*;ebb2vrwe}kR zet9=#sVOjO6hK?|_ts2TT3>2}tPJ)>ra6oHQQ>04Km0k_rio%zRZLiFsKRbT+sK@3Lrqszb+OYO8?L4Mg?Lk0TU3^!qUfssA(wJDjP@;wi8bgjY&LGSN@=5? zDdIWO3S157V%=Tz?HCkNYkagls?rm91AkE}WDhOyxHcTxF`jU{6K}PKOXIMB7N4** zj8CbrdlFIq0~1~2x-ymff=0>Y;Bk;<7VUI07g4c1#rC>JH91MS_L1t1t8G}>TGvW- zPwBcP^G2C-DCG1-g^-(Y5=#s?pcdsDwHt0g;6+MHXN8?6@Svm_Tqr#?A7={T>dp0V z2m9xuc@?{i8fRI<&fhfyQ$zDn!J*s$DpZNgAxfH@jC4}-{*v}%cg0r~1z}uKNH;`b z!~j_ak-w#m`8nmO1C3(5@~1GE7r`Q=Wk_f+1F9Llg&nLGglG_CVUlw$%-!U8L&vIJ zEUM8=>VkD3wE)9H$>K@AYwf~IRmn}?YVr`@4w8)NqzaAu&_ED0d7_J*&pM4~q$R;y z*VbQe9Gfq95xV)qA*f*S{sGZ;sp-QnR{rFWzo^pUX2L&OSnHD&WlCdq47>heBsd zRBVU>B84jCB+Y+%?(Kyn&7+5(V-;dj^V$NRTKAn~P<4H`W%r!I2i(=h5kK)GICPW8d=jtwa#X%biX z`IB;7MEMt`Xyu!u;0Rg?NKq&7rP8=P$Jba$v>F_PnF$LkXkFr*5HBtazaPGL=LTc| zp(-OVKqx*gh6XOYPgruUl7*4o0hN*J`RAkPEi*P<5?=M0>bNa}l`o-RpkdwFO)p8( z&Q<8%Xx||bI_AhSW^V>-rs3@V4T|shN3Nm!kb_0SiJ)sh!QzTSIkf1G5E05Ydz5c4 z_&FOAv_2x=IoBm3lE^qe8XOS3WQOQTVkz36-j8$e>tc0?K=njLIw`|SdRb&PQVMhs z>fFL0*yR!};DktMP?4i%a0|5=%c`I_A#e!?RqVDiswFwj%5X<}QXJ0KM8uYBU}&l70)) z?QnC-PlWu1&C}5efxinIhx}92NpIXyIn#iGp1B=#k}-5^WNoO=rEQy^pTr{nj~;Qc zkv!|03+-BnQ=Uhg8|SWvYGqYIyAF$*p!nV)2=5Rn1ov!9#lmk{Z!MOtZw=wupnxOi z?*d=I)`&4cN9Z|u!{0a~@Z0kk49Kr`o2FuLoB!r@AllgAMF2$Ja#8_46)eh!3L48c z0h^5RUR%=g{_o9S4qJnj=PGgY9*y9gW~k3Y`k~SOtp-;PVYO_CDsN%1U}Y;We&WR3 zenAF9EGr+vkle|G3|AZ7A*2RZ)H zeIs9}qaz$-pL)!?-UHe>88W|l(-=5N)y#X7JxVUuo2tMXc*(HNf>sglhhqEg&u-tYyo(dkK0|%^3cmqeOUSPex#(;i?m2&MqJ}}rf_Pq`#;`Rm? zeYYm$zVp4ZpG)fqy3*?8_1VW~#pgbFcEX^N*X z2O1yfQ&rnq%TOis=V|@YRfP*%S$6z#{eD?67P(tvV5jzdmv$m0A|2}p4v?^NAvA6) z92q~o@$;y9)3k2F|FeW#(9du8T@Cl!E9r(cZqC4>(t+EaI3JfSqx zoLR~%*{JwYa=FAAHBx^JgJ)cJ_q)f*hsSUR}FqgH6iOoqqXz> zlZ8QPYb5$(UaP{`opwb`h??lzuhJJ6=I()dmDw9F)-XaKIz_HvC2}?OQh-ug_Pw$WV1xvjR~l1_ot2%Eynd~4G^QtiaqG~(-rjKp5ViH2 z&f+E&CU%;wcjtht2V(j{e~nK#j9%BG4!#YkoyHjFaX6!yhblqGw_kqAWbq?9v*%{M zmyz4t;$so7gD3~VxcvAsHC_K61vq7cp(!(+XHq{(r|z-_Fzb*)sT@<26Sh86=^@ed z=7T>E*ZJK1Wbhp3K&VcN2G4}E3Qq%fYw*lfdhkx?!Jo59ZTOI+k%;U{a*kBQ+fL`EEo{w6NCVVqs;?D3HwvjkEDB znjWD09Z-XDxSOb0BZ#dK?-ZC49$09`iz7}0TYkUW#cmAFt(zvxv^O7B4Swb`VaYEZ z3ZM*|O)VRxd$_dNa&RjXeFOC!yd8nbsUFr^LjQiWRLAb5i?fA3z0(v_t@ivQcW^*n ziZ3%k(fXQ{7y0@oV=e@yJTK)j7MbtsT$)dGub$MuryG>58}}bMdY5~*QBU>PLz?iM z5Tb6N54tM&cjYEfsRw+se)1>D6^?hWCsrusZ5F4sH^PLihj>~cb&7jIKe?z_;CS9^ z?1x_k39+0xaH=G>W(ikojFg(6;RbRjUo?;JXV)4fU7?PpHEz16Sb$mJh*I3sxCP}T zsS}Iq(4cGI3ZvZK+ZENiT)S`*sa=t%uZ$-W!0PVaZEQE+)6%}a1r9)bapkk7 z_AVxAd4uIFZp;y{*G#95HGXN*C=JhI6y(O3&PA^57BgJ=m}FRpwC4c>iJ=99&DWmG zg*<@3<08VZo^1pQ5X-zLk{$nd>B~7kb?M@&qEz0yYB`tLy?JK;x$@?^^8Obl7M_1Q*qs%R8 ze+3q1$vI_R4bIFI-4k5vvD|GxepL!RB$4Sd+tF*8?YG8K{%-I(WgOebOHQgo?F02G{5G3cNZ;p{ zx<%l-6?SrHs4p)s&##?zg7a9o*Z;QKEej2UyT845B&#@-j6?+tgz`gDHf#koS(KWSs7cTs>X>lfR;)t~#h+{nrlpfi zf)dCh$rJc7#Lc@22QNu=m`@j=*hd^|QE}(eKL>o<3~k!nyI*r*beLBs$CfG0-_HBR5+h3mZo%j6fs$I3Ku3dd~^kkv4^x&Ah9h zLPxjMN*wQ64&{2plvsK&7M5POc}8y+lARnLoFvRnxEJv=by0f{eX~{4<&Yx71#98= za@ul)NGH$V>3EKliLE z<50z&W?Jd%qW!kyfKya_=2xdz8);%(+}BrBi6k9o#7M(29DtLKJYUO#vGbJ+``?pG zK?eu!;$sJ*+3Mw7aTvJ{S5@{5^gFvS(uNy&vDi`+xtOjUcS9E`XWJ`y?-oWUHTEh8 z?KHY3J6J=E8srl|T5ooS=SQ~hQEiUgBBXBD{!UeGSjMdovp41SR>9-)=Tp7krYdG3 z>KYi~38Ts4<^_WX-0#w-v6U-{T=ag?N3T%d$i$>o3b3DM^!K+p(`>2SEthd{qQzW_ z40|1@V#q+Br%vBU$`wzpkHGEN3+>4{?`m`9vQPeDin~_~w>^ZFtBK_H#~D2eF(Dfc zO(}RhF~zk@dw5{C5~shfC8Ap4hhO?G-J(pJZ{H)t`1*&0kCD4*RPZUx%vOHa^G&nH z29r(m4E0QnKMN^`w!~8L`}4hPPA$VmkE@zQX&|tR6%eO(@`Q$7|GZ|sL)cPU%!Yr zk2CjyK;anR7#KLG89r5}V>g^S09#vLEuY>!9Z6~FS7+sC9_U|>Tdoys;uq^Jj^_~O zI^U{HEI8I3=Fh{MA#x%{)6$kF`=`a+nHV-@@T_9G^Aewe*>9lQT?O+u@(0PZ>Bbr@lVdTcpH2A}}@pgqQ5mSVZ6SZ@d9m(sy8CO*7YN)4$|mO$QRelmbHJjD9EVsYN#aZ4=yC*s_ywNfkdG%7{eW2+l+o8Dg|)}P;wV3m6F6pL zuFm=*>rML`O3ZhV)rAt2*}N?LKcs}q!SP@yM#0P4l!UvyK7|dHoXA=iS)v4t?p~yS zRsZa(E3u7)h6MQEIFMB%@>sKbxWx~Mg+lb%YOa|0sTuwKn@iY9+QrMeiACc_XCaN( znkDyrBa>DfYnMCw`0$rZWHMTc94@~Da>Un?C6mAj*05`H1sWqp_;+leZMg3rG6gfc z3UGp3H@FWz7er(Xl9vI0Ic(h1bJ1smU^k==x=#rav(X8Hl)vc`{fJM`j}H(29({4@ zy%+efTTeC*9QcD>KfEmuUMAso!tKCkS66?ujSxwLR` z$Bw5YOy`gRzX`G=jeR-n=&bz*ecuh{upl;?N@AeI*5&3)>_BrN1gkv&wHa46Yh$TTNUrEW~1FX0JfrcA>n^?^ENzJG|7 zN-GI3`P(wfvZtq%b>eYSdjM76>~Fl>mz-xx4;4bGFNT*z(^nej9q7c4!atVAAGX3kpYevN4OS5k zVcWQ7Y&WT&%gPQCWxx0#Ycs;K@= zUl;zafdWCM@S+#Smzk)tva-g{(%~iKksB5FIkGjdIXyVN-ZwI~aJ@Fi3|M+BZnTsp zvFkgh^Vv1BvM{&4%$j*=sCO>5;H%4&dB}`1-(2x94t-N1L<+ZI7jcW)940J6_d6LLo@f=Uc4vtZ}Bs}xX;D;$;H+ArC~+qmn}El@RD+2 zP)BR4`IUO7^yuIyJrg>l^1y)&UwKH#PQVai&3Hvx`^&4Fdua|^#jD^rVYzG+^aPqq zGbtBtG?Di-e?;9}pgcP@J7gE?apTs+D1<6!b`PE!`&Q=8)yd&`4M0+oy(&R^xaX1m zzHQ%AVYk%zEfO6}WD=&+;7Ds#jnL;iI;N&;>6Q72PGBW4p+rA-*Q%hVI^QrJp_nmB zA=$JBKVid$*H)Jp%ML}W{`2hlGkc`ot2uwE&1CYGcfNhhU~{sQrz#OGkO05#_^H;XA&oztnyVmrh)KYt= z4FDIfXb%Q2gWM*Dj+raM%8BnB|(FYRci%+h8Nzj-F(B%wiLF z85j(g=5v zuxb%Io?B;LAi|+`k(y8fVtITlud{%Fu+x79X$@Ad#1&8 zoJ%a5HNAB{>Ikig$tEvUe?hvvgv=Lcdq3ZX1#=-R=~alI9rd*pzs`?>1A)M`zPdVV z))++i6_LKaI&6@_yyL9snL36YQaViO5O(SEx?fVQDZ+NU`sxwiv0SCze7-WoUK=we z5ZbS@47id!@78iWkTk&6j)`1q9S69ES8r4beAuHu1x-8BysfL zz97xBxGHV1xE)zv_~fEM^0|w8YQLX`;Pek3pgMc|*8WO8b9OIt9MAiHb8ko5(e2r5d{+xv2~c|6C+xr`x8Y{C3hMZXOjo>zuUyY|``TRv2oQEGSm5^W`-f)X{sr>ijP8F0fo6#i!xAB-rXfi8a*$Fc?2_9*=43 zyf_fl*?Lb>Sx~ms`0)G8c31A_s6LHKsn;8V3nNL_8e*S6(mN%iH%}%DHT#}Y}qRnGx3rrUEG}ywuR8x7#(ERyMCw&I33nA3DGB!=g+A|U{z3k z#0QC1K{;nH6P+Vc^$RIZmp#B*xNiM3NAauTsi-HoZt`Bxsr8}Q(X}t8%@`PCEu~+8 zzPHS2yC@BW-j`&n`5va<4s#;A3ic&%WREJ@Sbg_ERo>KVh_TzsTT`7dxA+=^U#O9fZlk~`Woz8PSnuT~LWSGaN`ulATa`#V9utYYU5Y9jTMDl(+J*#)>4D9{ zXkZ|E_q~412DSAcwiwajJDtNNE+6+a>gRt;zEKElINv92Sp}LV}BY z$-C2P{>eHX1~ae#+(Jv~k4JdO9Zu7Qxp!MgUbg+1^6@~`FlF+Bcv58he)?spce0LK8Uia31?s)G% zRl`TXEq)p5+LpINix;7K>fIzcTnFX9R%x90K-f}S0^68O*!kIBd>XcBKkw_HU33@> z4>9`N=fMBCg|CC8M@O5zv>u$?Xw2ri;R$-Nb+t)bvbg0A{u@&%m)SICSWAMQ&y)4W znHic4O?Kd%C?aFj5wPT?p+8KfrWj1@T|G4Y#=DQ2RfU@I4#{oM1UGktxpec|jlri5 zMYy|*3i^@VkuRs!kC8HC)|R#QlvIvTW{g!Ht5iH1xLi%%DC`KvBWmAR;UcoR@yD)d zR#S29wV{rdM7n+}JEH8~(aJ@uxFrrUvwL=A;>(y-?&P@=z{SEp-`D@ViiK(+RnOLy zlW=A5Qt^>}uP;0rN%+Ql?3@%rt<@^(=B}9%)A%)W?S61Y{5i-s=aZT3gZ5p%-Ef3C z?m9-uO;z>X3FSRvHXz}lWdrk>E%i7QmCf2;z-9x;Oet`|#(e@r+xYVnqi=T^AFs?Q zIXe&7oGQVDj~qmwfG;SmUlA(8Q~E4lr!5lLZJf{=6A||w+rwOC4OvG>ld+(gm*!cY zqu;j&!pm%_ah=91a(DDjc{z?RPd--&YI4vC?dpy3McOlR)n( zNdg_pTT^@zdQS;!Ra%SN3_!2(+yFV2`2{I;WhuFN6}*ym_4Y$EU-8SHWo#>zHgA=_ zp%5s|DLvMtbsR)JlTp~-Ax&0~pr}mtZ#^`dYM4PDrX2lvrDJcwjh0H(@tbNsMKrFH z8`5jLc(e4h@}?2w6%&y=Yk$qqHEARBp7#*lybC{8pK!bkc2yzUapM~yTyxqT9E|RZ zRj2-0mi}e+2q|0=FqWNB7j>`=X!nk9*sGvptqW+x`-4*g&Woi%6Ll5ve-| zbmbt%Hgnf^zLW^pLY97u{!%hn={Zr>!DDRnGCuBjt%#TFO%n^#JJY}I(?yS%xZT|9rOxOOBn z^!4(tGJkR2s8_zl%`&1NN4I4~=l_+F$bk6S_P6x)k5kPy;64V!s-f?JCqsZCv%H{D z_IeVpLscuRY_KnbdqM3D$Ar!uOfooqB@XQcFy-jQdVXSnlag-Gd7fJ*CrxL3QrFOv z)7M5aw>o5ISt=EGf^i{2^{3u(lS8L4pdawtck$acMo~~qA>NZJ_@KCCg98zs` zAN0V}@yw%pK~mvHMZk<#NMZO^oD|}e;3MAnu93;^!}#*K^(6L@%^AovpA}-mi)`)N zsA0ZgJA?YXg{*QDsGt0`Z<^SNRMA@bKRNvOOG4_D3=ArNVsNdXB@&MxlSf zJ^={Ysi~7#SU=~sAN!<`+ZZEIJf%HN;R)S6*-XS6Vbls8H>is1Yq$s0+1-kj@Wxw9 zPZ=jNXh&yTy&yAt+pm>ZVG|lWIQvKQLbLm7&1-iK@tI*Gw2C#$A=Rw9P;^K&yRf_g z$I%H@Nl~xPr#gG_IJ=j$oPP9{*iK~DSoG-{gOpd$)%erV_AT(^S;mHq=ccd`0Y>rsDLSTzQbTG@@FH538O(5I{^&W--l@k45O6M9UwwtY$8aeGfgFSF^4Vsv}& zzY>(V5X7(1yNgT_0Y_h7Jg@Y~=^kDnms!6T((_jNFN?Ql*D^>Z0 zpkG0KX5YT{l`MZ4XN@xRzy{_dR$P5vtqr_^ubNIthuV$Hutwn;@Q$MzJ%AYtZ&qajnz&{IwJ#RP{WMinLkx?nD8* zDK!5p-gg}3h}lqNDzs|vE})qbR;sz@VCzsA!E3>rQ26jOM3w@dRXRPjphr@v4wdl+ z2A)*m+uv_qtCm<7-_7}&4ExlpLvB0NDhLvlr#A9;^GGg|9n2G4 zO!t&&A3of^!F$@9DY#Ck$5e7sX;Mk71rOr7&*e`57}a1+R10^l`(@wwGI}#!Sf4-i z`n}Y-{IZ^%8SKA1J7>~5tSCZBN~xvn&=CG>UAv5k$X?bg6)99S-1^O%;1lz!Uy zNzWcS8M|((!<9f}%Hz0q?=Dgo>&B?CSN|p)*?HoshzM@xxgGqbH+{wyCY#!Oh828@!WEJ<4PIVkdX*?ZFmE4=p3 zOf}&->1^boDJg&qWZJ0O=f>B|LX>nUUZ0rPoaN1$Ud1z^pfEvd7X%7VWQTM(3o#UK zuRB7=+87!d-cN&oMfe%{{`0}-1#Gy8OGp4unW8au*MLWn&-*^tLmB<5ZfSCj1ldSU z)23_dXl7w2?gh2b5b&NmN>*yu}(!0 zqY})VFtS*dRB}?3HaUOBtxFI5wu-YEe>N}`L0t=($`98Ce17gPl=+R#^=EGEy)`Rv zrO4{rm7ET!6a}?$avsWT_EutlLA%2lIV6I4CP@5Xlz#dkX-rEhN*dZgib;7RrFaM# zvgA+8m?r4Ujg8LmF{q_15C}TiT8dEw#tcv=>GdCTPsj)PY*k_bk%BB-wvV0O$80ZU={5 zT~*1#IRUC+v}RCdCc(nFv>lb<$Av?q)rwg@)XInC?@ovp|#kkeBqro0kL z{*HWWCkxM9_^97=0^B2hE_@thR>!Tu2CaFA$}Rh*DDvN>RZ&w$()yYf0+_1u+I~f_ z>Vd=;NG|^UAlGzJAi4*^^?UuE^0cq7&Rs8~v)N-CotYPzCNzGd1~PCi2*?^vtti+c z+H!^}5`uz)-Zrud*0|Aw=reW3;O?YNw5T+|84#`rMkoaHYy!E{PRl#rVYxA9_(6bk za9V%CjQ%G?xZSXYus+oXh9rr;M>b5;c&!_DHTCM!)pqH^>t2$ zz5^t{IhA0DqV^)kRG`}hrL>Z>zO1ai`z3`Jj*;)Lix_`!C^USA{D zGpz5(zL=;e5!?OptfPYi6Nj)2S-{hul6Xwt`Ww_6TMVEC!ID@BlD{KUV24wG>sF*8 zcC_Oec%y*H{rK}0dkJ%yD2#5PwW#cDp-*|9S0aQk`oxq^YS>N)j?1bheczvwFbe#sf0=on51cY`&- z?VX7DZK1rg32b{Zfq25qkHjiDv(OjO7mSO=gNMP!aZ_?bn&$o(c$vwzJr%^CEq4P6 zq5YPx8$?FKHB&c<4iz<(S%KMVn0_k1+W(AI9o*L9`9!U-EEYl?E`;jbeQ(R0d6K0I zc2%%-*<;F0pwAEIy27F#HTeMOFHf)WdO=OMa}o%6*L)G&;bz)J2x58GzTR*s-q*4t z-yIZMP>C0r7C~pLe~rE!xf{V?V~0t5KzN)n4Yv{WZ{r3*@x#TF5J8$))rQWweYW*Y z)PoQ>_$i|x82c@=|H~=)?rit({RR0yj>-4`kxjlpd8YrvI{gI4-^+i50PK4A-!G@O2JAwkKS%sF!GCQK5~b9e!v1AK8x*fEfp7W24C zGvUciWp!Z(2x+_!v9Ree0RF-7K*y1Axr2wt2&U1qbDUt5I>N39v|~nBfz=BTt@lIb zjH17L&4UE-y@Tb3evb(C3u4b{T;%XH!mcstDN}p4!pHS#45T%J$W!yT;)Jpt`kj&Q za%pxzh>=r53I7)Gow>IyGUYoFg!(;czN_!|?8&?FLwr*$`+A6$9LwR*lu69ZZ%&_{rVZxuRUE>xLBXr%qKOcYUN>; zvQw1_d~)(*?q@yL7-4Ccw5i{TZKJwSHWu{mCs%t;>#zE{xM`zgGL7W!?Ofd4ZT!?& z>0l+9sUKy@?@#R*#6hfSbz8Es1g?I()JUHOPKTYH=O;Uunj8pFN#Y~}fs*D^ws^m! z6#_~7QiF%j^oF}B`{F2J5&7#<3(MINmC7N_n5Ut~0@>zNAO1n7-n4@oH8rFvTRGa4 zRwOheNJ&HEOl+ER+u7adxBj|~%jw7%w~m1f8&c0z5VC;jIX^wZjGq_%JDrTnp(TK4 z;qgdPU25q+nvV);nJqG0*n&zV@ELi!dlpD;TQO30oq)mNNznb26jPE>ks$SwA!$dE z{G=zqMdCIC6w`>MJlDf?WLVqAYkVr09bHYJ>v{zq0{IGP?*O>HZX!ZI+&;9TqM@N; ze&1Br#4OLBI*?x1YyI0WE}<{)>lO=a*A7N zPm@O=NVrdZLz_NYPHRh(W6JOTgUb{PnCr3?xGS$c6OXYXUfuI-0YJCgmLY$Rg$qVq zG})`mam}>3eMFZbWp?e|;dQZ+QPIe)odYDoClMrZ9Y4rsMB#^7;d zW^Rcb!h~KH{j5)(lTxa*)#j_wxBD#bTzecOxUgiW4H{38o{}8flC}(Rn@^0!lcR1+ z(wd<1gMm&1yOJmc*m!%d?q#t}{*~p^5`tsvp*y=fnQRP zXJCS40+8EcG&-Y$=_SbnwJ9dYEx2ni!^l;={!O1Ul1st0U3HiK4319D8z}(!Rd>IY z6cJLRJ>TNsy~qGOs3=l2aTJ>|_X9v-ScV(`ac18-wA6gpYxiCBQN$7$7+g$MYByiA zX*w<3e!}^@;Ey&-u6M6gS{WPW=jIZwtq6Nf8&+;F9BC|!Hn%+6zKS-*+^2o_&-)Xb ziaj|(4x9%ElP$+oe>uDo>sVTjXN+{~)a(4&KdM@%+Z9BB?AEH&nkq6#Tu494E46!T z4@)bXEmFeqp5*uiaM=tS0r7wvELNUo*2M1R?LSIiyvNCdjsvO`MK0-0RbYY6Ib!Z* zKzMlv2H@rfiwPDl{}i`}kNJnls*V=;$H}A+p)5AfsUdVipO)?V?1^K04jw*28ec~Z z0aK`a)gS_m$hC8ASrh2q3phMSOt0~M2K_uZj6vZZ<<;7gRv+lfcd6?~l@C~p9*rvb zbq5fgtYodZpaO?BZ30XvZD=3J09d`iq0}@)##Lrlqktq~7qrE@K06BKs|4|k)mLz`G# zWM{4~v4aw{Rb;mnk*Qvdyv3`*rZB4$Lns` zzbhEl#VamCR1GQO=X35SZ7SoX-q_%%#GWz@`edu}VvRnNaigbg7bHy~khFuTP2X|A_{=HI-oMX;(w?hX8nCf_ z?O5O$qtYI0`;0yl*r1RO5VRVPB-pI(RL*7kH&$d3s)`?D2|9alVLVOFSoOwfOmj3C zhzxGgky_hp?X@P??W-*EPerY;M&0j*b3UEMugd1|jWllE9J z$%_@hN2eC5J;}bt9Pj(Ng`}uC=#TpkQ1pKliC<#+5tv(EY8pJ5iI{FCbhKgfvv2GZ zI%~fsi_S``Nq;`MDkKVp!D|SEi7;2bG$y$+(P=F8Xvfk2VMwiVyIIGoB3$j0BMj1B zE9az2y`H_*DsztJZ#<^_T@Ns;?m0 zBoLRf6=<2dmJ*@eOi}7ghga)coSYr=_<_;P1MgGF=lBu_IQB0H&WgF(bh}#AEEX@g zuBuw5(p#BM9aYIjMc>yiB*}fKTFR#s>ksM57>q=(KH0!E-$Px_jMCownMMVp7?Df6mw- zV{j0W5(M)Xfz;p>i>GPyxO2kY6v$-6GAJzM2u^>E*>;4_&biG_sp&2f?zzj6fjHvl z=L~ZaJbd@Ux5q4bFl7P~ES+WUDX4hM{%e(r<#I&Thet^}V3Hwa4W)<(AyrJ!d%$9+ zuB-~+z5Mhj)q-CqiSKWhmU7Tc*ygR|e*acm_SvDox%=Wx}P{M!1z+4~GYUw0@mw0#{pN))k>RbC? zPs;nPppS@C&0t)>etlt8SWWD}hYOzS`a4@|D0C-o<35h7D3;7#>+ zO%w0iT1)BlGXOomp%T&isYC`j3-yvd67$==%VsB|K2U4htL`QCa$cGH^p68Z5x?;C zuT4&_B=O!RbbhA9`3Yk|9pVyaP+d6bTXkP>PHX)XdaXB;7>2f7*y4m_CLsPQ4POf~xoQh8B}9No<} zr=XQ+YlCsVj}ccfTHQ$dRi4oF{jz4S&GITO_NtGw1b#2a3td@6#JvF{VAyabO0fPx z<*1O#z0H1Pgq&%8whbkS=G4P|I5un5M^qXy`7qQ#N-KrPj9XS(Vb+q|m0x)9Y9GC_ zkA-^NB!B&MoN3=%9JjFfTx`bSMQ_ma4{ki{uSMAA! zM5FFX(w2kv{yx%StAg-w5Q1~9)#1GSbp2H)!CV5l9B+SI<6q10)Cp#z3DOhGEg z8%2BVflX1V*)Hn&91U;jqSxuYzBRDL3=^qbdKYs-D8N80I^BdCl_&L=n5!Z!J zM_Z~JEoz=aiVMfv8b(YMq}?5SLijGUAhSkkZ13_uT8+YYp%Z<=A<;Q=?uz^xgw7`e zr0t03Cq!hNrOp>vD_l+Q>R|sV zWoK1}t?Q2B0$Pk9C^MgA@LNzvmJ!>EfsucZGT$JfXR*tbE~d4rPBJhA=-+IfG~C1d zYp@Lta!W^;3`pq0y4kO6n_YiOG#}@P!*lO3b?4GN_nibPx6O31fxL4V*fTLRJc#Bt zYq+h3D_MAEb_T}&5)R8ml7OqzX7g4H-yYQ$#n;n@*Ccdh&c5&|zk41t zBvd|QKWwSslLF8rE~H)hH-naU^yqaANxA9vCZ{1G--gsh^f0#Akn#{|tIM5d7#}oJ ze16VNwipS$f=Y?Nt*~vqRO{HpGShZn-#&By(Oq%0)H0P7w;VQ#Zy{61XPpMUROOBz zW6YMjl-XsjZ((-!MpQvEC8c(HhR(bQTE9lb5;;!(oEWt7&*y7(Nvarua}y3Dmk%do z3ENwFxXnJChhMKizU?9J0APYS;Yg(0+&^sGPRX0Oy9C7?6o8YgdPF{*^+0nzJeX!9 zP_nO}EDssGhaChus z0s(v4!B*-DJ4U1^4)e@zbEo2#U42g*&xRp52)ME6rRf}f1H#s*xq5DTmNvYFm^(=J zYCh`3#i_<{K=jDpkaPuZvjLQ}CN{T$Ux@=u4ouKs?(Eh;4_MJ+y7@d$f~BLF}z zNTR1^$5_AYoKxQt!F@&zu`Q?ulnNx^>*dk$fs%wowAaBjovWUn`?Bi!)NfS-;n2;Y zh;qPCc9Mn`)JaOgdT~t)lh-PfNRqw*WRcCeHlqk#7%pvMNpgI6BabOyj3x6wq z4ZMJ=h)AZ-n5U7GpfcZJS!A{k^?vN1+*l#*j7K1Ti2R?{S!y~!MzBMnbm;tvx-5IM z?nFsr+_zqVpysvgEV#$3QNL$xHmX!E#e68>a0_DHu;RPU?Y(X1*P1|gTIb5hb`^hl zer4-%tD0>0Vt0}ljZ!a590I*xy@qg;>>R~{OBNmr>|QMHHGwc~l83zVVM!-m(|Wg$ z*}-ZPy~6lG{#xGDd$<(;$8d{xc(802aoyhhVurCCC8c|y0*Kh{HFv~eP z25lMK76}*SS$05I!0~1%8=J^Pb`PcKuZi8|QKA}ky9J?u?or7~_ zWeBZN-d%q9vMPAg5CkD&K`rBjWMzGR^RPJ};(H(+`c1$)zosh6RelSLgF(hL;hieq z-^=sUv-27Z?RjpOLmwu}-`4BB*#!)Yk+u|yE6CS|W}1400UOl)b`<@@o-Jx7{(E6| zYqvSTQS%t>pNg021pYTS0o@c3BY4(Ia{NKzo*+z$%&Anwjca|&vrpoRupbyw4?X?T zeRIHeK#Q;^a0FP06mne?B{sg1og17L==}(;UNKr?a-nGpl1Q{*|NYjf?fLD(b90`A z@%)-DK-}x&b{U|eENivp`n$BCj!|CjtU*RB@u~XDpukAJk0NjQxB~Gf1DD{NcoSbC znw0OsZAzDM;Gz<*;T}wKRz9F%9xnw?Kc#wJ_B!S0a%9CFls~Mx0{wsFu&R}eUb7<= zH{T|+A?LIXd41YdRTK-z&r5xNBqK^WUhN`#m3Lt>9nJ;2Md-El4qT0}766iW+Ou)X zX($#4^Ml2qQbe_LQFe0ms?RsVj!jFqO1-XD_&rojhw$G#8yg#$_?Nu>djjjn_0T#R zw$zOKy%@Inob1HC^P2;o5=A$ERm4n6t3IvC$(PAV&8UKwZid&VhWUt|M#mG=y?LNn zeD6fmu6J%))zDA!pzWX#<`v^~0+9s@=K>kjAR!@BxaF9rEG(%iw1O$%aQ;U+@Pkhr zXHzDY*-Pu#Jgqk_)1&Hj%2JQax$&?C$YhDMs1|lgj!{!g(oUkw-lNH z@h>gQC#%h~N{}ElCm$v+!K0*t{Wa27k0vOvYpopZ8?IElVNKXhHY6u|*BW!A*6Ky~ z=4w^Jdgd;W1o>i*JF^>Ky5)4y1e%b*&U9~rCi*34d}pE}(d+MCv{^kaF@Ofqc{;u~ zO$xR~$wCz{iE3^)6BO5VL!!v=yS5(#I;VGhwU_1j9fZzTX!nl|0=|{mU9tWyjN2+e zHwkPj!o&g7jR&+vG1sy0cCr>E5BSopoltt&xf*xGFLqr8_BzI%v<{Ua&EE{&nY+4xAPQw6ul!>IN$#K=)7?lsk3+J zi7?>52)aw*q_W6d758JBxAU7}bLZdPii@n@v?l(;`i`%KejhD0dY$4E6t=&6 z)r2uI(UV>Gu#^gDliI+YH&M|LVxp`5NqQx{{35=!_M-Q;X#L$%TL`@2544@%XdDZM z0Yz5FS~hyinFNaEWUOH?eEnhzVjwWg|ZFc87!|+QRlZQ|2#91uO9B!tOLOg3I z%T{4$Q$GyMs<;GPs0w%HZuN%io#mrx<^c5~sQ1!OWPgf<2^jC+)KP68MNDAmBJqFN z^>jsWA9?CgFY?r&IP-d0EoIY;5U5 zkdg$3n$t}%$wvSrVVr+TS5QcCuLO4V4JyhD)P^tL{^3M=8(9drmRJBwegSt+Em7%U z9kM){(t!^XE%3H1oZ)bBsrdfupF@~NZjs|+j{e`%H=`80IoioHvA9ryzAyy?e3dsl zfr6-?UOqGiSV+lp*A%+6AIWx@vr`P$v;77RQ z^QUiO5ZoDO9l>P+ z!Kmh{j*}5nD9x~W=p1-uQFxF-|7nJNn0fDCJ(~Gf5F)5(I6> zoz}?g@9c5)D|tXk+~OB%iTqBUjgD9xTf0vrcDh2z(b1la>SEqJR<+F45eSi;P|%U0 zCh=`$A^~U^F8nM!W%aNzq2~Vyn)OEdd8Hv0-Nm(93d8zeT$U7{sDUZ2dD!G-c5nHRb2J=n9Rb(LgV*2d1D0cWQF zic;N7<~PtqSRl#KC@0|e`skb>AT22;4n?Gv?3G+)sh&Aw`mWB)%-=}bUpKbt2EQ8( z3}GujzTCH?f#MW}CA1@R;a!UV@N64|w|)#5H>M#ljs(uLJIE6LpN~n+8-dZHzgtiS zAtkYp6AdWPSAuYv|LwdG(!mp6A~L6nmWMP{S&M>Hmk%@>s&Pv~hmV1z4|~)NF12@{ zF;smd2H7o0`LY7g=hHDvx+|euAwW5HI(qq+Qc3?V2B8*-*W8D(q01qY4x38g&@GKw*Gq#7GVNhq(HV};_JL@ zM$^~HfRiL-JOxz(Oi4$z68(2-tkG}L0VZrL9Rtc&5vShl2YCER>FqqznX>x#h{xyL zFQ>sg?^IBG33$e}9M4AOkKD|SW*I>0!Q9AVoQqmoaF)3&x21*KKeRLJUj@@Bl$GWV z$ph?!1$+SlF#Gk#%b*E+8)0<4>pyOspTz}4AL_bU4 z{LW68_x8A5taW?NtjrjLSHAD&Y;GrURj+%_lzA9ix0!jx%tbtc4uGC6DgI)%djdQ^K?_G~wx z`j@T}tatypY?|B?Jiyb#lQ?OwV7!XLu$P%Kt;chsY z@A0|8Tu?OciXNss4JR@~LI0UD^oURtNZjDQD6Z8CRvCx`f^so&+FLJ$R&avwC2WLh09=|Ht4>f_uXyLG3eLT z@qDrBwZaFz9*1gD(|%Zy6u~D_H6I1rT6?mev?s^#*PdJGPAk#h2R@8id$dq#>w1q( zJvnCC#T9N8sMsIBrs{wtN9nKD!Ro4`0O*QT^zxDm+$ivHoDStuJv&M-6*n)nw#|2a zSGt_w-dqPl@!Kv(ZLZ$2*NxQ-k{kzs&CydKWFkB0XHc`BHH4e>W#SG9D~HnKkiTj3 z`!%25i(23G%(nqoeh=di(V0)ZewZ!=x`{toH#q*8?sC*oD_qlatpiDUW(Re$DCbLN z|I`;q+{Teuw(a|<=KC#1g`4E(gbjw{#SyYYSjBe8nZYzRKUmXGV(AG?6NYcorTVW4 zsd;^#t|B4xMsOB70Ri6DkiZwVRnvz522~HBu1G{?ar}R+ePvW!&$2HG0TMJJxF#XE z2A9E|;4Xvf;K7{)f(Ca9?m9?-3=rJieQ+4uW$-&W|99S6@2q>@m-oKR+SAolUAww= zt=_$VUA5OK$WuDb+!N>jC`YwDUdQ@$mEpk&Zy9p$?JZV&RyWtP6w@2#ikyGFuP0(D z4(E56v>{|3(g%|XRHiSZwA&Bm{;`BX;}ng)v+2MXo0aZh9J#*2UB(K=SEL; zjORivbc1Fasr?rUGoBp_DXH~Xb-j}J1rFt11RL{z2>2(EwMvhcX96F{>83>Q7??=c zam%P!+hP|}Ulh;#Z%sr;-w-AS{gld?S!lH~76;rqmc$Q4MYrhqpA~K=KCsU?gqzyi z-b^Ojuo|c?)V!?I7A*Y4c)Qc6q$!)l*J65^rA)V#z2Id?JOvZ5<9PY{$#;M?kdBH) zqRf-bs>x`&|uhwnCbgY!Cs02C*6c`rg0Da?UQC4Va#s z0G#4PKS%{_jvozdCM<2g$F(eHxM<*L4u=BEhX&p`UdW4qN=JfyJKb9J$TU^Wjt{w#Q8bE zF4|b<%^V@|9MdREOn~!fL_JgTAuhUcfhotQ?MWa>>=4rSh*&$mQ4!OsbMb0CvAAIs zeI)BeOQYxryYEZBYbGWMhQKks%MVw^9v&Xr@c4kFH#Av;Moz?3SYK4$dPz!yPRYLr6(VfqTEBVKB-|xV|p8 z+$D^TMq6UaUiRsukGsWfdQFrH3A^{-Q{7^t$KhT9@ygk6@n8OKGuJWeV^qbWdRv0| zc){s-QqVzL0RO;ffXn39PrzXJ>N};XsF#OBD$ayrr=>X^9*vApo*3%4P~eHPRoZnE z{}}Q#+nI-@nm+7gidBybWq@97u5ueyg3GpjC*(PUmu@~W&1$<8)Dh)5hvm5RBrvvy z4FBcmw><)Gr0f^S=Q=|J_;_fsy!`Y1rzAwUdfKO#JnbcW@r0vGcjPIdC2f ziINooFG7^Ab8v8A{YM&7J1f#Vg)Bo%Z|^%e+{3YES8L2U8{E*?=;iAx7}A;ZcZK*@ z&?E6z6V7iUZIA3<=bb?y`msoOz949Qr{A8Z?E#gwV+5ILAK zNMFoJ;GfoM^2PI{C{*?3-@9lQA5~CL*x1+@6Gn~!J*OWW7KgLj zZnLOOkw0N33|1<6@f^C2)7DPK>LB?W&yVI#1rj5GjEIL}J( zz)u<;X}DCr=H+C{F?xiWRe4tRi=2s~#uZ-vKV&Z$Y+I29COyZLTgIs&8FvNZgP|Np zK=mFx{$c2r?Dis2Ybg5}XKp~`UjseKdKK0b>ezt=6YKq&q-^(R5Q~pWg9gxG5_39t zrD20#U`h)78?u(Gy&M?6SLQGRC?+vucYJl#n+%51)!#0P)5JneF=^soRd$-xe!Znd zs^`~TVb@2hYqBD}qpdrC_bl5z=az~HnN5_PAVoJo(uX8+1gSM+axGZ+oA6gK%0!^X zBg(5{Bbhdnz%``E5Bb^*$SpZ14(LJH{=Fvb-*fYfPTn=X$Uqk$;AjKSiB#h0-}g=M z`J%70TONxB!WzET5qB_Ee^1VYslwA%Z%?=^Yq8kt-o?9+;431d(&4QhzHmY}{Ejju zPv2dbtkAjaHs)z-oT*cVOC0oRniy;YHzS(q`5uB^yTz7{R{3>-ASZh##9|EOyz$Do zg^2V0cWaB)D;NHs#}HeL^A|2-YyO=hrzHnvn0Kun?|1rB zJ~GuG*PELgi077m;9D0O2=~ZA_R`@%l2(Ju&*!ESrPe<_m+nc+w(+F^#tigQ;c1Rrrf$-rg_~H?i)HZUmHe{DphxBDy#8*XXNP6B#*6n;D@U3Ym0IA zK&~Yfy_9q<6&?{-jCAn#R3_&32qiZye0AJ8`_P1~rPO}9y4}RnOrQ* z#Jk)K>je2d5xM$$f@o@8Sr=OEiE?Yd*_qmWtxNQle;b%s0=d*>NE$J3uOvbuV}Pv3 z?!HQ_wZtJ)cM9Eqx4vP2bie+iuBbADufRo3|7Pdajjuq1Ew>DDq1&d1eyh*k6#Z8G ztXNH%A)JUD>Mx=q%GzT7ePCTAqSCQ!AI)7ZgZF)%WhX;LOb6^b!hG!oYS>|gjzQ@< zX@MK_O2OuBb5`%JpZESIYRR9bhB9wKCa=qZvkAx~dN@OJdHiDUey6Px9mR6f)5-YY z@|NTmUD|?=W(5t$)8X~l6_e;7XYy3b1^y&zN9@iS=9kVN|GwLPsM4*&C|2ELx&aymfMd( z$fPFqMV@qqKeAR6mLYUa4)I+%rnHnAu7zHi0##B@tz8s%gw!|BD3aS1wxaZFqCgaF z01hEq*S#Hr>O710{g5|qw2E@a^UM`yJ`L|CO`n7bz|d-cFuW0qA*Zt~%Y;D-)(qV! z$~J~~_53FG+?tj&;I)6SiW##1e9cR9I5+S;rrZ9X03zgA~=QrX$J&xj~$+5vXT4HG5x<7D9 z@iuv;Gl1hJWQxhDegPVN&aqxZz9=08UJt`Wl-j@;dvjXb@N-(jb@j!;V~SdO0!O?62A+gblZB*cqhX*ZIWncChkE&qj81BDP7iz zK|<ob=JPi(Dq*9>SSz%mJgj9QtL^5f8&m3m-p{yHb$q1a|HRpf?1rA) zcD^U+bpf!8R+5<54;Wlx)wPzu)CPznS86r>_@G}84XUmT_Z}?OWd|6)T*pUEXQ0<_ zHu=IT#I4iI2x}AnWqZ~C6P#TAM?Cw^gmyp zzRNqQ$Sf&Az5H5d%Rp$d2|8FRGnq$Aio~N($B<7H^mtc2;ooL=s86Hyci6_xOp#qTuoW$+8~T=GMoNl11D z_488VrSe&F<9a);IoA6Mh?BuQc&nLZMQ^@rnBd4I=k24pb|S*?pU>&r?+Wv22JPh>u0`k z>tbT-g7w+kEw;rVQMT6h%eqsEH7|WQL#5xOVy>kmN|s zb&of36`aa%%h#<;O}rej@f@Ult>!E5PCB}Cv0yBxokdY^*xts!#7b8QyuX@h`Lput zl>v3|?d>gGZvno-Xie=sAot2myVdS)je`daKTzg&JU>4@y~H|+9V=3h_=D8EM@&rz3#Px*} zjuO+`NbD&eQe%6UiP_`)H}DT%GJeVQ-zG_VIP2 zU$;JJutcg6*~=R?-+v2?D-o?VD^4ZH{-}JXzx884Hv|l` zxC0HM3Gb7?GsKtIxV24m4=;<0U{2Iah)IL?9T`J~Og}cvGoFL|sK7c{Ebt1P^ z&kaA?d;6Rkd|_=pZwI-59?odwzoJkXy_G^qZ6UF#s1#~60ofiJE+~Yd{=S@#rSbly zW~gE!1a6?}HVQNGA%~U~`U^9IKJ8xOj+c2b)^?&@_)=)PU%SKf&!*M*fn!>`=If3u zwe_{{Ocu55yEprTVo4jw__K)e!7z8ena;USiJw)P&&Cc1x2=CSzmAHt_y3j^(7uavw<)IKPBjw!vyK>5R}wzOF^nsT;MqxorGa7qSN zi`1RU&QbUPE)|#8*rKYfW85B2`{eqq#(N+zz0zy&@qX)GLS zC@z)w6E^mn*f-ybHZXz`@-Msj#P=6F9w$Uh6IltF47rbMLDt616Q-jN&)+mK*dL!! za}@cqfcLw~na`)yQ*P#mw$50BI)ZIlmY-=2pfw&55litn8x}|eeg7HhHW8C0WPV%D zN@zC`WlzF@@k_vyxvAw)vTs|5o!zHMCV?zS8&GjA)6wkwd--HiS%BZ%2&a{>D+z0ShTsjwx#?E_< zO{HAeNHcU`H4Hu4_T1y!|;ifvVNwQOx_a_}){yK9I*{)nsf&;C@c$P_WLDUv!Q_d@aYMYzP4lU99ZfQm2RIQ9%naR==hSUxy*Fn~ z=DE6lN3`-5390LxmCN~Vwi`dx6U=T8RPq9LzI_tQ;BcB|a+^kW*tkqrS9b>mC!GrI zb-kzH)A@Zd!NYTI&F>N5Uy?ffeEcQjsYJ&Qnz$Pez2`{xG#ffzZ#BjpK z4_l6-lw41|zotBA{Dg#r^fv);o6&zabaAW`Bd$*|k&wQ6Nc}^7_TMzT9{m@87YBm2PW(@Igme)ARVJeQ>%a28 zdi+O2sOA6a{#RbaKUBo<2>$=G;s2vP2rK<-fd5v(|3`iPvEct;u>Zk6|5trlQ$1K1 z8Ex$BsK@EyDnJ&(zgnMQbUSNk;0Lz98`nF_lWC57YVkOI{x3@Z#(&P_y;?6v|7uQ7 zPQMHVF>$QS$G?;G)sQ2zpR*eAO--SPBWx-m0q?I-+Q7u4h)3Gk*cg!)bJI;yG6)QI zaCPPSI~l995tad+Yu`gc;=f~~qo)m7{F~#&4WH~zGOMA9H4#FDupHp+CW*0`0nxv> zDCsi4nBf0=LjUChPkpCA0|NtPWf7VHjR!iXObr#4@m?QlL{SZJW+sJawaiDc9|#|~ zS1?1@c6WCl40#U&Zf$N#NJ{!z0n+iV7c6JD%mhEKXwOeicU#mpA)IR!IcDtO#wa5r z<6}{Y@fV|Ew661<4*M+h`j}3?^KGm!m?A<4_>0E;7k_NCT#Xe z^+QJxvoOPSaesewlZ8K4wA*QdFA>Qhooea-vUSO<#?5hw{-@_7T=}aZQ)ZUhl*|ou zP)ITAs-Bx7CplfJIQYVQbZ`ap0kFui)IKmWK)3O*MfFgSjLcHaOIa;%aC-Q=?0O(b z_`W#5gtL934?tI!!sM;4{lv>syA|SIxVBErx@bx}sVD5xJ*>py#jl%jf>HMRVHy_U zblw~_pYbxx^i-&(|Kp`Q6~!!0ZCT~5Hbwm}rBW;6N5vm40Mb?KW0I6!VoZ7)Iyy@#j3t)}@C z0)nR;8=G+UdmF7md1~OL=BHl~ZezeQ()8((jgR}oT1s#4x88;f{P`0xbU+4mxh@WF zxy`<;7iuJ0+uu7h`>n8Ywb+W=BDm{C5KOB?##eQBGVV?Jc8u!sTj6$Q^x#}1{j++} zBEeq`_NN1WRH;j?&wDq5xudS4yzAVvjth!)SK_5;+!Qmtnlw5V`e~$s(suPIG1%rH z%Vnw;B~Now495@<9eAS#tN}dR>qy1zX&K3o<73SSpEX_xuAzkzwvfy^_MesUWkl7qxdu*g+_~wKqx<4 zM03pdy7SUHqe_KHLy%pHTKmgpo630) zTIJVLfRS@2x3H0S(7o}gJnMR#TOrqD2o2YmRjt<6wck*H3aFiW>C znmW@@^9ptu`p}OBbIEQt5Cgh5DuJ)A7?W7it|8$H7LlPO{padqr7=ePHEr%Qx7(VmnuwN=YK|K5&@yS`% z7x0c1FbD>GAXIRb&aT&&ZEF6#rYzUI>V^s93n;aPm6Og4WcxwUm_k^S+;Y2x4zs;| zd%#X)wZ9hJ{fyYWSXTIBkc2S-6zq=dyHw ztn!}Q1amQ~kR^OG$zzhr$AzG&O^6B^3Th7}qb#1l80&J)(cM$Y>@II08I zFa^Y)exZA16kcxjM@4~I^^o9x`M?s|XIX20=rkj*v4Ff5+p(KN)4lwkBu?qL;Ww@TEZrgmXM zM=hDLbme_((VB@cc{ksr1q%?uz?2LaP^hnV;`n61-0Cx9q63zm=sT7ZZaylLw9y0+ zQ*x_eyu;`Rl>CvixIK$(iqqQ>7Ar%haMyu)@F3P6f~QM_1&v-k2|5@AeY@I4a&+w) zjn_c=V6~f{w?7HPqV(#uQDIlnn@4xiy8_~Ut#IfY5brC#e{)2-{I&Wr6;oOuvCHA5}?IO7zkuigz8h9lzu6^0Lws~PhM zL5*6?{+rHbCyTGKY}mz=IJ^26vcTmE>Q7LzhtHQELyyOtLE2~N%lcc8G+3!OEg|br^iuVgZm&BGY6Y><yS!YL^)&AwL zSw5of+aoaevb;wB{@mi0ra@@IWEju<{Ku|_?|OfAs1en1AH(fe-%%(cwHmi#ks_M# zaZJy-!f}PBL5`^XHEF@=&rK%EHZp%5*_a`U+4aiPz{xj@h}Rf_Yu=5dgn?6NnsV)_QO8pl*hFq-qDL z^k!1A^rgF?^0G~)c1Ok>hTG5JOGr6?gaa~?@&q_BU&zT(Plf8^zChq&C872Q(MjsJ z6^VP+HkRNjNY`el!5k~Q#|Ny9M&~A`QK18?KDWu)I)4150o%ekoH|SYKVM+=hYWJ* zMxhP63c`8z>R5c9KR9+6F;SQtWH6iMweau{Kbdg4WvI4O10xJb zpg7yW$tkx;`Xh!Y;CU~8X=77;8Qt-T+yU9~9X7y)tD#EP;`1KW(8Vwi8CiTCtuz;ErfUT9;5T#gYo4w>S=#xIR9hMzAaT3M!AxlPTCBKJU;DBPs<@Q3{E2jg-gGj?e z<)i3rP?lq;@4IN?>~RAxgHsz@+!nGtYE58BQ%|#mlWJB#^XtW3C)?j%hu7XuM}05i zlrIOrSMTf)MAQ^dRrBsPf2gzHTYfKi-ADMbr6~obu%%Dh#hSq^mZ>>ryp%#>SFpJ# zb9($cm8|A6v?Y^)JnJ>|6FU~f@O@7@F49-Bd|PX4TU(}KOP`@?Sk*Cww_CLN^onq` zNvErmaQFDo`-4S;FO|EPH}7sK?^_&xO_7-pPi#Qq!Uq=&L6oNTgnG;?LZ{*5l zu-qcSXm{c5%@Aq1pKgjcl0aLTUT+sktdzS}y4X8wz4W0Wr5AHZ$+G3BuS(nMBs8k^ z$|1omt677CVsss-&o#)X)KvTp)sXtqX6ak6G?wijikKWjMc3w2_8%}8XHL|CBf!IN zQ=d9=hbBJY+1a~JK++NL<_>KHerYqB7pO1fUh7AJ_H>+cjWFL5XIPf1ZXh^c&Hp~LHLF5pDlTro#mm=mn70wW? z*+pFs0UAB_6QAffJ1?D;6VjwRw+FOH>ZCNynQ24^4ge$QwYpx&$q$2L1@cmciVc{1S)y- zXf9Df<7hB}lyRw=N-R79qu!aX-qRP&t!e_Z#qjCKLpkw|Z-*F%6cbqyK5k7Pw_R5S zUm>ya^UJk(h4*gY!vvp7I2yc1i&?VxOj82_e&$B`Vn5k+wCMMa5MKW>v-T5|c8i`V z?6x6i-E<00nVHnI70z!k?uMc3zAu1IiTHK(45xFmXni_^C_Ga8xpsQpTqK60mn9!M zdrq-z_fX!NER*0Ll3UB^xyX+yU5W5@^IQ$zG?YjY?(;%=362|~tPB7fUlE>wBLf^E zwv3`o2^>v#!?C4ZBK>zcyr83|ZAHC0&xbv(`s#`ej+`Lk%HSU9c&{|dgT*>?s5QP_ z{A79m%i~IbL%xujTYXIu;W-!AT)Zu>A#MEQ+!#S&{vP+dH%)sQUSW;rq1JxVe5Rjl zQmR>wa~DTOc}@er+Y@`9ZKJ@lqnzfvf6et$FFKoAvOZN=Hr+nSq9oRA$fAv3MRqQO zCDF=2mNr8xQ=i3dW1=p6mYX@Ul7XEUyR`$Gux6H~l+U9yPpND?zW$ zZ~C;@%Pa5brwX*Z$_c8PzRG@^*SYa|fnh(nBEw-X_0C?^$2abZrNGrjof9iSPNtYW zprMZ`S&zBN>8_mv^F6hvQLU(=8!~ae z?&#so8?Q3EzO~340k_Wt73y>K8v1H>y+^B2EhJibhcz}DZnkv_R2w)CsRFk5l(VO& z^)J4z{JwJI7yT}_wz_IG{$nW%ZqY;a-mJK?PMau6k1^o+{08UAc}(VJ>tZAJA1m0c4JsWx=1etf)L6r&v3yH9dO9hiW>pNjycfq&i`rU4W_XF3 zH3f`DJhKF`XoKkm*TIksa;O;t-+XX;za5d)JB3~b&*|yG-2+mJ^%;#CqM?pbU9YZm zeAgwR3pat~WTcbD9@u#nz*7txprxTPJv*C>&nDcj(b?7PVw$SoPsRzSolV)P65Q+; z-tGBpeN4eNF3Z&EDvPw*U}I)xX3L)0YfUcrESkj+AgwgTu{)ZgWQ@dwh*7)8D?VtZ(gO3TaoKK4b8ct57dmoEc{<4WZ+!mB7=H5IZ ZKSf|YlhJf7M%)pStfZnurI=B`e*sHTAuIp@ From c2e4a1ebd8e8daf9e434df2e42abe45d122bb8c2 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Wed, 4 Mar 2020 13:53:42 -0800 Subject: [PATCH 29/33] Acrolinx spelling: corrected "cadense" --- .../manage-updates-baselines-windows-defender-antivirus.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md index 42608c4979..5184c72aca 100644 --- a/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md +++ b/windows/security/threat-protection/windows-defender-antivirus/manage-updates-baselines-windows-defender-antivirus.md @@ -36,7 +36,7 @@ Windows Defender Antivirus uses both [cloud-delivered protection](utilize-micros The cloud-delivered protection is always on and requires an active connection to the Internet to function, while the protection updates generally occur once a day (although this can be configured). See the [Utilize Microsoft cloud-provided protection in Windows Defender Antivirus](utilize-microsoft-cloud-protection-windows-defender-antivirus.md) topic for more details about enabling and configuring cloud-provided protection. -Engine updates are included with the Security intelligence updates and are released on a monthly cadense. +Engine updates are included with the Security intelligence updates and are released on a monthly cadence. ## Product updates From ffb182a4a241d64c3b79d8cd27727b9ce93a55f6 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Wed, 4 Mar 2020 14:04:52 -0800 Subject: [PATCH 30/33] Corrected note markup, added white space --- .../hello-key-trust-validate-pki.md | 71 +++++++++++++++++-- 1 file changed, 64 insertions(+), 7 deletions(-) diff --git a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md index 924d595335..7a49cdb675 100644 --- a/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md +++ b/windows/security/identity-protection/hello-for-business/hello-key-trust-validate-pki.md @@ -64,14 +64,24 @@ Domain controllers automatically request a domain controller certificate (if pub By default, the Active Directory Certificate Authority provides and publishes the Kerberos Authentication certificate template. However, the cryptography configuration included in the provided template is based on older and less performant cryptography APIs. To ensure domain controllers request the proper certificate with the best available cryptography, use the Kerberos Authentication certificate template as a baseline to create an updated domain controller certificate template. Sign-in to a certificate authority or management workstations with _Domain Admin_ equivalent credentials. + 1. Open the **Certificate Authority** management console. + 2. Right-click **Certificate Templates** and click **Manage**. + 3. In the **Certificate Template Console**, right-click the **Kerberos Authentication** template in the details pane and click **Duplicate Template**. + 4. On the **Compatibility** tab, clear the **Show resulting changes** check box. Select **Windows Server 2008 R2** from the **Certification Authority** list. Select **Windows 7.Server 2008 R2** from the **Certification Recipient** list. + 5. On the **General** tab, type **Domain Controller Authentication (Kerberos)** in Template display name. Adjust the validity and renewal period to meet your enterprise’s needs. - **Note**If you use different template names, you’ll need to remember and substitute these names in different portions of the lab. + + > [!NOTE] + > If you use different template names, you’ll need to remember and substitute these names in different portions of the lab. + 6. On the **Subject Name** tab, select the **Build from this Active Directory information** button if it is not already selected. Select **None** from the **Subject name format** list. Select **DNS name** from the **Include this information in alternate subject** list. Clear all other items. + 7. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list. Select **RSA** from the **Algorithm name** list. Type **2048** in the **Minimum key size** text box. Select **SHA256** from the **Request hash** list. Click **OK**. + 8. Close the console. ### Superseding the existing Domain Controller certificate @@ -81,14 +91,23 @@ Many domain controllers may have an existing domain controller certificate. The The Kerberos Authentication certificate template is the most current certificate template designated for domain controllers and should be the one you deploy to all your domain controllers (2008 or later). The autoenrollment feature in Windows enables you to effortlessly replace these domain controller certificates. You can use the following configuration to replace older domain controller certificates with a new certificate using the Kerberos Authentication certificate template. Sign-in to a certificate authority or management workstations with _Enterprise Admin_ equivalent credentials. + 1. Open the **Certificate Authority** management console. + 2. Right-click **Certificate Templates** and click **Manage**. + 3. In the **Certificate Template Console**, right-click the **Domain Controller Authentication (Kerberos)** (or the name of the certificate template you created in the previous section) template in the details pane and click **Properties**. + 4. Click the **Superseded Templates** tab. Click **Add**. + 5. From the **Add Superseded Template** dialog, select the **Domain Controller** certificate template and click **OK**. Click **Add**. + 6. From the **Add Superseded Template** dialog, select the **Domain Controller Authentication** certificate template and click **OK**. + 7. From the **Add Superseded Template dialog**, select the **Kerberos Authentication** certificate template and click **OK**. + 8. Add any other enterprise certificate templates that were previously configured for domain controllers to the **Superseded Templates** tab. + 9. Click **OK** and close the **Certificate Templates** console. The certificate template is configured to supersede all the certificate templates provided in the certificate templates superseded templates list. However, the certificate template and the superseding of certificate templates is not active until you publish the certificate template to one or more certificate authorities. @@ -98,16 +117,28 @@ The certificate template is configured to supersede all the certificate template Windows 10 clients use the https protocol when communicating with Active Directory Federation Services. To meet this need, you must issue a server authentication certificate to all the nodes in the Active Directory Federation Services farm. On-premises deployments can use a server authentication certificate issued by their enterprise PKI. You must configure a server authentication certificate template so the host running the Active Directory Federation Service can request the certificate. Sign-in to a certificate authority or management workstations with _Domain Admin_ equivalent credentials. + 1. Open the **Certificate Authority** management console. + 2. Right-click **Certificate Templates** and click **Manage**. + 3. In the **Certificate Template Console**, right-click the **Web Server** template in the details pane and click **Duplicate Template**. + 4. On the **Compatibility** tab, clear the **Show resulting changes** check box. Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Authority** list. Select **Windows Server 2012** or **Windows Server 2012 R2** from the **Certification Recipient** list. -5. On the **General** tab, type **Internal Web Server** in **Template display name**. Adjust the validity and renewal period to meet your enterprise’s needs. - **Note:** If you use different template names, you’ll need to remember and substitute these names in different portions of the lab. + +5. On the **General** tab, type **Internal Web Server** in **Template display name**. Adjust the validity and renewal period to meet your enterprise’s needs. + + > [!NOTE] + > If you use different template names, you’ll need to remember and substitute these names in different portions of the lab. + 6. On the **Request Handling** tab, select **Allow private key to be exported**. + 7. On the **Subject** tab, select the **Supply in the request** button if it is not already selected. + 8. On the **Security** tab, Click **Add**. Type **Domain Computers** in the **Enter the object names to select** box. Click **OK**. Select the **Allow** check box next to the **Enroll** permission. -9. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list. Select **RSA** from the **Algorithm name** list. Type **2048** in the **Minimum key size** text box. Select **SHA256** from the **Request hash** list. Click **OK**. + +9. On the **Cryptography** tab, select **Key Storage Provider** from the **Provider Category** list. Select **RSA** from the **Algorithm name** list. Type **2048** in the **Minimum key size** text box. Select **SHA256** from the **Request hash** list. Click **OK**. + 10. Close the console. ### Unpublish Superseded Certificate Templates @@ -117,10 +148,15 @@ The certificate authority only issues certificates based on published certificat The newly created domain controller authentication certificate template supersedes previous domain controller certificate templates. Therefore, you need to unpublish these certificate templates from all issuing certificate authorities. Sign-in to the certificate authority or management workstation with _Enterprise Admin_ equivalent credentials. + 1. Open the **Certificate Authority** management console. + 2. Expand the parent node from the navigation pane. + 3. Click **Certificate Templates** in the navigation pane. + 4. Right-click the **Domain Controller** certificate template in the content pane and select **Delete**. Click **Yes** on the **Disable certificate templates** window. + 5. Repeat step 4 for the **Domain Controller Authentication** and **Kerberos Authentication** certificate templates. ### Publish Certificate Templates to the Certificate Authority @@ -128,13 +164,20 @@ Sign-in to the certificate authority or management workstation with _Enterprise The certificate authority may only issue certificates for certificate templates that are published to that certificate authority. If you have more than one certificate authority and you want that certificate authority to issue certificates based on a specific certificate template, then you must publish the certificate template to all certificate authorities that are expected to issue the certificate. Sign-in to the certificate authority or management workstations with an _Enterprise Admin_ equivalent credentials. + 1. Open the **Certificate Authority** management console. + 2. Expand the parent node from the navigation pane. + 3. Click **Certificate Templates** in the navigation pane. + 4. Right-click the **Certificate Templates** node. Click **New**, and click **Certificate Template** to issue. + 5. In the **Enable Certificates Templates** window, select the **Domain Controller Authentication (Kerberos)**, and **Internal Web Server** templates you created in the previous steps. Click **OK** to publish the selected certificate templates to the certificate authority. + 6. If you published the Domain Controller Authentication (Kerberos) certificate template, then you should unpublish the certificate templates you included in the superseded templates list. - * To unpublish a certificate template, right-click the certificate template you want to unpublish in the details pane of the Certificate Authority console and select **Delete**. Click **Yes** to confirm the operation. + + \* To unpublish a certificate template, right-click the certificate template you want to unpublish in the details pane of the Certificate Authority console and select **Delete**. Click **Yes** to confirm the operation. 7. Close the console. @@ -143,23 +186,37 @@ Sign-in to the certificate authority or management workstations with an _Enterpr Domain controllers automatically request a certificate from the domain controller certificate template. However, the domain controller is unaware of newer certificate templates or superseded configurations on certificate templates. To continue automatic enrollment and renewal of domain controller certificates that understand newer certificate template and superseded certificate template configurations, create and configure a Group Policy object for automatic certificate enrollment and link the Group Policy object to the Domain Controllers OU. 1. Start the **Group Policy Management Console** (gpmc.msc) + 2. Expand the domain and select the **Group Policy Object** node in the navigation pane. + 3. Right-click **Group Policy object** and select **New** + 4. Type *Domain Controller Auto Certificate Enrollment* in the name box and click **OK**. + 5. Right-click the **Domain Controller Auto Certificate Enrollment** Group Policy object and click **Edit**. + 6. In the navigation pane, expand **Policies** under **Computer Configuration**. + 7. Expand **Windows Settings**, **Security Settings**, and click **Public Key Policies**. + 8. In the details pane, right-click **Certificate Services Client – Auto-Enrollment** and select **Properties**. + 9. Select **Enabled** from the **Configuration Model** list. + 10. Select the **Renew expired certificates, update pending certificates, and remove revoked certificates** check box. + 11. Select the **Update certificates that use certificate templates** check box. + 12. Click **OK**. Close the **Group Policy Management Editor**. ### Deploy the Domain Controller Auto Certificate Enrollment Group Policy Object Sign-in to a domain controller or management workstations with _Domain Admin_ equivalent credentials. -1. Start the **Group Policy Management Console** (gpmc.msc) -2. In the navigation pane, expand the domain and expand the node that has your Active Directory domain name. Right-click the **Domain Controllers** organizational unit and click **Link an existing GPO…** + +1. Start the **Group Policy Management Console** (gpmc.msc). + +2. In the navigation pane, expand the domain and expand the node that has your Active Directory domain name. Right-click the **Domain Controllers** organizational unit and click **Link an existing GPO…**. + 3. In the **Select GPO** dialog box, select **Domain Controller Auto Certificate Enrollment** or the name of the domain controller certificate enrollment Group Policy object you previously created and click **OK**. ### Validating your work From 51b801b921c1e978edf2bb3eaafc1f178c946ddf Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Wed, 4 Mar 2020 14:08:26 -0800 Subject: [PATCH 31/33] Indented content in lists, added white space --- ...tem-guard-secure-launch-and-smm-protection.md | 16 +++++++++++----- 1 file changed, 11 insertions(+), 5 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md index 961ea92625..d1b5d5b5b0 100644 --- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md +++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md @@ -34,25 +34,31 @@ System Guard Secure Launch can be configured for Mobile Device Management (MDM) ### Group Policy 1. Click **Start** > type and then click **Edit group policy**. + 2. Click **Computer Configuration** > **Administrative Templates** > **System** > **Device Guard** > **Turn On Virtualization Based Security** > **Secure Launch Configuration**. -![Secure Launch Group Policy](images/secure-launch-group-policy.png) + ![Secure Launch Group Policy](images/secure-launch-group-policy.png) ### Windows Security Center -Click **Start** > **Settings** > **Update & Security** > **Windows Security** > **Open Windows Security** > **Device security** > **Core isolation** > **Firmware protection**. - -![Windows Security Center](images/secure-launch-security-app.png) +Click **Start** > **Settings** > **Update & Security** > **Windows Security** > **Open Windows Security** > **Device security** +> **Core isolation** > **Firmware protection**. + ![Windows Security Center](images/secure-launch-security-app.png) + ### Registry 1. Open Registry editor. + 2. Click **HKEY_LOCAL_MACHINE** > **SYSTEM** > **CurrentControlSet** > **Control** > **DeviceGuard** > **Scenarios**. + 3. Right-click **Scenarios** > **New** > **Key** and name the new key **SystemGuard**. + 4. Right-click **SystemGuard** > **New** > **DWORD (32-bit) Value** and name the new DWORD **Enabled**. + 5. Double-click **Enabled**, change the value to **1**, and click **OK**. -![Secure Launch Registry](images/secure-launch-registry.png) + ![Secure Launch Registry](images/secure-launch-registry.png) > [!IMPORTANT] > If System Guard is enabled with a registry key, standard hardware security is not available for the Intel i5 7200U processor. From 7fe4f4f9d1b57f9b1bb2f39146555c7106ee6c58 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Wed, 4 Mar 2020 14:52:17 -0800 Subject: [PATCH 32/33] Indenting, second attempt --- .../system-guard-secure-launch-and-smm-protection.md | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md index d1b5d5b5b0..0cec6c7dba 100644 --- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md +++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md @@ -37,7 +37,7 @@ System Guard Secure Launch can be configured for Mobile Device Management (MDM) 2. Click **Computer Configuration** > **Administrative Templates** > **System** > **Device Guard** > **Turn On Virtualization Based Security** > **Secure Launch Configuration**. - ![Secure Launch Group Policy](images/secure-launch-group-policy.png) + ![Secure Launch Group Policy](images/secure-launch-group-policy.png) ### Windows Security Center @@ -58,7 +58,7 @@ Click **Start** > **Settings** > **Update & Security** > **Windows Security** > 5. Double-click **Enabled**, change the value to **1**, and click **OK**. - ![Secure Launch Registry](images/secure-launch-registry.png) + ![Secure Launch Registry](images/secure-launch-registry.png) > [!IMPORTANT] > If System Guard is enabled with a registry key, standard hardware security is not available for the Intel i5 7200U processor. From 2f55083001e330f28a129460560128bec1070f98 Mon Sep 17 00:00:00 2001 From: Gary Moore Date: Wed, 4 Mar 2020 15:13:43 -0800 Subject: [PATCH 33/33] Eliminated line break before angle bracket When using angle brackets in a UI path, you can't have a line break right before an angle bracket. --- .../system-guard-secure-launch-and-smm-protection.md | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md index 0cec6c7dba..f46696402c 100644 --- a/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md +++ b/windows/security/threat-protection/windows-defender-system-guard/system-guard-secure-launch-and-smm-protection.md @@ -41,8 +41,7 @@ System Guard Secure Launch can be configured for Mobile Device Management (MDM) ### Windows Security Center -Click **Start** > **Settings** > **Update & Security** > **Windows Security** > **Open Windows Security** > **Device security** -> **Core isolation** > **Firmware protection**. +Click **Start** > **Settings** > **Update & Security** > **Windows Security** > **Open Windows Security** > **Device security** > **Core isolation** > **Firmware protection**. ![Windows Security Center](images/secure-launch-security-app.png)